Keeping a statewide health network running smoothly with Log360

Breaking down the business requirements

The New Mexico Department of Health runs a complex statewide network that supports public health offices and labs across the state. Its network operations center (NOC) team keeps this environment running, managing Active Directory (AD), servers, and more than 400 switches and routers.

Among the administrators on the team is Toby D. Martinez, who shared how the previous monitoring setup left critical gaps. The legacy tool offered limited visibility into AD activity and almost no dependable insight into network device logs.

As Martinez explained:

The department needed a solution that could:

• Capture and retain logs from hundreds of Cisco switches and routers.
• Preserve log history, even when devices rebooted.
• Surface DHCP conflicts, denied access attempts, and hardware status changes immediately.
• Support the security team’s compliance work for HIPAA and NIST SP 800-53.
• Provide dashboards that eliminate scripting and reduce manual effort.

The solution: ManageEngine Log360

Log360 became the system of record for network logs across the department's environment. By directing logs from its Cisco devices into Log360, the team gained persistent visibility that wasn’t possible before.

Martinez summed up the difference clearly:

With help from ManageEngine, the team also built a custom dashboard tailored to real operational signals such as:

• DHCP conflicts.
• Denied SSH connections.
• Up and down hardware statuses.
• Allowed and disallowed connections.

The security team now uses Log360 to investigate activity more deeply, including insights from the Attack Surface Analyzer.

Streamlined implementation and expert support

Configuring hundreds of devices could have turned into a slow, complicated project. Instead, the rollout was smooth, thanks to dedicated support from ManageEngine’s onboarding team.

Martinez highlighted how crucial that guidance was:

When technical challenges surfaced, persistence made the difference for Martinez:

Martinez rated the implementation a solid four out of five.

Outcomes and improvements

Reliable troubleshooting across 400+ devices

Because logs are now retained, even through reboots and power losses, the team can diagnose issues without guesswork.

Fast access to the right data

Log360 replaced manual digging and scripts with immediate visibility. Martinez described it simply:

Confidence in compliance readiness

With Log360 feeding reports to the security team, the department is well-prepared for HIPAA and NIST SP 800-53 audits. Martinez said:

Clear, usable dashboards

The tailored dashboards became daily tools for the NOC team, immediately surfacing insights that once took effort to uncover.

Martinez rated Log360’s usability a four out of five and its likelihood of being recommended a nine out of ten. When asked to sum up the whole experience in one word, he chose “valuable.”

A dependable platform for a critical network

For a statewide health network where uptime and clarity matter every day, Log360 gave the department exactly what it was missing: visibility, confidence, and the ability to act quickly when something breaks or behaves unexpectedly.

About OnboardPro

OnboardPro is a ManageEngine service that provides solution implementation to clients upon request. This service includes the installation and customized configuration of ManageEngine solutions. It enables clients to seamlessly begin work without worrying about the complexities of product installation, deployment, and use. Every client environment is unique and requires additional support beyond the basic installation and standard features. With custom onboarding, clients have the option to engage a team of product experts to manage the installation, implementation, customization, and training based on their business needs. For more information, visit manageengine.com/onboarding/manageengine-onboardpro-iam-and-siem-professional-service.html.

About Log360

Log360 is a unified SIEM solution with integrated DLP and CASB capabilities that detects, prioritizes, investigates, and responds to security threats. Vigil IQ, the solution's TDIR module, combines threat intelligence, an analytical Incident Workbench, ML-based anomaly detection, and rule-based attack detection techniques to detect sophisticated attacks, and it offers an incident management console for effective remediation. With reengineered detection—including a centralized detection console, multi-mode rule creation, tuning insights, and object-level filters—Log360 elevates signal quality and reduces false positives. The solution provides holistic visibility across on-premises, cloud, and hybrid environments with intuitive security analytics and monitoring. For more information about Log360, visit manageengine.com/log-management/ and follow the LinkedIn page for regular updates.