Castleforce IT Security Team

LogRhythm provides a comprehensive-fully integrated-enterprise-class log management-log analysis and event management solution

LogRhythm Single Integrated Solution

LogRhythm is an enterprise-class application that seamlessly combines Log & Event Management, File Integrity Monitoring and Endpoint Monitoring & Control into a single integrated solution.  It is highly reliable, cost effective and easily scalable across any size enterprise.  With LogRhythm, you can invest in a single solution to address needs and challenges throughout your organization, whether they are related to compliance, security or IT operations.

There is a wealth of information that can be derived from log data whether it originates in applications, databases, servers, network devices or endpoint systems.  By automating the collection, organization, analysis, archiving and reporting of all log data, LogRhythm enables organizations to easily meet specific requirements, whether driven by internal best practices or one of many compliance regulations.  LogRhythm delivers valuable, timely and actionable insights into security, availability, performance and audit-related issues in real-time.

Butler Technology Audit on LogRhythm Jan09 Datasheet

Bloor Research Detail Report on LogRhythm Jan09 Datasheet

By fully integrating functionality that is traditionally associated with Security Information and Event Management (SIEM) with File Integrity Monitoring and Endpoint Monitoring & Control, the collective value of all functions grow substantially.  For example, security personnel can be notified in near real-time when sensitive files are changed, deleted, etc., and the activities can be traced back to an individual user. These capabilities allow organizations to meet additional regulatory compliance requirements, such as Payment Card Industry Data Security Standard (PCI DSS) 11.5 and 12.9, without purchasing a separate product.

LogRhythm One Integrated Solution

Key Features

  • Collects and Centralises ALL Log Data
  • Real-time monitoring and alerting
  • Useful analytics, trending and correlation
  • Automated Log archiving and recovery
  • Compliance for PCI, SOX, HIPPA etc.
  • Turnkey Appliances
  • Automated Reporting

LogRhythm is cross-platform, highly reliable and easily scalable across an enterprise.

Unlike inadequate and inefficient home-grown scripts, LogRhythm provides a comprehensive, easy to use solution for companies of all sizes.

File Integrity Monitoring

Steady-state monitoring to ensure the integrity of sensitive files is more than just a security best practice.  For many organizations it is a regulatory mandate as well.  PCI-DSS 11.5 mandates:

"Deploy file integrity monitoring to alert personnel to unauthorized modifications of critical system or content files, and perform file comparisons at least daily or more frequently if the process can be automated."

LogRhythm provides comprehensive file integrity monitoring that is fully integrated with enterprise-class log & event management as well as endpoint monitoring & control.  This integrated approach enables LogRhythm customers to simplify and strengthen their security, audit and compliance posture.

Fully Integrated with Log & Event Management & Endpoint Monitoring & Control

  • Provides additional PCI Compliance with the most complex elements of the DSS
  • Central & policy-based configuration and administration
  • User activity monitoring syncs user context to file changes/deletions/additions/permission changes, etc.(e.g., at time of change: who was logged in, for how long, what else did they do, etc.)

Monitors All Types of Files in Near-real Time

  • Including: executables, configuration files, content files, log and audit files, web files, database files, etc.
  • Configurable frequency of scanning and reporting (e.g., scan every minute for password files, scan daily for general business files, etc.)

Fine-grain Controls and Filters

  • Ensures only applicable files/folders are monitored as often as required

Out-of-the-box Policies Provided for O/S and Common Applications

  • Supported on Windows, Unix and Linux systems  

Alternative Log Management

Assuria Auditor measures, manages and enforces security policies and Log Manager is designed to meet the requirements of enterprise wide management of audit logs generated by systems, devices and applications Assuria Log Manager (ALM) has achieved CESG CCTM approval and securely collects and manages audit logs to comply with regulations. The small footprint ALM agents are available for Windows, UNIX and Linux servers, databases, applications, network devices, firewalls, routers, access control systems and many more. Collection from new log sources can be added via agent plug-ins. Collected logs are stored in their original format in a standard file / folder structure with log data integrity ensured through digital signatures and cryptographic hashes. 

For more details on Assuria Log Manager 

Contact us for more details on LogRhythm

Castleforce can help you reach PCI DSS

Requirement 10 Track and monitor all access to network resources and cardholder data

LogRhythm PCI DSS Whitepaper Datasheet

Castleforce can help you reach GCSx CoCo

GCSX No 13 Protective Monitoring

LogRhythm GCSx CoCo Whitepaper Datasheet

Castleforce can help you reach ISO27001

A.10.10 Monitoring

SC Magazine Best Buy to LogRhythm

SC Magazine designates LogRhythm a BEST BUY & awards a 5-Star Rating

"Plenty of easy-to-use features, this one is our Best Buy"

SC Magazine LogRhythm May09 Datasheet

SC Magazine May 2009 votes Log Rhythm a Best Buy for Network Forensics

View-Quick-LogRhythm-Demo

LogRhythm Support

LogRhythm offers a variety of Maintenance and Support options to meet the needs of its various and diverse customers.  The two most common Maintenance and Support offerings are our Standard and Platinum services.

Standard Support & Maintenance includes:

  • All software updates, including all major and minor releases and LogRhythm Knowledge Base updates
  • 3-year standard hardware warranty and support
  • 4-hour response to technical support requests (within normal support hours)
  • Next business day response to site hardware support for any hardware issues, after telephone troubleshooting is exhausted
  • Technical phone support coverage period 7am-6pm MST
  • 24/7 access to Support Portal, including LogRhythm Forums

Platinum Support & Maintenance includes:

  • Standard Support & Maintenance offerings
  • 24/7 technical phone and email support
  • 4-hour response to technical support requests 24/7
  • 4-hour on site response for any hardware issues, after telephone troubleshooting

The support section is a tool for LogRhythm customers. In addition to access to expert technical support, it provides documentation, support tips, downloads, and other useful information and tools.

Assuria Compliance and Vulnerability assessment, change detection, file integrity monitoring, Server Hardening and Log Management NETASQ-UTM-EAL4-Network-Security-appliances Credant we protect what matters DESlock+ FIPS-140-2 CESG CCTM Full disk Encryption, Removable Media Encryption, Email Encryption, Folder Encryption Stonesoft produce high availability multi link ISP firewalls to help reduce single point of failure Sourcefire-3D System and masters of SNORT and CLAMAV InfoGov helps you to achieve compliance, manage risk and demonstrate good governance now, and into the future. Swivel-PINsafe-CESG-CCTM-the-power-of-knowing Lumension-Security-Patch-Management-and-end-point-protection Imprivata OneSign Single Sign-On (SSO) appliance Check Point firewalls and Pointsec Encryption software Wallix-AdminBastion-and-LogBastion-provide-access-control-and-monitoring-solutions

© Copyright Castleforce 2007-2012. Web design by Theme Group