|[July 16, 2014]
ManageEngine Advances Security Intelligence With Log Data for Third-Party Tools
PLEASANTON, Calif. --(Business Wire)--
the real-time IT management company, today announced a new API that
enables third-party tools to access log data generated by EventLog
Analyzer, its security information and event management (SIEM)
solution. Available immediately, the EventLog Analyzer API lets security
administrators feed reams of normalized log data into any third-party
application, including crowd-sourced threat intelligence solutions,
vulnerability assessment platforms, business intelligence tools or even
custom applications for advanced security intelligence and threat
Cybersecurity is becoming increasingly complex, and cyberattacks have
become an international crisis. Though the market is flooded with
various types of IT security analytics solutions, no single solution
could offer effective protection against all emerging threats. Combating
advanced threats requires information security solutions to integrate
with each other, share data and intelligence, and ultimately protect
"While security visibility across all elements of IT infrastructure has
become essential, most organizations cannot afford huge investment on
big data analytics. The current enhancements in EventLog Analyzer bridge
this crucial gap," said Chenthil Kumaran, product manager at
ManageEngine (News - Alert). "The benefits of this integration are numerous, but the
effort to leverage them is negligible. It does not require professional
services or any additional investment to leverage the benefits."
Advancing SIEM Through Integration
Though SIEM solutions have been offering provisions to import data from
varied sources, such integrations are fraught with many limitations. In
the absence of proper correlation and data processing, feeding terabytes
of data to the SIEM solution will not offer the required protection.
EventLog Analyzer shatters all these limitations by opening up its
database for integration with any third-party application.
Security administrators can leverage this integration to bolster their
security framework in such use cases as:
Advanced threat mitigation - The normalized data from EventLog
Analyzer could be fed into crowd-sourced advanced threat intelligence
services, sandbox solutions or sophisticated vulnerability assessment
platforms. These tools can associate EventLog Analyzer's security data
with the information they already possess and help mitigate emerging
attacks, botnets, zero-day threats, phishing attacks, malware attacks
and advanced persistent threats (APT (News - Alert)).
Location-based threat analysis - Integration with geolocation
services could help enterprises gain geographic context to any event.
This, in turn, helps pinpoint the country of origin and physical
location of an application involved in an event. If the origin matches
the countries commonly associated with APTs, suspicious traffic could
be isolated for deeper analysis.
Customized security views - Security managers could even create
their own web applications and dashboards by extracting the data
critical to their needs.
Application performance tuning - Normalized data from EventLog
Analyzer could be fed into modern business intelligencetools, which
could help organizations understand the evolving threat landscape,
assess risks and prepare mitigation strategy and an emergency response
plan in the event of attack. The data could also help drill down to
overall application performance issues and assess product usability
EventLog Analyzer provides Thrift IDL-based APIs which security
administrators can use to pull all required data and achieve
integration. The power of the API has been demonstrated through a
Python-based client as the reference implementation.
EventLog Analyzer collects, normalizes, analyzes, correlates and stores
voluminous logs from heterogeneous sources. Now, the API can provide
actionable intelligence and help security admins trace, thwart and
combat evolving threats.
Pricing and Availability
The API is available immediately and works with EventLog Analyzer v 9.0.
Users can submit
a request to access the API, and the EventLog Analyzer technical support
team will get in touch with them. The Professional Edition of EventLog
Analyzer starts at $795, and a fully functional, 30-day trial version is
available for download at http://www.manageengine.com/products/eventlog/download.html.
For more information on EventLog Analyzer, please visit http://www.eventloganalyzer.com.
For more information on ManageEngine, please visit http://buzz.manageengine.com/;
follow the company blog at http://blogs.manageengine.com/;
on Facebook (News - Alert) at http://www.facebook.com/ManageEngine
and on Twitter (News - Alert) at @ManageEngine.
About EventLog Analyzer
ManageEngine EventLog Analyzer is a web-based, real-time, log monitoring
and compliance management solution for security information and event
management (SIEM) that improves internal network security and helps
organizations comply with the latest IT audit requirements. For more
information on ManageEngine EventLog Analyzer, please visit http://www.eventloganalyzer.com/.
ManageEngine delivers the real-time IT management tools that empower an
IT team to meet an organization's need for real-time services and
support. Worldwide, more than 90,000 established and emerging customers
- including more than 60 percent of the Fortune 500 - rely on
to ensure the optimal performance of their critical IT infrastructure,
including networks, servers, applications, desktops and more. Another
300,000-plus admins optimize their IT using the free editions of
ManageEngine products. ManageEngine is a division of Zoho
Corp. with offices worldwide, including the United States, United
Kingdom, India, Japan and China. For more information, please visit http://buzz.manageengine.com/;
follow the company blog at http://blogs.manageengine.com/;
on Facebook at http://www.facebook.com/ManageEngine
and on Twitter at @ManageEngine.
ManageEngine is a trademark of Zoho (News - Alert) Corp. All other brand names and
product names are trademarks or registered trademarks of their
Tags: ManageEngine, real-time IT, Zoho, EventLog Analyzer, SIEM,
compliance reporting, enterprise security, threat intelligence,
vulnerability assessment, business intelligence, security information
and event management, information security management systems, network
monitoring, virtualization, cloud, IT management, network management,
cloud monitoring, server management
[ InfoTech Spotlight's Homepage ]