News Releases

Log Management & Intelligence Extends Capabilities to Guard Corporate Information Assets

LogLogic 4 Release 2 Complements Corporate IT Governance, Risk and Compliance Programs with New Fine-grain Auditing to Track All User Activity

SAN JOSE, CA – October 8, 2007 – LogLogic®, the leader in log management and intelligence, today released LogLogic 4 Release 2, which extends LogLogic's log data warehouse capabilities to include fine-grain auditing capabilities that documents all users activities including data accessing, changing or deleting information at rest. By monitoring information level activities, companies can better protect information assets and complement IT Governance, Risk and Compliance initiatives. With the new release, LogLogic's log data warehouse is giving companies an on-demand way to see who is accessing, changing, deleting or moving information stored on file systems, Windows and UNIX servers, databases and midrange systems from NetApp, Blue Coat, Sun Microsystems, Microsoft, HP, IBM, Oracle and Sybase, among other vendor solutions.

Logs are a fingerprint of systems and user activity and are central to an IT professional's daily security and operations routines to provide business executives with the data and intelligence Enterprises need to prove compliance with IT controls and regulations such as PCI and SOX. With the addition of LogLogic 4 Release 2, the business now has a way to deploy a log data warehouse in order to monitor and audit user activities at a time when information leakage and misuse incidents are at an all time high.

"As executives' fiduciary responsibilities expand to include the protection of corporate reputation and the safeguarding of information assets like customer and personnel data, as well as the security of intellectual property security, being able to prove system activities of users and non-authorized personnel is mandatory," said Dominique Levin, Chief Executive Officer at LogLogic. "Delivering the means to monitor this activity goes a long way to protect information – both as a deterrent to users who know they are being watched to safeguarding against the unknown predator of information theft. With log data serving as the digital equivalent of a surveillance camera, Log Management and Intelligence with fine grain monitoring capabilities serves as both deterrent and immutable legal evidence that can be used to prosecute violations as powerful evidence to safeguard corporate reputation."

Knowing who is actually accessing sensitive data is also a first step towards designing or validating new security and compliance policies. Inappropriate access can be identified and corrected through new policies or new user configuration. For example, if you find that 2,000 developers are accessing source code you may want to re-design your access rights and privileges.

"Due to much publicized internal and external data breaches, IT is facing the brutal truth regarding the importance of collecting log and network flow data," said Jon Oltsik, Senior Analyst at Enterprise Strategy Group. "User activity monitoring, risk mitigation and compliance mandates can all be tackled effectively by log management, and the Global 2000 is taking notice."

The LogLogic log data warehouse delivers much broader user and system activity monitoring capabilities. Inappropriate information usage can be correlated with other user activities. System analysts can, with a single mouse-click, view which web applications a user has visited, which e-mails a user has sent, when a user connected to the VPN and at what time a user left the building, when the appropriate log data is collected. This comprehensive approach to user activity monitoring through the use of log data complements identity management operations. Where identity management is focused primarily on authentication and authorization, log data capture completes the puzzle of all users' activities after they have been authenticated by the system.

The New LogLogic 4 Release 2 includes more than 25 new features, including:

• Collect and analyze fine-grain audit logs from servers, database and file servers.
• Ability to verify the integrity of log data archived in the LogLogic log data warehouse.
• Ability to detect and remove duplicate log entries in log files.

About LogLogic

LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. LogLogic 4 LX and ST systems address the compliance, operations and risk mitigation needs of the most demanding Fortune and Times 1000 companies globally. LogLogic's innovations include creating the world's first search engine for fast moving IT log data and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has established a position as the market visionary and leader, as evidenced by awards and accolades including SCMagazine 'Approved for SCLabs Rating' in 2006 and 2007, Recipient of ITWeek's Editor's Choice Award, Named AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's "Best Computer Forensics," Info Security's "Hot Company 2006," and was named to the Red Herring 100 in 2006. For more information, visit www.loglogic.com and http://blog.loglogic.com.

Additional news and articles about LogLogic.

LogLogic is a registered trademark of LogLogic Inc. Other names may be trademarks of their respective owners.

Technorati : Compliance, Log Management, Log Management & Intelligence

Posted October 8, 2007 11:30 AM