SANS Analyst Review of Log Management, highlighting ArcSight Logger, by analyst Jerry Shenk.
This white paper provides a requirements checklist for those considering options and features for their log management systems. Over the past four years, the SANS Annual Log Management Survey has shown increased interest in log management as organizations begin to realize the value that their logs can provide to auditors, security teams, network administrators, and even operational business units. Compliance with PCI, SOX, HIPAA, and other regulations is the primary driver for collecting logs, according to 78 percent of respondents in one part of the survey. But another question showed that logs are also being viewed as a means to increase visibility into networks, improve overall security effectiveness, and minimize downtime.
Click here to Download
Are you aware of the drivers for log management scalability and the resulting requirements that should be considered in any log management evaluation?
In the last few years, log management has become increasingly relevant to multiple groups within any organization. Audit teams leverage logs to automate compliance reporting and detect policy breaches. Security teams monitor log data to detect internal and external threats as well as for forensic investigations. Logs are also widely used by IT operations or helpdesk teams for faster troubleshooting and better adherence to service level agreements.
Click here to Download
Detect, investigate and respond to fraudulent transactions from within and outside an organization to address essential business operations.
Detecting, investigating and responding to fraudulent transactions from within and outside an organization is an essential function of business operations. When most organizations start thinking about fraud solutions, a number of questions generally arise:
- Do we not already have an adequate solution?
- Are there tools that can “really” detect fraud?
- We are watching our applications – isn’t that enough?
- Monitoring external fraud is hard enough, how can we possibly monitor fraud from internal, trusted users?
The following white paper will outline the requirements for an effective fraud mitigation solution. It will detail a solution that considers the entirety of an organization’s fraud mitigation strategy.
Click here to Download
NERC deadline approaching - Are you prepared for the new 2009 cybersecurity regulations?
Find out how to prepare for the new NERC cybersecurity regulations. All bulk power system owners, operators, and users are responsible for compliance with regulations, measures and standards developed by North American Electric Reliability Corporation (NERC) starting July 2009, including preparations for auditable compliant requirements in 2010.
Click here to Download
Learn how to use SIEM to implement compliance monitoring.
Are You Ready for the Red Flags Rule?
- Reduce the cost of Red Flags Rule compliance through automated monitoring
- Enable quick and easy forensic investigations into violations
- Extend to broader security and compliance initiatives
Click here to Download
