"NitroView is a strong performer in the enterprise database auditing market"
— The Forrester Wave: Enterprise Database Auditing & Real-time Protection, 2007
 
 

Compliant Log Management

Complete Log Management for meeting your security and compliance needs. Whether it's Sarbanes-Oxley, PCI, GLBA, FISMA, FDIC, or HIPAA, the intent is the same: U.S. government agencies expect you to automatically monitor access to your IT systems and provide proof that policies exist and are being enforced. LogCaster let's you do that.

  • Automate Log Management Practices. NitroView ELM automates event consolidation, collection, alerting and reporting across the enterprise to ensure compliance mandates are met.
  • Manage Security Policies Enterprise-wide. LogCaster reviews configurations across your systems and highlights weaknesses to help you align practices enterprise-wide.
  • Monitor Security Practices. NitroView ELM monitors security practices 24/7 across disparate systems and devices to ensure policies are always enforced, day or night, around the world.
  • Thwart Suspicious Activity. NitroView ELM send real-time alerts to your console to warn you of suspicious activity and provides detailed information to enable you to take action.
  • Maintain Proof of Security Policies. NitroView LogCaster maintains a detailed audit trail and centralized database of all activity from all systems enterprise-wide with summary reports and drill-down to detailed session.

Log Management & Analysis? Proof of Compliance? Raw Log Storage?

We can do that. NitroView ELM provides universal log collection, including binary logs and custom application logs. Logs are stored in their original form, encrypted and validated to ensure proof-of-compliance. Logs are also capable of triggering events, letting you know when suspicious activity has occurred. NitroView ELM is a great solution on its own, and also the perfect companion to NitroView ESM.

Pre-defined rules & reports to meet your security & compliance needs for:
  • PCI
  • SOX
  • HIPAA
  • FISMA
  • FDIC
  • GLBA
  • ISO 17799
  • Basel II
  • FFIEC
  • DCID 6/3

NitroView ESM provides universal collection of events (including LogCaster events), network flows, security events from firewalls, IDS and IPS devices, servers and hosts. NitroView ESM offers massive storage capabilities and real-time analytical capabilities—allowing you to perform forensic analysis of all NitroView ESM also provides correlation of events, flows and logs— offering one of the most comprehensive incident detection systems available.

Use them on their own, or together.

NitroView ELM and NitroView ESM work well together: using LogCaster to store and protect raw logs, and using NitroView ESM to perform deep analytics on supported log files.

Universal Log Management

Syslog, database or application logs, even binary log files can be collected by NitroView ELM. Available in three forms—agent, agent-less, or network-based—NitroView ELM offers a complete log management solution that can fit any environment.

"With LogCaster for Sarbanes-Oxley, I am 100 percent confident that when an auditor comes knocking, I can easily provide the necessary proof demonstrating our internal IT controls of our financial data"

Log Management & SIEM

Logs need to be managed, stored, and protected ... but they also need to be analyzed. That's why many log management companies are starting to provide basic SIEM functionality, and why many SIEM companies are selling add-on log management solutions. NitroSecurity believes in the convergence of Log Management and SIEM.

The first steps are here today: leveraging the ad-hoc reporting capabilities of NitroView ESM to provide robust analysis of most logs, and NitroView ELM's universal log management capabilities to examine the rest: if LogCaster sees anything out of the ordinary, it will send a compatible event to the ESM, so that it can be correlated with other security events and log data, and even network flows.

The next step? Leveraging the full power of our high-performance data management architecture, NitroSecurity is aiming for true, enterprise-class Log management & SIEM — together, including a common management and analysis interface, universal log collection, analysis and storage, and the ability to instantly locate the signed & encrypted raw log file associated with any given event.

Benefits of NitroView ELM:

  • Universal Log Management— storing, signing, encrypting and validating any log format
  • Proof of Compliance— logs remain useable as evidence
  • Flexible Collection, agent, agent-less, or network-based log collection

Benefits of NitroView ESM:

  • Deep Log Analysis, logs are normalized and heavily indexed for powerful analysis and correlation
  • Real-time reporting, NitroView ESM's high-performance architecture can produce complex data queries over millions of records in seconds.




These icons link to social bookmarking sites to help share this content.
  • bodytext
  • del.icio.us
  • Reddit
  • Slashdot
  • Technorati
  • Propeller
  • TwitThis
              
 

Search NitroSecurity.com