LogRhythm for Compliance and Audit

Products

Applications

Services

Resources

Partners

Company

Support

Business Intelligence

Insider Threat/Fraud Detection

Forensics/Investigation

eDiscovery

Database Monitoring

To meet PCI requirements and other data security mandates, organizations must have adequate controls for log management, including collection, review, retention and destruction. Automated and centralized solutions like LogRhythm are essential for companies to meet key parts of the PCI regulation. Coalfire has validated LogRhythm’s technology as meeting requirements under PCI and industry standards and best practices for this key control area.

Alan Ferguson
Vice President and Co-Founder
Coalfire Systems, Inc.

LogRhythm for Compliance and Audit Automate and Manage Log Collection, Retention, Review and Reporting Requirements LogRhythm makes it easy for you to comply with regulatory requirements for log data collection, review, archival and retrieval - whether it's PCI-DSS, Sarbanes Oxley, HIPAA, FISMA, NERC CIP or other government regulations. LogRhythm also helps companies realize efficiencies and new capabilities in the audit process. Some of the many capabilities of the LogRhythm solution that provide substantial assistance to compliance and audit challenges include: Collects and archives cross-platform log data in real time Compresses logs for efficient long-term storage Simplifies search and retrieval of specific logs for analysis and forensic investigation Automatically identifies important audit events and alerts appropriate individuals Provides an easier and more affordable way to automate log management for compliance With LogRhythm you can immediately address and automate specific log data review, storage and retention requirements. Automated, One-button Reporting LogRhythm provides a full suite of compliance report packages with every deployment including PCI-DSS, SOX, FISMA, HIPAA and others. In addition to the report packages included with every LogRhythm solution, custom reports can also be generated quickly and easily. Download Compliance Whitepapers Now



Real-time Monitoring LogRhythm’s personal Dashboard provides a fully customized view of events in real time. Using the Personal Dashboard, users can quickly and efficiently monitor for suspicious activity impacting servers, applications and devices. Audit Automation LogRhythm automatically identifies important audit events in real time, reports them and alerts on events that warrant immediate action. LogRhythm can automatically identify numerous types of audit activity including: Changes to a system configuration Repeated authentication failures from the same login Repeated access control violations from the same login Repeated access control violations from the same host Account management activity Auditors can be automatically notified of specific audit activity and use LogRhythm analysis tools to assist and speed up the review process. Independent Audit Log Access LogRhythm automates and reduces the cost of acquiring audit data. Audit logs are collected immediately, without requiring the assistance of administrators. This saves time while preserving segregation of duties. With LogRhythm, auditors have independent and centralized access to log data. Log data is automatically prepared for analysis and reporting. Auditors can use LogRhythm analysis tools or develop their own. Terminated Account Monitoring A challenge many companies face is disabling a user account after the user has left the company. An employee may have multiple accounts across different systems and applications. LogRhythm allows you to easily monitor any activity originating from what should be a terminated user account.