Compliance Solutions

Your organization faces unique compliance challenges. LogRhythm helps you address them by providing pre-configured compliance automation modules that address many of the
most common regulatory frameworks.

FISMA

Meet FISMA requirements and reduce your cost with out-of-the-box FISMA reporting packages.

GPG 13

Automate log management and with a GPG 13-optimized indexing structure and apply real-time analytics to expose areas
of non-compliance.

HIPAA

Use out-of-the-box investigations, reports and alarm rules to identify conditions impacting your ePHI data in real-time.

ISO 27001

Use out-of-the-box investigations, reports and alarm rules to identify conditions impacting your ePHI data in real-time.

NERC CIP

Categorize, identify and normalize data for analysis and reporting. Identify the most critical issues and notify relevant personnel.

PCI DSS

Use investigations, alarms and reports that are aligned with PCI DSS asset categories.

SOX

Improve your organization’s security and SOX compliance posture while reducing costs with our pre-configured reporting packages.

GLBA

Address GLBA requirements regarding financial privacy, safeguards, and pretexting.

201 CMR 17.00

To ensure compliance with 201 CMR 17 requirements, information systems and applications are monitored in real-time. AI Engine Rules, alarms, investigations, reports, reporting packages, and tails are provided.

DoDi 8500.2

DoDI 8500.2 and its recommendations guide organizations to implement and perform procedures to effectively capture, monitor, review and
retain log data.

NRC RG 5.71

Nuclear Regulatory Commission (NRC) licensees provide high assurance that digital computer and communication systems and networks are adequately protected against cyber attacks.

NIST Cybersecurity Framework

The National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) establishes information security standards and guidelines for critical infrastructure as defined within Executive Order 13636 from the President of the United States.

NIST 800-53

NIST 800-53 requires organizations implement and perform procedures to effectively capture, monitor, review, and retain log data.

NEI 08-09 Rev 6

With regulatory guidance not specifically being addressed in 10 CFR 73.54, the Nuclear Energy Institute (NEI) developed and published NEI 08-09 Rev 6 to cover many areas surrounding access control, audit and accountability, incident response, and system and information integrity.

“We use LogRhythm extensively to meet PCI and SOX compliance. It is also used on a day to day security and monitoring basis.”

– Network Administrator, Large Enterprise Retail Company