Dashboard Analytics for Enterprise Stakeholders and Auditors
The Enterprise Dashboard provides Enterprise Administrators and Network Security Managers a global view of the entire enterprise. An Interactive Risk Assessment module helps users get familiar with the alerting capabilities of LogClarity®. LogClarity® has a pre-defined alerting package that can be configured within minutes. The built-in alerts were created based upon experience within the enterprise security arena, increasing system uptime and maintaining compliance requirements.
The Enterprise Dashboard empowers enterprise leaders by providing a complete summary view of activity taking place across the enterprise. Full drill-down capabilities are available to investigate any specific threat, by activity; by User, by OU, by Group, or by Computer, plus any other Active Directory attribute.
Incident Response Management is included in the Enterprise Dashboard. Once an alert is triggered, stakeholders are instantly notified via email or within the LogClarity® Dashboard. A direct response can be initiated from the alert to the event log in seconds. If the incident warrants further investigation, the incident can be reassigned and the level of importance “status” can be elevated or reduced based on severity. Incident reporting including current status conditions can be generated based upon business units or the entire enterprise.
The Incident Management module can identify subordinate user’s lagging response times and calculate alert statistics per department. Handling incidents quickly is the key to reducing damage. The LogClarity® Incident Management module helps ensure incidents are being handled, effectively, and that all of the security measures are in place. When instant response to threats and operational failures are high priorities, the LogClarity® Incident Management module is the solution.
LogClarity® Enforces Separation of Duties
Separation of duties (SOD) is getting higher and higher on the list of auditor’s requirements. Ensuring that audit data is not tampered with or altered in any way, is critical to meeting compliance. This is why a log management solution that can also perform powerful database activity monitoring is key. DBAs should not be handling the security aspect of the critical databases or be put in charge of monitoring the database activity that they are responsible for. The DBAs job is to ensure that the database is operating with optimum performance and users have the appropriate access. Security teams should handle the security aspects to ensure that separation of duties is fulfilled and security is achieved.
On-Demand Reporting enables enterprise administrators to gain valuable knowledge of daily, weekly, or monthly event log statistics for the entire enterprise. LogClarity’s On-demand reporting enabled security administrators to create custom reports based on specific selectable items from over 100 category choices. Full detailed event log history including graphs and statistics are instantly accessible for review.
Compliance Reporting - LogClarity® also provides full compliance reporting capabilities. They are defined based upon the business vertical legislation that is appropriate. LogClarity’s compliance reports are extremely helpful in preparation for an internal or external audit. LogClarity® comes with well-defined reports for Sarbanes-Oxley, PCI, FISMA, HIPAA and other custom reports.
The Auditors are provided a role within LogClarity®. Once an internal or external auditor is given a LogClarity® account, they have full access to reporting capabilities across the entire enterprise. However, they are not able to gain direct access to event log data. This provides them access with the appropriate levels, without worldwide access, to all other aspects of LogClarity® or event logs.