Log Collectors - SIEM, Audit Trail, UEBA, Forensics logs

Log Collectors Landscape: SIEM, Log Collectors, UEBA, and Audit Trail

Logs are ubiquitous in IT – they are semi-structured pieces of information about the behavior of a system and its users. Many standards, regulations and best practices assume and require the existence of logs. Consequently, many systems collect those logs and make use of them for various purposes. Too often organizations have just one tool Read more about Log Collectors Landscape: SIEM, Log Collectors, UEBA, and Audit Trail[…]

Siem, log integrity and compliance

Does Your SIEM Guarantee Log Integrity? And Does It Make You Compliant?

It is for a good reason that “integrity” is one of the three main aspects of information security. Lack of data integrity can be a serious issue in many cases, as we have already discussed in our post “3 Reasons Not to Ignore Data Integrity”. But many times integrity is an abstract concept that one Read more about Does Your SIEM Guarantee Log Integrity? And Does It Make You Compliant?[…]

Log Collection - track what you have never tracked before

Track Events You Have Not Tracked Before

There are a lot of products that allow collecting data, aggregating it and displaying it for security or monitoring purposes. That includes SIEMs (Security information and event management systems), UEBAs (User and entity behavior analytics), log collectors and catch-all multi-purpose data platforms (like Splunk). And when you check what sources of data they support, it Read more about Track Events You Have Not Tracked Before[…]

Privileged access management solutions

Protecting On-Premise Audit Trail

Many large organizations prefer to have their audit trail stored within their own infrastructure. Due to their structure and policies they are reluctant to use cloud services. Using a cloud service has the additional benefit of responsibility segregation – your sysadmins may not have the right to delete logs from the cloud provider infrastructure. Having Read more about Protecting On-Premise Audit Trail[…]

SentinelTrails-heroku-deployment

Try SentinelTrails In Your Heroku Deployment

We are happy to announce that you can now use SentinelTrails in your Heroku deployments. The SentinelTrails addon can be found here. SentinelTrails is a blockchain-enabled secure audit trail. It will help you take control over the data you store, and will ease your log management and monitoring. Features of SentinelTrails Unmodifiable evidence – the Read more about Try SentinelTrails In Your Heroku Deployment[…]

audit trail in practice

What is an Audit Trail in IT Context?

An audit trail (or audit log) is something both intuitive and misleading at the same time. There are many definitions of an audit trail, and all of them give you an idea of what it is about: A system that traces the detailed transactions relating to any item in an accounting record. A record of Read more about What is an Audit Trail in IT Context?[…]

SIEM-Data-Protection

SIEM Solutions and Data Protection Compliance

Security Information and Event Management (SIEM) systems are vital to each organisation. They transform simple event logs from various applications to detailed, in-depth behaviour analysis thanks to advanced visualizations and analytics and sometimes machine learning and AI.¬†They contain a palette of aspects covering the most crucial information security issues. The final goal is achieving full Read more about SIEM Solutions and Data Protection Compliance[…]