FISMA News

FISMA Control and Compliance Suite by LogLogic

(January 24, 2007) -- LogLogic has launched the LogLogic Compliance and Control Suite for the Federal Information Security Management Act (FISMA), adding to the industry's deepest log reporting and alerting capabilities. Offering more than 100 alerts and reports out-of-the box, the Suite enables users to move to continuous FISMA compliance through real-time and automated reports, and alerts on 100% of log data. Designed for IT professionals, auditors and end-users alike, the new Suite promises to cut hundreds of hours of time from routine log management tasks such as log collection and storage, report writing and audit sampling.

FISMA requires US Government organizations to put in place a mandatory set of processes that protect the organizations' information systems and data. FISMA uses several standards as the basis for these processes -- the Federal Information Processing Standards (FIPS), the National Institute of Standards and Technology (NIST) "Recommended Security Controls for Federal Information Systems" (Special Publication 800-53), and other regulatory guidelines specific to particular agencies.

According to Gartner, "Government organizations that are required to meet FISMA compliance should use [compliance] as a control framework. Use compliance as an opportunity to improve operational security not only by defining assets and documenting the current state of the organization, but also by implementing control objectives that drive effective risk analysis and management." Additionally, "Organizations should use compliance as an opportunity to implement technologies and processes that improve operational security as well as provide support for FISMA and FIPS 199 compliance."

"US government organizations are currently required to comply with FISMA," continues Levin. "Log management and intelligence is a simple and cost effective way to cut through the complexities of continuously complying with the standards and FISMA regulation, while improving processes, reporting and other efficiencies across the IT infrastructure."

LogLogic's FISMA Compliance and Control Suite helps government agencies verify that information security policies are being followed, substantially reduce audit time and expense, and achieve FISMA compliance. Out-of-the-box reports and alerts directly map to NIST standards, including NIST 800-53 (security controls) and NIST 800-92 (log management), providing an efficient, easy-to-implement solution. LogLogic's approach is cost-effective, using all available log data to automate the process of auditing and enforcing policies -- and supports 100% of all log-related IT controls as outlined by FISMA. The first FISMA compliance solution based on log management and intelligence, LogLogic's Compliance and Control Suite for FISMA runs on LogLogic's award-winning LogLogic appliances.

Independent analysts report that log data accounts for over 25% of all enterprise data, and provides valuable insight into the operation and compliance of IT systems. Installed within minutes, LogLogic's award-winning solutions aggregate high volumes of log data and offer fast search and drill-down capabilities essential to maintaining IT health, while automating log data archival and providing more secure log data retention.
Through Agile Reporting, LogLogic can deliver over 13,000 customizable reports. As a result, IT staff can quickly create customizable templates that align with their IT control matrix and best practice standards and regulations, including Sarbanes-Oxley, HIPAA, ISO, CoBIT, COSO and ITIL.

Share or bookmarklet this web page at: