Technology

Centralized system event monitoring at eQ Technologic with Log360

eQ Technologic
eQ Technologic

About eQ Technologic

eQ Technologic is a software development company with over 23 years of experience helping organizations accelerate digital transformation. Its flagship platform, eQube®-DaaS, is a low and no-code data integration and analytics platform that enables secure, scalable data connectivity and actionable insights. Recognized in multiple Gartner® reports, eQ Technologic supports global enterprises across industries with solutions that modernize legacy systems and simplify data-driven decision-making.

  • Organization

    eQ Technologic
  • Country

    USA
  • Industry

    Technology

Breaking down the business requirements

eQ Technologic needed reliable access to system event data for forensic analysis, audits, and security investigations. The team was already using a SIEM solution but was dissatisfied with both the product’s capabilities and the quality of technical support.

A key challenge was delayed incident response. When issues occurred, support requests often took one to two weeks to be addressed. During that time, multiple system events could be lost or unanalyzed, making it difficult to perform timely forensic investigations or meet audit requirements.

The organization operates across multiple geographic locations, adding complexity to log collection and license management. As a result, the team needed a centralized and scalable logging solution that could support distributed environments while providing dependable support and customization.

Ujwal Chavan, system administrator at eQ Technologic, explains the core requirement:

"Primary business requirement was this: We needed system events for forensic reporting, audit, and related purposes."

Choosing ManageEngine Log360

After evaluating alternatives, eQ Technologic conducted a proof of concept with ManageEngine Log360. The platform met their technical requirements and offered flexibility that was missing in their previous solution.

Log360 provided the ability to collect, analyze, and retain system events across environments, while also offering better responsiveness from the support and implementation teams. This was especially important given the organization’s need for customization and timely troubleshooting.

The team also adopted the Log360 MSSP edition to manage licenses centrally across multiple sites, simplifying license distribution and reducing administrative overhead.

Chavan explains why Log360 met their expectations:

"We did the POC for the ManageEngine Log360 product, and it fulfilled our requirements."

Use case: Centralized logging across global sites

eQ Technologic operates across three locations: India, the UK, and the US. The MSSP edition of Log360 was primarily used to manage licenses centrally, while logs were collected and analyzed at the site level.

This setup allowed the organization to support distributed operations without complicating license management. Even though the MSSP server was not used for day-to-day log analysis, it played a key role in simplifying administration across regions.

Chavan explains how the MSSP setup was used:

"Log360 MSSP is basically for license distribution… we can manage the licenses across multiple sites."

Monitoring system, application, and security events

A major use case for Log360 at eQ Technologic is tracking user activity and privilege-related events across systems and applications. The team relies on logs to investigate suspicious behavior, unauthorized access, and potential misuse.

Custom log sources were configured, including Atlassian Jira, Bitbucket, and Trellix DLP. These logs help the team monitor login activity, privileged access, and data movement events such as USB usage, without having to manually check individual systems every day.

Log360 also supports the organization’s broader security monitoring goals by centralizing visibility into events that would otherwise remain siloed.

Chavan describes the value of this visibility:

"We just want to know if we miss any user login logs or privileged login user details, which we require in case any suspicious activity happens on these devices."

Customized reporting and onboarding support

Due to the level of customization required, onboarding support played a critical role in the implementation. Anand, the implementation manager, worked closely with the team to configure custom reports and event monitoring tailored to their needs.

Some reports, especially those related to Windows events, required manual configuration in EventLog Analyzer. Anand handled these configurations, including custom reports, ensuring that the required data was captured correctly.

This hands-on support reduced complexity for the internal team and ensured the solution was aligned with their audit and monitoring requirements.

Chavan reflects on the onboarding experience:

"Anand helped us a lot. It was somewhat difficult, but Anand helped us configure the reports and customization."

Supporting compliance and audit needs

Log360 supports eQ Technologic’s compliance efforts by helping the team collect and retain system event logs required for audits. The organization follows multiple security frameworks, including NIS compliance, Cyber Essentials, and ISO 27001, and relies on centralized logging and historical data to meet audit requirements without having to manually collect logs from individual systems.

Outcomes and improvements

With Log360 in place, eQ Technologic has improved its ability to manage system events, investigate incidents, and support audits. Tasks such as adding devices, managing events, and configuring reports are now easier compared to their previous solution.

The platform’s usability has reduced operational friction, allowing the team to focus on security analysis rather than tool management.

Chavan rates the experience positively:

"It’s very easy to manage and add devices as well as manage system events."

Overall experience and recommendation

From a technical and implementation perspective, the experience with Log360 and ManageEngine’s onboarding services has been positive. While there were some delays related to patches and licensing workflows, the team acknowledged that these were being addressed and improved over time.

Based on the overall experience, Chavan expressed strong confidence in recommending both Log360 and the onboarding services.

He shared his recommendation candidly:

"It’s almost a nine, because the onboarding process is good."

Looking ahead

eQ Technologic plans to continue expanding its use of Log360, including exploring additional features such as SOAR capabilities in the future. As customization and security needs evolve, Log360 remains a central part of the organization’s logging and monitoring strategy.

The team is also open to sharing their experience through a video testimonial in the future, reflecting their confidence in the product and the implementation support provided.

About OnboardPro

OnboardPro is a ManageEngine service that provides solution implementation to clients upon request. This service includes the installation and customized configuration of ManageEngine solutions. It enables clients to seamlessly begin work without worrying about the complexities of product installation, deployment, and use. Every client environment is unique and requires additional support beyond the basic installation and standard features. With custom onboarding, clients have the option to engage a team of product experts to manage the installation, implementation, customization, and training based on their business needs. For more information, visit manageengine.com/onboarding/manageengine-onboardpro-iam-and-siem-professional-service.html.

About Log360

Log360 is a unified SIEM solution from ManageEngine with integrated DLP and CASB capabilities that detects, prioritizes, investigates, and responds to security threats. Vigil IQ, the solution's threat detection and incident response module, combines threat intelligence, an analytical Incident Workbench, ML-based anomaly detection, and rule-based attack detection techniques to detect sophisticated attacks. It provides an incident management console for effective remediation. With reengineered detection—including a centralized detection console, multi-mode rule creation, tuning insights, and object-level filters—Log360 elevates signal quality and reduces false positives. The solution provides holistic visibility across on-premises, cloud, and hybrid environments with intuitive security analytics and monitoring. For more information about Log360, visit manageengine.com/log-management/ and follow the LinkedIn page for regular updates.

Log360 is a unified SIEM solution with integrated DLP and CASB capabilities that detects, prioritizes, investigates, and responds to security threats. It combines threat intelligence, machine learning-based anomaly detection, and rule-based attack detection techniques to detect sophisticated attacks, and offers an incident management console for effectively remediating detected threats. Log360 provides holistic security visibility across on-premises, cloud, and hybrid networks with its intuitive and advanced security analytics and monitoring capabilities.

Follow Us

2022 Zoho Corporation Pvt. Ltd. All rights reserved.