ArcSight Logger and Log Management Suite

LogLogic

ArcSight Log Management Suite: The Ideal Solution for Log Management Needs from the industry's leading Security Incident and Event Management (SIEM) supplier

  • Scalable, distributed collection and centralized storage architecture
  • Range of deployment options
  • Audit quality collection of all logs from any commercial or custom source
  • Personalized, role-based dashboards with drill down reporting

To address the growing need for collection, storage and analysis of enterprise-wide log data, the ArcSight Log Management Suite is delivered in a range of turnkey, stackable appliances that support high performance audit quality collection of all logs from all sources into a highly compressed but easily searchable enterprise log repository.

ArcSight Logger deployment options

Components of the ArcSight Log Management Suite

The ArcSight Log Management Suite supports multiple deployment options and is optimized for both small as well as large, heterogeneous and widely distributed businesses.
Key components include:

  • ArcSight Logger. Appliances that provide advanced high performance log collection, cost effective archival and powerful personalized analysis.
  • ArcSight Connectors. The industry’s broadest and deepest software or appliance-based event collection support spanning the entire IT infrastructure, including custom sources, in-house applications and physical access points.
  • ArcSight Compliance Insight Packages. Prepackaged reports, alerts and dashboards mapped to the needs of regulations or industry mandates and audit best practices to automate audit reporting requirements.

In the deployment scenario shown above the organization has a major remote office in addition to its corporate data center. Both locations have local IT staff and the remote location generates a significant amount of logs which are frequently analyzed by the local IT helpdesk and security teams. ArcSight Logger is deployed in both locations to provide localized storage and to minimize unnecessary network traffic.

Auditors who less frequently need to analyze logs corporate-wide can use distributed querying across locations for a global perspective. Other smaller retail and e-commerce infrastructure locations are equipped with the ArcSight Connector Appliances which provide audit quality log collection and secure, reliable transfer of logs to the corporate data center.

This is just one of many possible deployment scenarios.

AddThis Social Bookmark Button