2
SOLUTION OVERVIEW SIEM 2.0 | See what you’re missing. Advanced Threat Detection & Response. Compliance Automation & Assurance. Operational Intelligence & Optimization. LogRhythm is an enterprise-class platform that seamlessly combines Log Management & SIEM 2.0, File Integrity Monitoring, and Host Activity Monitoring into a single integrated solution. It is designed to address an ever-changing landscape of threats and challenges, with a full suite of high-performance tools for security, compliance, and operations. LogRhythm delivers comprehensive, useful and actionable insight into what is really going on in and around an enterprise IT environment. LogRhythm’s SIEM 2.0 platform delivers: • Fully Integrated Log & Event Management • Advanced Correlation and Pattern Recognition • Extended Visibility and Context o Independent Host Activity Monitoring o File Activity Monitoring o Enterprise-wide Network Visibility • Powerful, Rapid Forensics • Intelligent, Process-Driven SmartRemediation• Ease-of-use and Simplified Management Designed for Practical, Everyday Use A wealth of valuable information can be derived from log data – originating from applications, databases, servers, network devices or host systems. LogRhythm enables organizations to detect and respond to advanced threats, automate compliance assurance and intelligently optimize IT operations by automating the collection, organization, analysis, archiving and reporting of all log data. By fully integrating Log Management & SIEM 2.0 with File Integrity Monitoring and Host Activity Monitoring in one solution, LogRhythm helps customers: • Expand and accelerate threat detection & response capabilities • Reduce acquisition costs and management overhead • Automate compliance • Increase ROI It is cost-effective, easily deployed, and scales to fit the needs of any enterprise, and is operated and managed through an easy-to-use, wizard-driven console. With LogRhythm, enterprises can invest in a single solution to address security, compliance, and operations issues throughout their IT organizations.

LogRhythm

Tags:

Embed Size (px)

Citation preview

Page 1: LogRhythm

SOLUTION OVERVIEW

SIEM 2.0 | See what you’re missing. Advanced Threat Detection & Response. Compliance Automation & Assurance.Operational Intelligence & Optimization.

LogRhythm is an enterprise-class platform that seamlessly combines Log Management & SIEM 2.0, File Integrity Monitoring, and Host Activity Monitoring into a single integrated solution. It is designed to address an ever-changing landscape of threats and challenges, with a full suite of high-performance tools for security, compliance, and operations. LogRhythm delivers comprehensive, useful and actionable insight into what is really going on in and around an enterprise IT environment. LogRhythm’s SIEM 2.0 platform delivers:• Fully Integrated Log & Event Management• Advanced Correlation and Pattern Recognition• Extended Visibility and Context

o Independent Host Activity Monitoringo File Activity Monitoringo Enterprise-wide Network Visibility

• Powerful, Rapid Forensics• Intelligent, Process-Driven SmartRemediation™

• Ease-of-use and Simplified Management

Designed for Practical, Everyday UseA wealth of valuable information can be derived from log data – originating from applications, databases, servers, network devices or host systems. LogRhythm enables organizations to detect and respond to advanced threats, automate compliance assurance and intelligently optimize IT operations by automating the collection, organization, analysis, archiving and reporting of all log data. By fully integrating Log Management & SIEM 2.0 with File Integrity Monitoring and Host Activity Monitoring in one solution, LogRhythm helps customers:

• Expand and accelerate threat detection & response capabilities

• Reduce acquisition costs and management overhead

• Automate compliance • Increase ROI

It is cost-effective, easily deployed, and scales to fit the needs of any enterprise, and is operated and managed through an easy-to-use, wizard-driven console. With LogRhythm, enterprises can invest in a single solution to address security, compliance, and operations issues throughout their IT organizations.

Page 2: LogRhythm

SOLUTION OVERVIEWOne Integrated Solution

2LogRhythm6Overview_1109© 2011 LogRhythm Inc. | www.logrhythm.com

One Integrated Solution

¢ Centralization & secure archiving of ALL logs

¢ Real-time event monitoring & alerting

¢ Powerful forensics & interactive visualization

¢ Comprehensive Reporting ¢ Advanced correlation & pattern

recognition ¢ High-performance, scalability

& ease-of-use ¢ SmartRemediation™ with built-in

approval process

¢ Monitoring of ALL types of files and directories in real-time

¢ Identification of user or application accessing or modifying files

¢ Automated alerting on access or changes to critical files

¢ Fine-grained controls & filters ¢ Out-of-the-box support for common

operating systems & applications ¢ Independent audit of user or

application access/modifications to confidential files

¢ Independent monitoring of network and host connections

¢ Independent monitoring of processes/services running on key systems

¢ Interactive correlation of data related to the user, host, application, port, etc.

