Log Management & SIEM
Vendor Fast Log Search
Logs are indexed to Elastic Search using an extensible Common Indexing Model, flexible UI allows drill down, pivot, and include/exclude, export
Time slicing, trending and hundreds of pre-built common queries
Real-time Alerting
Rule-based alerts with dashboard updates and email notification
Incident Response Management: acknowledge, annotate, forward
Pre-configured alerts for hundreds of security and operational conditions
Secure Log Storage
Optimized, high performance Event Vault with no DBMS license required
Over 90% compression for efficient long-term log archiving
Knowledge
Support for thousands of devices and applications – Windows, network equipment and more
Access to Knowledge Base with over 20,000 log definitions
Reports
Over 1,500 pre-defined reports – Active Directory, logon/logoff, security profile changes, system performance and more.
Easily schedule and generate as needed
Dashboards
Drillable dashboards to visualize important data
