Log Storage capability - Establishing Your Cloud Foundation on AWS

Log Storage capability

The Log Storage capability enables you to collect and store your environment logs centrally and securely. This will enable you to evaluate, monitor, alert, and audit access and actions performed on your cloud resources and objects.


  • Security (Primary)

  • Operations

  • Central IT


  • Cloud Team - the team(s) who make AWS available to your customers.

  • Security Team - the members of the cloud team responsible for security in the cloud.

Supporting capabilities: Identity Management and Access Control capability


  • CF1 - S1: Central reliable log storage storage

  • CF1 - S3: Log protection and integrity

  • CF1 - S4: Log lifecycle management

  • CF1 - S6: Log access management