¢ Alerts & reports on the misuse of privileged user access

¢ Monitoring of removable media activity with active response

¢ Independent auditing of user behavior

Log Management & SIEM 2.0

File Integrity Monitoring Host Activity Monitoring

Flexible Deployment Options A LogRhythm deployment can be implemented in any combination of hardware, software and virtual instances. It is designed to meet the deployment requirements of any enterprise and scaling is as simple as plugging in additional appliances as requirements expand.

LogRhythm is available in hardware, software and virtual options, with support for VMware ESX, Microsoft Hyper-V, Amazon EC2, and Citrix XenServer. High Availability with automatic failover is also available.

LogRhythm is also available as a managed service via several MSSP partners. To find out which LogRhythm solution best fits your needs, contact us at [email protected].

LogRhythm Headquarters3195 Sterling CircleBoulder, CO 80301303-413-8745

LogRhythm EMEASiena Court, The BroadwayMaidenhead Berkshire SL6 1NJUnited Kingdom+44 (0) 1628 509 070

LogRhythm Asia Pacific Ltd.8/F Exchange Square II8 Connaught Place, CentralHong Kong+852 2297 2812

“LogRhythm provides a single view into all log and event data. Having meaningful data in one place empowers me to act quickly and precisely with appropriate security measures.”Bernie RominskiIT Security OfficerRegis Corporation

“LogRhythm has set the standard for SIEM 2.0 and as such, has proven to be an invaluable tool for Ascent Media’s global security operations.” Michael Chapman Director Digital Security and Network OperationsAscent Media


NEUER TECHNOLOGIEN - it-daily.net · • IBM X-Force Exchange • Anomali ThreatStream • Palo Alto Networks AutoFocus • RSA NetWitness Suite • LogRhythm Threat Lifecycle Management

NEUER TECHNOLOGIEN - it-daily.net · • IBM X-Force Exchange • Anomali ThreatStream • Palo Alto Networks AutoFocus • RSA NetWitness Suite • LogRhythm Threat Lifecycle Management

Documents
LogRhythm Cyber Security in Enterprise Presentation

LogRhythm Cyber Security in Enterprise Presentation

Technology
LogRhythm Integrated Solution 6.3.4 Security TargetThe LogRhythm Console1 provides the user interface into a LogRhythm deployment. The Console is a Windows .NET-based client application

LogRhythm Integrated Solution 6.3.4 Security TargetThe LogRhythm Console1 provides the user interface into a LogRhythm deployment. The Console is a Windows .NET-based client application

Documents
LogRhythm Integrated Solution Security Target · May be reproduced only in its original entirety without revision. LogRhythm Integrated Solution Security Target Version 1.1 March

LogRhythm Integrated Solution Security Target · May be reproduced only in its original entirety without revision. LogRhythm Integrated Solution Security Target Version 1.1 March

Documents
PRODUCT OVERVIEW LogRhythm and Symantec: … actionable threat data with advanced behavioral analytics for enterprise security intelligence LogRhythm has developed a solution which

PRODUCT OVERVIEW LogRhythm and Symantec: … actionable threat data with advanced behavioral analytics for enterprise security intelligence LogRhythm has developed a solution which

Documents
Driving Greater Event Clarityecrm.logrhythm.com/rs/logrhythm/images/03_26_14_LogRhythm...LogRhythm Takes Action Network quarantine users & devices via ISE BENEFITS • Clarify what

Driving Greater Event Clarityecrm.logrhythm.com/rs/logrhythm/images/03_26_14_LogRhythm...LogRhythm Takes Action Network quarantine users & devices via ISE BENEFITS • Clarify what

Documents
LogRhythm Innovation

LogRhythm Innovation

Documents
Security Intelligence - Can Big Data Analytics Overcome Blind Spots - Logrhythm

Security Intelligence - Can Big Data Analytics Overcome Blind Spots - Logrhythm

Documents
LogRhythm Threat Detection Cookbook - Vogel.de · commands to the back-end database through ... • Use LogRhythm Network Monitor to collect packet capture for ... when an attacker

LogRhythm Threat Detection Cookbook - Vogel.de · commands to the back-end database through ... • Use LogRhythm Network Monitor to collect packet capture for ... when an attacker

Documents
LogRhythm Appliance Data Sheet

LogRhythm Appliance Data Sheet

Technology
ThreatConnect Apps & Integrations · LogRhythm • • • ... KEY Partner Built & Supported Bi-Directional SIEM •Integration or App •Playbooks App ENDPOINT DETECTION & RESPONSE

ThreatConnect Apps & Integrations · LogRhythm • • • ... KEY Partner Built & Supported Bi-Directional SIEM •Integration or App •Playbooks App ENDPOINT DETECTION & RESPONSE

