SpectraAI
ServicesAssessmentsIndustriesSpectraAgentPricingInsightsAbout
ServicesAssessmentsIndustriesSpectraAgentPricingInsightsAboutContactStart Free Assessment
Home›Assessments›Log Retention
📦 Assessment

Log Retention Compliance Audit

Are your logs retained long enough? Mapped against CERT-In (180 days), SEBI (2 years), RBI (5 years for transactions), and PCI-DSS (1 year).

Start Free Assessment →
What We Audit

5 Areas We Check

01
Log Rotation Configuration
Is logrotate configured? How many rotations are kept? Are compressed archives retained?
02
Retention vs Framework Requirements
Each log source checked against the regulatory minimum: auth logs, system logs, audit logs, web server logs, database logs.
03
Central Log Forwarding
Are logs forwarded to a central SIEM (rsyslog, syslog-ng, Windows Event Forwarding)? Local-only logs are a tamper risk.
04
Tamper Protection
Log file permissions, append-only attributes, and integrity verification. Can an attacker cover their tracks?
05
Audit Policy Completeness
Are all audit categories configured? PowerShell script block logging? Windows audit policy gaps?
Retention Requirements by Framework
CERT-In: 180 days (6 months)
SEBI CSCRF: 2 years (730 days)
RBI (transactions): 5 years
PCI-DSS: 1 year (365 days)
ISO 27001: As per risk assessment
Compliance Frameworks
CERT-In (180d)SEBI (2yr)RBI IT (5yr txn)PCI-DSS (1yr)ISO 27001

Are Your Logs Compliant?

Find out in under 10 minutes. Free.

Start Free Assessment →
SpectraAI

India's first AI-native infrastructure intelligence platform.

Assessments
  • Log Retention
  • CIS Benchmarks
  • All 20 →
Platform
  • SpectraAgent
  • Pricing
Company
  • About
  • Contact
  • Privacy
© 2026 Spectra Technologies India Private Limited.