Perform CIFS Auditing
This article applies to: Shared File Services
While policy defines tasks that must be performed on an ongoing basis in relation to storage of confidential data, actual review of the CIFS audit logs is only required if a security incident (ex: Confidential data exposure) is suspected.
HIPAA data has several requirements which need to be met on a scheduled basis, such as file-system ACL and user audits. Additional information is in the HIPAA Administrative Simplification Regulation Text.
If you suspect confidential data has been exposed contact the Cornell IT Security Office for assistance.