FFIEC News

Log Management & Intelligence Extends Capabilities to Guard Corporate Information Assets

(Oct 08, 2007)-- LogLogic, released LogLogic 4 Release 2, which extends LogLogic’s log data warehouse capabilities to include fine-grain auditing capabilities that documents all users' activities including data accessing, changing or deleting information at rest. By monitoring information level activities, companies can better protect information assets and complement IT Governance, Risk and Compliance initiatives. With the new release, LogLogic’s log data warehouse is giving companies an on-demand way to see who is accessing, changing, deleting or moving information stored on file systems, Windows and UNIX servers, databases and midrange systems from NetApp, Blue Coat, Sun Microsystems, Microsoft, HP, IBM, Oracle and Sybase, among other vendor solutions.

Logs are a fingerprint of systems and user activity and are central to an IT professional’s daily security and operations routines to provide business executives with the data and intelligence Enterprises need to prove compliance with IT controls and regulations such as PCI and SOX. With the addition of LogLogic 4 Release 2, the business now has a way to deploy a log data warehouse in order to monitor and audit user activities at a time when information leakage and misuse incidents are at an all-time high.

“As executives’ fiduciary responsibilities expand to include the protection of corporate reputation and the safeguarding of information assets like customer and personnel data, as well as the security of intellectual property, being able to prove system activities of users and non-authorized personnel is mandatory,” said Dominique Levin, Chief Executive Officer at LogLogic. “Delivering the means to monitor this activity goes a long way to protect information – both as a deterrent to users who know they are being watched to safeguarding against the unknown predator of information theft. With log data serving as the digital equivalent of a surveillance camera, Log Management and Intelligence with fine grain monitoring capabilities serves as both deterrent and immutable legal evidence that can be used to prosecute violations as powerful evidence to safeguard corporate reputation.”

Knowing who is actually accessing sensitive data is also a first step towards designing or validating new security and compliance policies. Inappropriate access can be identified and corrected through new policies or new user configuration. For example, if you find that 2,000 developers are accessing source code you may want to re-design your access rights and privileges.

“Due to much publicized internal and external data breaches, IT is facing the brutal truth regarding the importance of collecting log and network flow data,” said Jon Oltsik, Senior Analyst at Enterprise Strategy Group. “User activity monitoring, risk mitigation and compliance mandates can all be tackled effectively by log management, and the Global 2000 is taking notice.”

The LogLogic log data warehouse delivers much broader user and system activity monitoring capabilities. Inappropriate information usage can be correlated with other user activities. System analysts can, with a single mouse-click, view which web applications a user has visited, which e-mails a user has sent, when a user connected to the VPN and at what time a user left the building, when the appropriate log data is collected. This comprehensive approach to user activity monitoring through the use of log data complements identity management operations. Where identity management is focused primarily on authentication and authorization, log data capture completes the puzzle of all users’ activities after they have been authenticated by the system.

The New LogLogic 4 Release 2 includes more than 25 new features, including:

* Collect and analyze fine-grain audit logs from servers, database and file servers.
* Ability to verify the integrity of log data archived in the LogLogic log data warehouse.
* Ability to detect and remove duplicate log entries in log files.

Share or bookmarklet this web page at: