Perfect for resource constrained security pros with:
Scalable and Easy Collection of Network Device, Machine and Cloud Logs
Log & Event Manager collects and catalogues log and event data in real-time from anywhere data is generated within your IT infrastructure.
Real-time, In-memory Event Correlation
By processing log data before it is written to the database, Log & Event Manager delivers true real-time log and event correlation, enabling users to immediately troubleshoot and investigate security breaches and other critical issues.
Threat Intelligence Feed
Leverage an out of the box feed of known bad IPs to identify malicious activity. The feed regularly updates from a collection of research sources and automatically tags events as they enter the appliance. From there, users can quickly run searches or reports to view the suspect activity or create rules to perform automatic actions.
Advanced IT Search for Event Forensic Analysis
Log & Event Manager’s advanced ad-hoc IT search capability makes it easy to discover issues using a drag and drop interface that tracks events instantly. Users can even save common searches for easy future reference
Log Data Compression and Retention
Log & Event Manager stores terabytes of log data at a high compression rate for compliance reporting, compiling and off-loading – reducing external storage requirements
Embedded, Real-Time File Integrity Monitoring
Embedded File Integrity Monitoring delivers broader compliance support and deeper security intelligence for insider threats, zero-day malware and other advanced attacks