The Good Practice Guide 13 (GPG 13) is a protective monitoring framework for all British government systems and networks, service providers and outsourcing companies. The GPG 13 is defined by the Communications-Electronics Security Group (CESG), who are Britain’s information assurance authority. Achieving compliance with GPG 13’s twelve Protective Monitoring Controls (PMC) is challenging—especially for organizations managing competing priorities, limited budgets, and small IT security teams. The GPG13 provides a framework for treating risks to systems, collecting log information and configuring logs to provide an audit trail of security relevant events of interest.
The most important part of any solution that will provide an effective Protective Monitoring strategy is an automated Log and Event Management platform that delivers a repeatable service to all stakeholders. EventTracker provides a simple automated solution for real-time consolidation and analysis of logs and to effectively prioritize remediation efforts so that you can achieve GPG 13 compliance and reduce risk.