Protection of Audit Information
Audit and Accountability Policy for 18F
Audit logs are stored and protected in specified S3 buckets and elasticsearch clusters for cloud.gov. Access to logs are limited to designated 18F DevOps and Security staff and logs cannot be modified without proper authorization to the platform. Client agencies are restricted to access and view only their specified audit logs pertaining to the corresponding Org and space accounts.