Event Log Monitoring, Event Log Management, Syslog Monitoring, Windows Event Log Monitoring, Event Log Software, Centralized Log Management, Monitor Syslog, Logging In Depth, Log Management, Siem, Security Event Management, Security Information Management, Usb Monitoring, Endpoint Security, Compliance Reporting, Compliance Solutions, Log Data, Log Analysis, Event Log, Log Monitoring, Network Monitoring, Server Monitoring, User Monitoring, File Integrity Monitoring, Configuration Monitoring, Prism Microsystems, Eventtracker

GOVERNMENT SUCCESS STORIES

Government Customer Success Stories

Related Resources

For More Information

Call Toll Free
877-333-1433

Email
sales@prismmicrosys.com

Ask for the end-of-year government special offer!

GSA Advantage - EventTracker SIEM Government Pricing

Cost Effective FISMA Compliance on 3 Distinct Networks
within 1 Agency

A civilian agency of the federal government had to meet FISMA compliance. However, with 3 distinct networks - a secure network, a semi-secure network, and a public network - managed by separate personnel for security reasons, FISMA compliance was no easy task. They looked at going the appliance route but found the cost of buying specialized hardware for 3 networks to be cost-prohibitive. When they came across EventTracker, they were impressed by its reporting capability and real-time security functionality. What really closed the deal for them, however, was that EventTracker was a software only solution that required no additional licensing for multiple Management Consoles. This allowed them to procure and deploy EventTracker with 3 distinct Management Consoles on the 3 different networks at 50% of the cost of Appliance solutions. Within one of these networks the EventTracker Management Console resides on a VM machine. Their security problems were solved, and they found that EventTracker ran so efficiently that they could deploy it on fairly low-end machines, making the solution even more cost effective.

Comprehensive FISMA Compliance for a Combination Windows/Solaris Architecture at a Military Base

A military base in the Washington DC area also had to meet FISMA compliance. Here the unique requirement that drew the customer to EventTracker was that their network had not only many hundreds of Windows Servers, but also over 150 Sun Solaris Servers running in C2 mode. With Solaris in secure mode, audit records are not available in Syslog format and an agent is required to extract the data. EventTracker offers an agent for Solaris BSM that is able to extract audit records from Solaris machines and forward them to the EventTracker console for real-time analysis, correlation, and alerting, as well as for necessary FISMA compliance. Full-featured capabilities, and a cost-effective software solution with the ability to collect ALL their logs won the day.

Flexible Log Monitoring for Your Specific Organizational Structure and Security Protocols

A large National Laboratory was organized into 30 distinct units (or in Microsoft Active Directory parlance OU’s or Organizational Units). Each OU had IT staff to audit end-user activity. The total end-users exceeded 25,000 and due to security requirements the OU admins could not see user data for any other users than the ones within their OU. The problem lay in that all credentialing was done on an enterprise level with a single logical Active Directory and many Domain Controllers. Using EventTracker they were able to set up the 30 distinct OU Consoles to collect all their system logs. In addition, all the Domain Controller instances were collected on another collection point that contained a set of rules that forwarded the user logon/logoff activity to the OU the user belonged to and no others. The customer found this flexibility to be present only in EventTracker, and they were able to accomplish their project goals.