Continuous monitoring
and audit logs

Azure-based monitoring

MyDesk uses Azure Monitor, Azure Security Center and Microsoft Defender for Cloud for continuous monitoring of infrastructure, applications and security incidents. The monitoring covers availability, performance, security anomalies and compliance.

Audit logs

All administrative changes in the MyDesk platform are logged in audit logs. Logs include:

• User management (create, edit, delete)
• Access changes and role assignments
• Configuration changes
• Login events and failed attempts
• API calls and integration activity
• System events and errors

Log retention

Operational and security logs are stored for a minimum of 30 days. Audit logs can be stored for longer periods according to customer needs and agreement.

SIEM integration

Logs can be exported to the customer's SIEM solution, including Microsoft Sentinel, Splunk and other SIEM platforms via Azure Event Hub or direct API integration. This allows customers to integrate MyDesk logs into their existing security monitoring.

Alerting and incident management

MyDesk has configured automatic alerts on critical security incidents. Alerts are escalated to the security team who handle incidents in accordance with our incident response procedure.