It’s time to modernize logging requirements for agencies
When the White House released memorandum M-21-31 in August 2021, it marked a turning point for federal agencies by establishing much-needed baseline logging and data preservation requirements. The memorandum created a clear framework for capturing, retaining, and managing data.
While M-21-31’s laudable intention is to improve visibility and empower federal agencies to detect and respond to security incidents more effectively, its methods are increasingly outdated.
To keep pace with modern cyber threats, M-21-31 must evolve to mandate continuous logging. A revised memorandum should encourage the adoption of open standards collection and open data-storage protocols to ensure the government retains ownership of the logs throughout M-21-31’s long retention period.
Read more at FedScoop