« The Demystification of Event Logs | Main | NIST Expert Says Legacy Systems Must Be FISMA Compliant Within 1 Year »
Compliance Driving Log Management Into the DataCenter
Datacenters are increasingly turning to log management to ease compliance burdens according to Matt Stansberry at SearchDataCenter. Stansberry points to SAS 70 auditing as an example of internal controls define standards for auditors in assessing controls at a service organization and says that logs come into play as data center managers can prove controls such as proving that the business "has disabled user logins when people are terminated."
Analyst Dana Gardner weighs in:
For instance, a company can show how it is enforcing its policies. If a company doesn't want its workers sending emails to employees in a competing company, it can use log data on routers, hubs and email systems to block or record that activity.
"It can also be used for internal issues," Gardner said. "If you're a financial institution, your traders shouldn't be talking to your investment bankers. You can prove to the SEC that your traders aren't having communications with the investment bankers, at least not on your systems."
Illinois auditing consultant Russ Gates adds:
"I sat in on a Web-cast LogLogic did the other day and a lot of their points are valid," Gates said. "If somebody thinks logs are important and relevant you've got to have software to deal with it. In any big system you'd have hundreds of thousands of events being logged. Parsing out the ones that matter -- a database failure or security violation, getting those in front of somebody -- the key thing is tying those into a response you can do something with."
As Anton noted earlier this week, traffic is up on the loganalysis mailing list, and other trends are showing that log management is emerging right now! As simple Google search of "log management" drives this home with over 239 million hits -- and growing daily.
Posted January 23, 2007 in Compliance , Log Management & Intelligence | Permalink
TrackBack
TrackBack URL for this entry:
http://www.loglogic.com/mt/mt-tb.cgi/128
June 2008
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | 5 | 6 | 7 |
| 8 | 9 | 10 | 11 | 12 | 13 | 14 |
| 15 | 16 | 17 | 18 | 19 | 20 | 21 |
| 22 | 23 | 24 | 25 | 26 | 27 | 28 |
| 29 | 30 |
Categories
Archives
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- September 2005