Management / Logging

CCC Logging Capabilities

Version: DEV

ID	Title	Description	Threat Mappings
CCC.Logging.CP01	Service Log Capture	Ability to capture logs from all relevant cloud services at varying levels of verbosity.	2
CCC.Logging.CP02	Application Log Ingestion	Support for ingesting logs from custom applications deployed within the cloud environment.	2
CCC.Logging.CP03	Real-Time Log Ingestion	Logs should be ingested in near real-time to enable timely detection and response.	1
CCC.Logging.CP04	Centralised Log Collection	Ability to centralise logs from different resources within a signle logging solution or platform.	1
CCC.Logging.CP05	Custom Log Format Support	Ability to ingest custom log formats or data from on-premises systems or other cloud environments via agents.	1
CCC.Logging.CP06	Log Filtering & Transformation	Ability to to filter, normalise, and transform raw log data at ingestion to optimise storage and enhance usability.	3
CCC.Logging.CP07	Immutable Storage	Ability to prevent unauthorized alteration or deletion of logs, ensuring their integrity for auditing and forensic purposes.	1
CCC.Logging.CP08	Retention Policies	Ability to define and enforce granular retention periods for different log types based on regulatory requirements and internal policies.	2
CCC.Logging.CP09	Internal Sink	Ability to continuously stream log data to a hosted storage bucket or data lake solution within the cloud service provider.	0
CCC.Logging.CP10	External Sink	Log events can be configured to be sent to a external SIEM or data analysis provider outside of the cloud platform.	0
CCC.Logging.CP11	Log-based Metrics	Ability to extract quantitative metrics from log data for performance monitoring and operational analysis.	1
CCC.Logging.CP12	Log Archiving	Ability to archive logs that are no longer needed but must be retained.	1
CCC.Logging.CP13	Field Indexing	Supports field-based indexing to improve log query performace.	0