Ensure that Network Security Group Flow Log retention period is 'greater than 90 days'
Why This Matter
Network Security Group flow logs are essential for monitoring and analyzing IP traffic patterns within your Azure environment. When these logs are retained for fewer than 90 days, you lose critical forensic data that could help identify security anomalies, investigate suspected breaches, or support compliance audits. A longer retention period ensures you have sufficient historical data for threat hunting and incident response.
What Aether365 Checks
This check verifies that all Network Security Groups have flow logging enabled with a retention period set to at least 90 days. You can find this check in the Aether365 dashboard under the azure-network-watcher security category.