ManageEngine Strengthens its SIEM Solution with Public Cloud Log Auditing and an Incident Management System
May 2017 by Marc Jacob
ManageEngine, the real-time IT management company, today released enhancements to its SIEM solution, Log360, adding log management for AWS and Azure cloud environments as well as an incident management console to efficiently track and resolve security incidents.
Log360: Centralize and audit logs from physical, virtual, and public cloud platforms from a single console.
On top of existing support for physical and virtual environments, Log360 can now also collect, analyze, search, and archive logs from AWS and Azure to give key insights into activity on critical cloud resources.
? Adds comprehensive public cloud auditing for AWS and Azure to Log360’s SIEM arsenal.
? Monitors and secures cloud infrastructure with predefined reports and alert profiles.
? Tracks critical user activities, configuration changes, security group changes, business-critical applications, and more.
Incident management system: Efficiently track, manage, and resolve security incidents.
Log360 now includes an incident management system that lets security administrators keep track of all the incidents arising in their network with a straightforward, built-in ticketing system. This feature allows administrators to:
? Create alert profiles to detect anomalous events in their network and automatically assign tickets to security administrators.
? Ensure accountability in a security operations center by easily tracking the entire incident resolution process.
? Add resolution notes to every incident, which can later serve as their organization’s knowledge and error database.
? Centralize their ticketing system by automatically raising a ticket in their help desk, including ServiceNow and ServiceDesk Plus, when Log360 triggers an alert.