Q8. Establish standards for logging and operational monitoring
As a security practice, mentioned elsewhere in this document, service owners should, at minimum transmit logs to a central location managed by the platform, and more detailed guidance in this area may be forthcoming.
Beyond this, however, some consistency should be reached regarding what is logged, from applications, from cloud operating systems and PaaS components, and from the platform itself. Additionally, the analysis of the voluminous output of logs from the multiplicity of infrastructure components making up a public cloud workload, and the detection of anomalous events should be automated wherever possible.