News Releases

G2000 Logjam Spurs on Log Management Intelligence Market

Log Industry To See Double-Digit Growth to $380M in 2006

WASHINGTON, DC and SAN JOSE, CA, July 13 — From stringent regulatory requirements to keeping IT operations running optimally, the Global 2000 are investing in log intelligence, according to a report out today from the SANS Institute and leading log management vendor LogLogic. “The Log Industry: An Untapped Market” is the first study to identify the business and technology issues faced by IT executives and examines how log data is being used to address their critical needs.

“Faster, more informed decision making drives competitive advantage,” said Chris Brennan, CEO LogLogic. “IT is the center of business operations and intelligent log data is central to that role. Log data has long been known for providing key regulatory and security functions, but the industry is finally waking up to the fact that log intelligence provides businesses with critical real-time insight into their operations, enabling them to respond immediately, armed with the most accurate information possible.”

“Businesses are increasingly looking to IT for insight into their operations,” said Stephen Northcutt, CEO of the SANS Institute. “In our analysis, we found that G2000 IT leaders are today not only validating the use case for log intelligence, but are signaling the increased need for the market to evolve even further with log services that cost-effectively allow them to exchange information with other solutions.”

The SANS Institute study found that the market for log intelligence solutions is expected to experience double digit growth year over year, and is poised to reach $380M in FY2006. In more good news for LMI, SANS reports forty-one percent of G2000 survey respondents plan to make changes to their log management practices over the next year, providing a significant business opportunity for the log management industry.

Other key findings in the report:

• Log data usage is increasing exponentially. Respondents report retaining log data longer, 37% say they are maintaining logs more than one year to meet compliance requirements and growing operational needs. This is an increase from 2005, which saw just 28% retaining log files.
• Most of the G2000 are not meeting compliance mandates. While one fourth of those surveyed report log retention for over a year, 44% report keeping log data for a month or less. This is despite regulatory recommendations and/or requirements that logs be maintained for three to five years. And just one third of enterprises surveyed reported using logs for compliance-related issues, with 10% using log data solely for compliance-related issues.
• Security is not the prime motivation for log management. Over half of those surveyed reported using log data for operations management and monitoring the health of the network. Concurrently, one third is using log data for forensics, with 11% reporting that they use logs exclusively for that purpose.
• Over 80% of enterprises still use homegrown solutions for log management. More than half of the survey respondents reported to be satisfied with their current log management strategy, demonstrating some improvement in the past year. Of those that were not happy, 85% reported they are planning to make changes. This is up from two out of three in last year’s survey.

The report estimates that up to 25% of all data generated in the enterprise is log data, and is requiring companies to rethink their log management policies. Andrew Davies of the University of California at San Diego confirms this trend, “Rapid evolution of our entire enterprise IT infrastructure has resulted in exponential growth of data. This is requiring a reassessment and automation of log auditing methods.”

About the Report

The SANS Institure study was developed in association with LogLogic to capture log management trends in public and private companies across the North American Global 2000. The study polled IT executives across government, banking, manufacturing, healthcare and education sectors. In February of 2006, the SANS Institute distributed surveys to approximately 2,000 IT executive and performed a statistical analysis of the proxy data. Results are based on information from more than the 176 public and private companies, comprising 18% in the G200 and 82% in the G2000.

“The Log Industry: An Untapped Market” is being released today at the inaugural Log Management Summit in Washington DC, an event created by LogLogic and the SANS Institute to bring together users and log intelligence vendors to thoroughly examine relevant choices for their infrastructures. The conference brings together industry leaders to explore the technology decisions and future direction of log management intelligence.

To review the full report, please visit http://www.loglogic.com/resources/white-papers/sans-download/.

About The SANS Institute

SANS is the most trusted and by far the largest source for information security training and certification in the world. It also develops, maintains, and makes available at no cost, the largest collection of research documents about various aspects of information security, and it operates the Internet's early warning system - Internet Storm Center. The SANS (SysAdmin, Audit, Network, Security) Institute was established in 1989 as a cooperative research and education organization. Its programs now reach more than 165,000 security professionals, auditors, system administrators, network administrators, chief information security officers, and CIOs who share the lessons they are learning and jointly find solutions to the challenges they face. For more information, please visit the company’s Web site at www.sans.org, or phone 301-654-SANS (7267).

About LogLogic

LogLogic™ provides the world’s leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. LogLogic series 3 LX and ST appliances address the compliance, operations and risk mitigation needs of the most demanding Fortune and Times 1000 companies globally. LogLogic’s innovations include creating the world’s first search engine for fast moving IT log data and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has won multiple awards including 2006 AlwaysOn Top 100 Private Company, Best of Interop 2005, SC Magazine’s “Best Computer Forensics”, Info Security’s “Hot Company 2006, and the Red Herring 100.” For more information, visit loglogic.com and blog.loglogic.com.

Posted July 13, 2006 06:00 AM