This guide describes how to implement the LogRhythm UAE-NESA Compliance Automation Suite. This suite provides pre-bundled Investigations, Alarms, and Reports that are designed for the United Arab Emirates (UAE) National Electronic Security Authority (NESA) standards. In addition, this guide shows how to augment UAE-NESA compliance control requirements using the LogRhythm Investigations, Correlation Rules, Alarms, and Reports.
After you configure the automation suite, the LogRhythm Platform Manager includes the proper components needed for UAE-NESA compliance. Alarms, Investigations, and Reports are automatically associated with the correct UAE-NESA asset categories. You can then schedule Reports for periodic generation and delivery or generate them on demand. To identify areas of non-compliance in real-time, you can leverage Investigations and Alarms for immediate analysis of activities that impact your organization's cardholder data systems.
This guide is intended for LogRhythm SIEM administrators and analysts who are responsible for maintaining compliance with GDPR. Further, monthly, and weekly Reporting Packages can be established to provide forensic evidence and audit data to appropriate audiences for distribution. These groups include Security Operations, Security Management, IT Operations, Audit, and Executive Management. These reporting packages, content included, and frequency can be adjusted according to the needs of your audience.
This guide is divided into the following sections: