Maidenhead, 30 November 2010 - LogRhythm, the company that makes log data useful, today announced that the University of Nottingham has implemented its log management and SIEM technology to prepare for future logging needs and gain more insight into what is happening across its IT infrastructure.
The university, ranked in the top one percent of world universities and seventh in the UK for research, reviewed its existing log management system and discovered it did not have the capacity to manage growing data logging needs. The LogRhythm solution will primarily be used to handle longer term requirements, when logs may need to be stored for anything from six to 18 plus months, and to manage security across the university.
After a review of competing solutions, including an open source product from Splunk, LogRhythm came out on top. This came down to a number of factors including LogRhythm’s ability to intelligently process a greater number of data sources, its wide range of investigation capabilities and the fact that it combines both log management and event management on one unified platform.
“At Nottingham we have 6,900 staff, 39,000 students and even two fully fledged campuses in Asia – as a large university we generate an awful lot of data and need an effective way to collect, analyse and process it,” said Paul Kennedy, security and compliance leader at University of Nottingham. “In addition, while universities aren’t currently subject to any formal compliance standards outside of the Data Protection Act, we are starting to field questions from potential research partners who require us to be ISO 27001 compliant. As a leading research body it is essential that future research grants are not jeopardised by the issue of non-compliance.”
Deployment centred on the key task of effectively managing data and security across the university’s entire IT infrastructure. The scale of this task was revealed when the LogRhythm system monitored an average of 26 million logs a day and stored over one billion events in the six weeks after it went live. It also identified a denial of service attack just days after the installation.
“One of the first benefits we received post implementation involved our being able to spot a denial of service attack targeting the internet gateway,” continued Kennedy. “LogRhythm enabled us to see logs from our switches and firewalls that previously would have been missed, and would have resulted in the university’s data processing systems being out of action for an extended period of time.”
Ross Brewer, vice president and managing director, LogRhythm EMEA, said, “ The University of Nottingham has taken the step of investing in infrastructure protection that not only meets its needs today, but also anticipates its future requirements. Log analysis and monitoring is a must for many compliance standards today. By choosing an automated system with the ability to monitor multiple data sources, process this input intelligently and offer a wide range of capabilities for analysing after data collection, the University of Nottingham has enabled itself to comply with regulations, secure its networks and optimise its IT operations.”
About The University of Nottingham
The University of Nottingham, described by The Times as Britain’s “only truly global university”, has award-winning campuses in the United Kingdom, China and Malaysia. It is ranked in the UK’s Top 10 and the World’s Top 75 universities by the Shanghai Jiao Tong (SJTU) and the QS World University Rankings.
The University is committed to providing a truly international education for its 39,000 students, producing world-leading research and benefiting the communities around its campuses in the UK and Asia.
More than 90 per cent of research at The University of Nottingham is of international quality, according to the most recent Research Assessment Exercise, with almost 60 per cent of all research defined as ‘world-leading’ or ‘internationally excellent’. Research Fortnight analysis of RAE 2008 ranked the University 7th in the UK by research power.
The University’s vision is to be recognised around the world for its signature contributions, especially in global food security, energy & sustainability, and health.
LogRhythm is a world leader in NextGen SIEM, empowering organizations on six continents to successfully reduce risk by rapidly detecting, responding to and neutralizing damaging cyberthreats. The LogRhythm platform combines user and entity behavior analytics (UEBA), network traffic and behavior analytics (NTBA) and security automation & orchestration (SAO) in a single end-to-end solution. LogRhythm’s Threat Lifecycle Management (TLM) framework serves as the foundation for the AI-enabled security operations center (SOC), helping customers measurably secure their cloud, physical and virtual infrastructures for both IT and OT environments. Built for security professionals by security professionals, the LogRhythm platform has won many accolades, including being positioned as a Leader in Gartner’s SIEM Magic Quadrant.