Upload
gianfranco-marsico
View
162
Download
3
Tags:
Embed Size (px)
Citation preview
SOLUTION OVERVIEW
SIEM 2.0 | See what you’re missing. Advanced Threat Detection & Response. Compliance Automation & Assurance.Operational Intelligence & Optimization.
LogRhythm is an enterprise-class platform that seamlessly combines Log Management & SIEM 2.0, File Integrity Monitoring, and Host Activity Monitoring into a single integrated solution. It is designed to address an ever-changing landscape of threats and challenges, with a full suite of high-performance tools for security, compliance, and operations. LogRhythm delivers comprehensive, useful and actionable insight into what is really going on in and around an enterprise IT environment. LogRhythm’s SIEM 2.0 platform delivers:• Fully Integrated Log & Event Management• Advanced Correlation and Pattern Recognition• Extended Visibility and Context
o Independent Host Activity Monitoringo File Activity Monitoringo Enterprise-wide Network Visibility
• Powerful, Rapid Forensics• Intelligent, Process-Driven SmartRemediation™
• Ease-of-use and Simplified Management
Designed for Practical, Everyday UseA wealth of valuable information can be derived from log data – originating from applications, databases, servers, network devices or host systems. LogRhythm enables organizations to detect and respond to advanced threats, automate compliance assurance and intelligently optimize IT operations by automating the collection, organization, analysis, archiving and reporting of all log data. By fully integrating Log Management & SIEM 2.0 with File Integrity Monitoring and Host Activity Monitoring in one solution, LogRhythm helps customers:
• Expand and accelerate threat detection & response capabilities
• Reduce acquisition costs and management overhead
• Automate compliance • Increase ROI
It is cost-effective, easily deployed, and scales to fit the needs of any enterprise, and is operated and managed through an easy-to-use, wizard-driven console. With LogRhythm, enterprises can invest in a single solution to address security, compliance, and operations issues throughout their IT organizations.
SOLUTION OVERVIEWOne Integrated Solution
2LogRhythm6Overview_1109© 2011 LogRhythm Inc. | www.logrhythm.com
One Integrated Solution
¢ Centralization & secure archiving of ALL logs
¢ Real-time event monitoring & alerting
¢ Powerful forensics & interactive visualization
¢ Comprehensive Reporting ¢ Advanced correlation & pattern
recognition ¢ High-performance, scalability
& ease-of-use ¢ SmartRemediation™ with built-in
approval process
¢ Monitoring of ALL types of files and directories in real-time
¢ Identification of user or application accessing or modifying files
¢ Automated alerting on access or changes to critical files
¢ Fine-grained controls & filters ¢ Out-of-the-box support for common
operating systems & applications ¢ Independent audit of user or
application access/modifications to confidential files
¢ Independent monitoring of network and host connections
¢ Independent monitoring of processes/services running on key systems
¢ Interactive correlation of data related to the user, host, application, port, etc.
¢ Alerts & reports on the misuse of privileged user access
¢ Monitoring of removable media activity with active response
¢ Independent auditing of user behavior
Log Management & SIEM 2.0
File Integrity Monitoring Host Activity Monitoring
Flexible Deployment Options A LogRhythm deployment can be implemented in any combination of hardware, software and virtual instances. It is designed to meet the deployment requirements of any enterprise and scaling is as simple as plugging in additional appliances as requirements expand.
LogRhythm is available in hardware, software and virtual options, with support for VMware ESX, Microsoft Hyper-V, Amazon EC2, and Citrix XenServer. High Availability with automatic failover is also available.
LogRhythm is also available as a managed service via several MSSP partners. To find out which LogRhythm solution best fits your needs, contact us at [email protected].
LogRhythm Headquarters3195 Sterling CircleBoulder, CO 80301303-413-8745
LogRhythm EMEASiena Court, The BroadwayMaidenhead Berkshire SL6 1NJUnited Kingdom+44 (0) 1628 509 070
LogRhythm Asia Pacific Ltd.8/F Exchange Square II8 Connaught Place, CentralHong Kong+852 2297 2812
“LogRhythm provides a single view into all log and event data. Having meaningful data in one place empowers me to act quickly and precisely with appropriate security measures.”Bernie RominskiIT Security OfficerRegis Corporation
“LogRhythm has set the standard for SIEM 2.0 and as such, has proven to be an invaluable tool for Ascent Media’s global security operations.” Michael Chapman Director Digital Security and Network OperationsAscent Media