Documents
LogRhythm - User behavior analytics

LogRhythm - User behavior analytics

Technology
LogRhythm Advanced Intelligence Engine Data Sheet

LogRhythm Advanced Intelligence Engine Data Sheet

Technology
LOGRHYTHM LABS 2017 THREAT INTELLIGENCE REPORT · 46 Sample: d0fb.eml 47 Sample: cleaner.exe 47 Sample: example_powershell_payloads.txt 49 Appendix B: Consolidated Indicator List

LOGRHYTHM LABS 2017 THREAT INTELLIGENCE REPORT · 46 Sample: d0fb.eml 47 Sample: cleaner.exe 47 Sample: example_powershell_payloads.txt 49 Appendix B: Consolidated Indicator List

Documents
NOTPETYA TECHNICAL ANALYSIS - LogRhythm · . NOTPETYA TECHNICAL ANALYSIS NotPetya “Vaccine” or “Kill Switch” NotPetya contains a check upon initial execution that attempts

NOTPETYA TECHNICAL ANALYSIS - LogRhythm · . NOTPETYA TECHNICAL ANALYSIS NotPetya “Vaccine” or “Kill Switch” NotPetya contains a check upon initial execution that attempts

Documents
What's New Logrhythm 5.1 Data Sheet

What's New Logrhythm 5.1 Data Sheet

Sports
LogRhythm and Rapid7®: Integrated Enterprise Security · LogRhythm and Rapid7 have developed an integrated solution for comprehensive enterprise security intelligence and threat

LogRhythm and Rapid7®: Integrated Enterprise Security · LogRhythm and Rapid7 have developed an integrated solution for comprehensive enterprise security intelligence and threat

Documents
LogRhythm Supported Products List

LogRhythm Supported Products List

Documents
FIPS 140-2 Non-proprietary Security Policy LogRhythm 6.0.4 or … · 2018. 9. 27. · LogRhythm is an integrated log management and security information event management (SIEM) solution

FIPS 140-2 Non-proprietary Security Policy LogRhythm 6.0.4 or … · 2018. 9. 27. · LogRhythm is an integrated log management and security information event management (SIEM) solution

Documents
LogRhythm Siem 2.0 Flyer

LogRhythm Siem 2.0 Flyer

Technology
MAMBA RANSOMWARE ANALYSIS - LogRhythm...MAMBA RANSOMWARE ANALYSIS About LogRhythm LogRhythm, a leader in Threat Lifecycle Management, empowers organizations around the globe to rapidly

MAMBA RANSOMWARE ANALYSIS - LogRhythm...MAMBA RANSOMWARE ANALYSIS About LogRhythm LogRhythm, a leader in Threat Lifecycle Management, empowers organizations around the globe to rapidly

Documents
LogRhythm Detecting Advanced Threats Use Case UK

LogRhythm Detecting Advanced Threats Use Case UK

Technology
About LogRhythm · About LogRhythm LogRhythm is a world leader in NextGen SIEM, empowering organizations on six continents to successfully reduce risk by rapidly detecting, responding

About LogRhythm · About LogRhythm LogRhythm is a world leader in NextGen SIEM, empowering organizations on six continents to successfully reduce risk by rapidly detecting, responding

Documents
LogRhythm Detecting Advanced Threats Use Case

LogRhythm Detecting Advanced Threats Use Case

Technology
LogRhythm and ForeScout CounterACT™: Integrated …content.ndm.net/acton/attachment/9485/f-0910/1/...LogRhythm and ForeScout have developed an integrated solution for comprehensive

LogRhythm and ForeScout CounterACT™: Integrated …content.ndm.net/acton/attachment/9485/f-0910/1/...LogRhythm and ForeScout have developed an integrated solution for comprehensive

Documents
LogRhythm Rapid Time Value Use Case UK

LogRhythm Rapid Time Value Use Case UK

Documents
Speed and Scalability Matter: Review of LogRhythm 7 … · 1 Speed and Scalability Matter: Review of LogRhythm 7 SIEM and Analytics Platform ... HP-UX, Solaris and Windows ... 6 Speed

Speed and Scalability Matter: Review of LogRhythm 7 … · 1 Speed and Scalability Matter: Review of LogRhythm 7 SIEM and Analytics Platform ... HP-UX, Solaris and Windows ... 6 Speed

Documents
LogRhythm Password Hygiene Infographic

LogRhythm Password Hygiene Infographic

Technology
Prophecy International Holdings Limited · Prophecy International Holdings Limited ... (MSSP’s) require log data to be correlated from many different ... RSA, SPLUNK, LogRhythm

Prophecy International Holdings Limited · Prophecy International Holdings Limited ... (MSSP’s) require log data to be correlated from many different ... RSA, SPLUNK, LogRhythm

Documents
LogRhythm Overview Data Sheet

LogRhythm Overview Data Sheet

Technology