16.0 Ensuring Compliance with ISO-27002

Select Reports > Portal > Repository > Standard Content > IT GOV > ISO-27002.

To comply with ISO 27002 guidelines, your enterprise needs to establish and follow information security standards and policies. The guidelines help you identify and implement the controls needed to secure data. You can check the security controls in your enterprise against one or more specific ISO 27002 control set, such as Information Security Policies or Asset Management.

To help you comply with the Operations Security control set, Recon provides the Compliance Pack for IT Governance. For more information about adding the pack to the Reports repository, see the Solutions Guide for ArcSight Recon Compliance Pack for IT Governance.

This package includes the following reports for the Operations Security control set:

Administrative Actions All Events
Administrative Logins and Logouts
Application Configuration Modification
Audit Log Cleared
Changes to Operating System
Device Configuration Changes
Device Logging Review
Exploit of Vulnerabilities
Failed Administrative User Logins
Failed User Logins
Logins to Database Machines
Machines Conducting Policy Breaches
Successful Administrative User Logins
Successful User Logins
User Actions Summary
User Logins and Logouts
Virus Infected Machines