Compliance and Investigation

Audit logs provide evidence of who changed platform configuration and when.

Compliance use

• Prove change history for regulated controls.
• Demonstrate separation of duties through actor identity.
• Retain records for required policy period.

Investigation workflow

1. Filter by date range and resource type.
2. Narrow by actor ID or action type.
3. Inspect request and response metadata.
4. Export findings for incident report.

Practical guidance

• Restrict audit access to approved reviewer roles.
• Forward audit events to SIEM for long-term retention.