Log Management Software

Log Security Software - LogCenter
Click image to enlarge

Log Management involves dealing withh large amounts of system-generated log data – messages captured from computers, network devices, applications, databases and other types of systems that make up your IT environments.  Log Management includes the collection, aggregation, retention and analysis of this data in support of IT security, systems operations, or regulatory compliance.

Analyzing log data can create many potential challenges -- such as dealing with large volumes (sometimes many gigabytes of data per day) of data, and both industry standard and proprietary log-formats.

Any log management system will capture and archive events that utilize industry standard formats.  Most can convert popular proprietary log files into a searchable format and generate periodic reports.  However, LogCenter (download product brief) from LogMatrix goes on to deliver the log functionality that IT managers really need -- conversion from any device, system, application, or security console (using the LogMatrix Collectors) - coupled with the ability to search and run reports against large volumes of data in real-time. 

LogCenter provides access to historical log data for forensics, compliance reporting, and policy evaluation. Events received from the LogMatrix Collectors are stored in the database in both the normalized format for analysis AND the original log line for evidentiary purposes.

 

  • Designed for “high volume” event insertion
    • Infinitely scalable to meet ever increasing Log Volumes
    • Utilizes embedded columnar RDBMS developed at MIT
  • Enables real-time reporting against terabytes of data
    • Faster (50-200x) queries using ANSI standard ODBC/JDBC or SQL
  • Supports your compliance requirements
    • Pre-packaged reporting bundles reflect detailed mappings of PCI DSS, Sarbanes-Oxley (SOX), NERC CIP, HIPAA, GLBA, and FISMA
    • Ability to report in real-time on intra-period basis, enabling much more efficient, more effective and more timely responses to potential compliance or audit issues
  • Customer chooses underlying hardware and storage platforms
    • Enables use of same server hardware and replacement parts across business
    • Allows customer to control system patches and adherence to security policies
  • Supports all data transmission protocols (inputs)
    • Most formats supported “out of box”; unsupported formats easily integrated
  • Event enrichment using external data sources (ex. RDBMS, AD)
  • Supports “Chain of Custody”
  • An integrated solution
    • Seamlessly integrates with EventCenter to provide true business risk and compliance impact analysis to be realized and presented in real-time, integrating enterprise security operations and compliance functions into a single, cohesive team.
    • Easily integrates with 3rd-party software and hardware
      • Via either management console or native product interfaces

          Contact Us

         
Have questions?   Need answers?

Call us at +1 (800) 892-3646 or
Send us an Email

          Partial Integration List