Monitoring logs is a everyday job for us administrators, but what should we monitor? Do we really have to monitor everything or should we just follow some events? This article att Windows Security.com handles just theese questions.
Quote from the article:
"The security of your Windows environment is constantly changing.
Whether a computer has just been installed or if it has been running
for years, there is a great chance that it does not meet the security
standards that you have for computers in your organization. To discover
these incorrect security settings, you typically need to provide an
internal or external security audit."
Have a look yourself.
Link: Top 5 security settings to audit – Windows security.com
