Monitoring and Compliance Best Practices
Monitoring and compliance is a valuable result of implementing Immuta, providing rich query and access logs about your data.
- Pull logs from Immuta on a daily basis. Whether you use Immuta SaaS or Immuta Self-Managed, you are responsible for pulling your audit logs. These logs contain all of the information you will need to support auditing and compliance for access, queries, and changes in your environment.
- Use a tool like DataDog or Splunk for log aggregation. These tools are enterprise best practice for monitoring applications and can be easily deployed with Immuta.
- Store logs for at least 30 days in a log aggregator for monitoring and compliance.
- Discuss with your compliance group or lines of business which fields you want to monitor or report on from the Immuta logs. Immuta captures a wealth of information each time a user logs in, changes a policy, or runs a query. Discuss with your team which items you want to capture in a log aggregation tool or store long-term.