|
|
| |
 |
 |
|
 |
LogRhythm has already set itself
apart from other competitors through
their "building block" strategy for
integrating SIEM solutions into IT
infrastructures. This creates a simple,
manageable hierarchy that offers a deep
level of network analysis and
easy-to-monitor event correlation. As a
best-of-breed solution, LogRhythm is on
the cutting edge of innovations that
makes SIEM more effective.
Mike Montecillo
Enterprise Management Associates
|
 |
|
 |
 |
|
| |
|
|
|
|
|
 |
|
|
|
Event
Management
LogRhythm’s Event Management function
combines real-time monitoring and
alerting with comprehensive incident
management and response. LogRhythm’s
Personal Dashboards present event
information in the most useful and
effective manner to meet the specific
needs of individual users. The dashboard
also acts as a portal to a suite of
highly effective investigative and
reporting tools including the LogRhythm
Investigator and LogMart.
Real-time
Monitoring
Because LogRhythm
collects and analyzes logs in real-time,
logs deemed to be events are immediately
forwarded as such and are escalated
according to their level of criticality.
Event information is delivered in real
time to the personal dashboards of those
users predefined as authorized viewers
for those classifications of events.
Through the personal dashboard users can
monitor events in real time and quickly
review and drill down as appropriate.
LogRhythm dashboards can be easily
customized by and for each user. As a
result, every user sees and can analyze
the information that is most relevant to
them and their role.
Role-based Alerting
LogRhythm can easily be
configured to send alerts on critical
events or combinations of events to an
individual or groups of individuals
based upon user roles, asset values of
impacted systems or applications, or a
variety of other factors related to
ensuring the right alerts reach the
right people at the right time.
Incident Management & Response
The LogRhythm solution
includes comprehensive incident
management capabilities. Incidents
(alarms) are viewed and managed via the
real-time personal dashboard. Every
action taken on an alarm is documented
(who was notified, when it was analyzed,
work that was done, etc.) as part of the
alarm history. A comprehensive set of
reports provides a full history of
incident management activity and
response. Whether your requirements for
tracking incident management activities
are driven by compliance mandates or
internal best practices, the LogRhythm
incident management functions will
deliver on your reporting, tracking and
audit needs. |
 |
|
|
|
|
|
