‹ OM-5.5.32 OM-5.5.34 › OM-5.5.33 Licensees should retain the logs and other information from the SIEM for detecting cyber incidents, including "low-and-slow" attacks, in order to facilitate incident investigations, for 5 years or longer. Added: July 2021 ‹ OM-5.5.32 OM-5.5.34 ›