« EMC Smarts Gets LogLogic Powered | Main | LogLogic - The Industry's Best Security Forensics Tool »
Launching The LogLogic Compliance Suite
It’s been another big week for the LogLogic team and our customers. LogLogic 3 release 2 adds a ton of new features – 50 plus in fact. And we launched our Compliance Suite. I’m guessing we’ve demoed the product a couple of hundred times in the last week, during which several general themes came through loud and clear:
- There is a huge operational pain-point that LogLogic solves. Dealing with log data – and hunting for what is invariably a needle in a haystack isn’t enough. People are looking for ease of reporting, alerting and storage. As one attendee said – “a tool that still requires me to write a ton of scripts – or takes hours to generate reports – isn’t of much use”. We’ve talked lots in the past about being like Google. It seemed that everyone wants to be the Google of something. But here’s the catch – Yahoo is a great customer and hugely successful. Drawing a parallel with Yahoo is probably more appropriate for another reason. That is, we provide much deeper utility than simple search. Much like Yahoo is a window into your life. LogLogic is a window into your IT infrastructure.
- LMI is not SIEM. They are complementary; they both make use of log data. But they are different. It was interesting the number of Enterprises with a SIEM that were now looking for LMI to address a broader pain point.
- If compliance is the end-game, then controls are the means to getting there. So the end-game is SOX, PCI, HIPAA – pick your flavor of regulation, but to get there you need to implement and then automate controls. People aren’t interested in vendor driven controls – or just security controls – they want tools that align with industry standard best-practices. So, the first release of our Compliance Suite was welcomed for the fact that it aligned with COBIT 4.0. The fact you easily tailor these reports is a big bonus.
- Real-time correlation across devices using behavioral anomaly detection is cool. We demonstrated the ability for LogLogic 3 to detect a user - still present on the network after being terminated – entering the network, accessing information in Oracle databases and source code repositories and then emailing that data to private email accounts. Rather than just security events we looked at all kinds of user activity and painted a full picture of the incident occurring.
- People quickly get to all the other things LogLogic can do for them – rapid responses to HR requests on; quick resolution of user authentication and access issues; fine tuning of large network deployments; aggressive alerting on Oracle financial databases; automation of email retention policies… the list is a long one…
So, all in all, a very exciting week. Thanks to Chris and the team at DEMO! for selecting us as one of the exclusive few to present. It was an incredible experience.
Posted February 14, 2006 in LogLogic News | Permalink
TrackBack
TrackBack URL for this entry:
http://www.loglogic.com/mt/mt-tb.cgi/35
June 2008
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | 5 | 6 | 7 |
| 8 | 9 | 10 | 11 | 12 | 13 | 14 |
| 15 | 16 | 17 | 18 | 19 | 20 | 21 |
| 22 | 23 | 24 | 25 | 26 | 27 | 28 |
| 29 | 30 |
Categories
Archives
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- September 2005