Home > Log Management, Security > Log management as SaaS – 2

Log management as SaaS – 2


This post is in continuation to my earlier post on “Log management as SaaS – 1“. This post covers an overview of SaaS based model and importance of Log Management Solution.

Target Readers

Reader should have a basic knowledge on Enterprise Log management to understand this post. Basics of Enterprise Log Management is not covered as a part of this post. You may browse through the following link for basics:

http://en.wikipedia.org/wiki/Log_management_and_intelligence

Overview

The midmarket tends not to have security staff, or the need for a security console. They just need to collect event log data that they can produce on demand. The midmarket is not trying to boil the security management ocean. They just need to retain event log data for PCI compliance.” – Eric Ogren of The Ogren Group, a Stow, Mass -based consultancy

Source http://searchcompliance.techtarget.com/news/article/0,289142,sid195_gci1340738,00.html

An affordable log management solution can help firms in the small, mid market to deal with growing scrutiny from regulations such as Payment Card Industry Data Security Standard (PCI DSS) and the Health Insurance Portability and Accountability Act (HIPAA).

What is Enterprise Log Management?

Log management is the process of generating, transmitting, storing, analyzing, and disposing of computer security log data. The Security Information and Event Management (SIEM) market has undergone rapid transformation over the past few years it has generally evolved in to Event Collection and Event Relevance.

  • Event Collection includes normalization and basic silo correlation of an event.
  • Event Relevance includes event translation, cross-silo correlation and incident creation.

Basically we can define the Security Management opportunity by the following markets:

  1. Security Event Management
    • Arcsight, Netforensics
  2. Security Information Management
    • CA, Intellitactics, e-Security
  3. Log Management
    • Log Logic, Sensage, Network Intelligence
Before we go any further, let’s first understand the importance of Log Management

Importance:

  1. Proactive log management are mandated and are the focus for many regulations within the financial service industry
  2. According to Basel II Accord logs of an organizations should be retained for 3 to 7 years
  3. Sarbanes-Oxley (SOX) of 2002 requires audits of unauthorized access, misuse, and fraud to ensure the accuracy of the corporate financial and business information and maintain financial records for seven years.
  4. Federal Financial Institutions Examination Council (FFIEC) recommends that audit logs are reviewed daily and shared with senior management.
  5. Gramm-Leach-Bliley Financial Modernization Act of 1999 (GLBA) mandates that the financial institutions protect the security and confidentiality of customers, it expects this to be taken care by prudent log management practices to successfully monitor and analysis of activities that could threaten loss of sensitive customer information
  6. PCI mandates retention of logs for 1 year, EU DR directive mandates retention of logs for 2 years…
  7. Log Management can ensure business continuity and helps improve operating efficiency.

Related Posts:

Advertisements
  1. March 21, 2013 at 10:24 AM

    I read this piece of writing completely on the topic of the resemblance of most recent and previous technologies, it’s awesome article.

    Like

  1. November 14, 2010 at 1:07 PM
  2. December 3, 2010 at 2:24 PM

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: