The Business Challenge
You know the nightmare – your Blackberry starts beeping at 3 AM, then the phone starts ringing and you know what’s happened—a data breach. The only question is: How bad?

An incident is part of the territory of being a security professional, but that doesn’t make it easy. Responding effectively is all about containing the damage by having the data to understand what happened, and making sure it doesn’t happen again.

Unfortunately, most organizations have neither the data nor the expertise to fully investigate potential breaches without a significant, externally driven effort using high-priced consultants. Even the minority of organizations that have been storing log data soon realize the limitations of not having data from all aspects of the technology infrastructure.

Yet data acquisition and retention is only one aspect of forensic response, the real challenge for log management solutions is one of TIMELINESS. Current generation log management solutions have proven inadequate for detecting and preventing many security breaches in a timely fashion, such as with the now-famous TJX and Hannaford network breaches.

Log Management is no longer enough.

eIQ meets the Challenge

SecureVue is designed to address not only yesterday’s security management problems, but also tomorrow’s. Redefining what

enterprise organizations should expect from the tools used for log management and forensic analysis, security professionals finally have access to a platform that makes them more effective, efficient and relevant in the face of today’s risks.
 

By collecting and correlating log, asset, configuration, performance, vulnerability and flow data into a common data model with an advanced policy management engine, SecureVue helps organizations FIND forensic and log data EASIER. When you are racing against the attacker’s clock, easier is faster and better.

• SecureVue is designed from the ground up to collect and correlate all this important data—automatically, 24x7, in real time—totally integrated with the security operations and compliance management functions. Nothing is “bolted on,” all components tightly integrated into the original architecture of the security management platform.
  

• SecureVue provides integrated forensics and reporting capabilities across all collected data to reduce the time to verify and investigate potential breaches to minutes, not days.
  

• SecureVue gathers not only security event data, but also configuration, performance, asset, and flow data, to ensure that everything is considered during an attack and can quickly be drilled into through QuickVue™.
  

• SecureVue offers fast forensic analysis through a high performance and enterprise scale architecture model, with end-to-end correlation and over 1500 quickly generated, out-of-the-box reports.

• SecureVue provides a GUI-based Universal Parser that, along with auto-discovery, makes adding new network nodes with nonstandard log formats a snap by providing an easy wizard-based mechanism to collect and parse data from unsupported nodes and applications.

• SecureVue features centralized archival and a patent-pending data compression, encryption and archiving capabilities achieving a market-leading 15:1 compression ratio to make the most out of your storage assets.

• SecureVue stores data with integrity in mind, ensuring a clean record of all logs through encryption of both raw logs and normalized data, providing evidence that will stand up in court.

• SecureVue has a high performance architecture with linear scaling ensuring SecureVue can meet the event management and GRC demands of even the largest enterprises.

eIQ’s Value to Your Organization

• SecureVue gathers ALL relevant data providing more timely and relevant detection of security incidents such as “low and slow” attacks and robust compliance monitoring and auditing based on comprehensive network-wide, real-time data.
  

• SecureVue ensures you can prosecute incidents storing uncompromised audit trails and clean-chain-of-custody evidence of internal controls
  

• SecureVue supports regulations and policy compliance efforts including PCI-DSS, SOX/COBIT, FISMA/NIST and many more
  

• SecureVue can be implemented faster decreasing the time to realize product benefits and productivity increases through a quick and simple installation process and over 1500 built-in reports to get you up and running in days, not months.

• SecureVue offers the lowest cost to operate with agent-less node management and the Universal Parser, eliminating the need for additional database administrators, and removing dependencies on 3rd party reporting packages.

Solutions | Products | Customers | Partners | Support  | News | Company | Privacy | Legal | Sitemap

Copyright © 2001-2009 eIQnetworks^®, Inc. All rights reserved.