@@ -857,6 +857,8 @@ These requirements are generally binding, and there is no low-medium-high tierin
### 5.3.5 Logging
The monitoring requirements becomes more demanding, when the security expectation of the deployment context is more strict.
The logging requirements in this subclause define baseline event recording and additional protections for retention, integrity, backup, and external forwarding according to the applicable risk tier.
When evaluating the applicability of these requirements, the highest of following risk factors define the category to follow: [NIS2]
