A technical team at an engineering company must store certain operational logs for a specified length of time to follow official guidelines. They want minimal everyday disruption and consistent access for periodic reviews. Which option is the best solution?
Use an archival system with timed retention and proper access restrictions
Keep logs on end-user devices for long periods with sporadic manual backups
Review logs for system anomalies and remove them soon after each review
Encrypt logs with a password-protected file on an external drive kept under lock
A dedicated archival system can automatically handle log retention for the required duration, maintain access controls to prevent unauthorized viewing, and provide an organized location for audits. Storing logs indefinitely on end-user devices causes unnecessary overhead and increases the chance of loss. Discarding logs right after a review fails to meet the retention requirement. Encrypting logs on a locked external drive complicates audit procedures and can disrupt normal workflows by limiting accessibility.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a log retention policy, and why is it important?
Open an interactive chat with Bash
What features should an archival system include for log retention?
Open an interactive chat with Bash
Why is keeping logs on end-user devices not a good idea?