Security Information and Event Management - SIEM

EventLog Analyzer uses Universal Log Parsing and Indexing (ULPI) technology to decipher any log data regardless of the source & log format.

EventLog Analyzer centrally aggregates logs from heterogeneous sources (Windows systems, Unix/Linux systems, Applications, Databases, Routers, Switches and other Syslog devices).

EventLog Analyzer makes forensic investigation very easy by allowing you to use its powerful log search functionality to search on both the raw and formatted logs and instantly generate forensic reports based on the search results.

EventLog Analyzer enables network administrators to search the raw logs to pinpoint the exact log entry which caused the security activity, find the exact time at which the corresponding security event had happened, who initiated the activity and also, the location from where the activity originated.

Correlation of events and production of alerts in real-time allows network administrators to proactively keep their network secure from threats. With EventLog Analyzer you can configure alerts to correlate events based on threshold conditions or anomalous events and notify in real-time for any threshold violations or network anomalies.

You get notifications in real-time via email and SMS when any anomalous activity happens on your network. You can also execute a custom script or program upon alert generation and take quick remedial action to secure your network assets.

EventLog Analyzer performs log analysis in real-time and displays the analyzed log data into easy to understand charts, graphs and reports. Users can easily drill down through log data shown on the dashboard to get more insights and do a root cause analysis within minutes.

Exhaustive reports are provided for user monitoring by EventLog Analyzer. This enables tracking suspicious behavior of users including privileged administrative users.

You get precise information of user access such as which user performed the action, what was the result of the action, on which server it happened and track down the user workstation from where the action was triggered.

EventLog Analyzer lets you know what actually happened to your files and folders - who accessed them, deleted them, edited them, moved them, where the files and folders went, etc. EventLog Analyzer provides object access reports in user friendly formats (PDF and CSV) and sends alerts when your sensitive files / folders are accessed by unauthorized people in real-time via sms or email.

You get precise information of object access such as which user performed the action, what was the result of the action, on which server it happened and track down the user workstation/network device from where the action was triggered.

Compliance is the core of SIEM and with EventLog Analyzer organizations can meet regulatory compliance requirements by monitoring and analyzing log data from all the network devices and applications. EventLog Analyzer allows you to generate pre-defined/canned compliance reports such as PCI DSS, FISMA, GLBA, SOX, HIPAA, etc.

EventLog Analyzer also provides a value added feature to customize existing compliance reports and also allows users to generate new compliance reports to help comply with growing new regulatory acts demanding compliance in future. Case Study: Read how TRA generated ISO 27001 Compliance report to meet their compliance requirements.