Webcasts

Let’s face it, log data is important, but the information we glean from this log data is what really matters. Most organizations are now subject to multiple IT governance frameworks and regulatory requirements which mandate the collection and archival of log data. One of the biggest problems with collecting all these logs is that the information comes from various systems in many different formats and represents information in many different ways. When you boil it down - they are not all speaking the same language, which makes understanding the logs a very complicated matter. At the end of the webcast we promise you won’t feel the same way about your log data.

Join Mark Bouchard or Rich Mogull as they gather industry visionaries around a virtual table for a lively discussion on a wide range of current IT Security trends. Attendees gain a fresh, unedited perspective of the emerging security technology trends directly from those responsible for their development.

Our vendor partners use this platform to communicate their organization’s vision and direction in a marketplace otherwise overwhelmed with an abundance of hyper edited press releases and other bland corporate chatter.

As organizations continue to deal with the growing number of compliance regulations, information protection and security risks in these uncertain times, they have to figure out how to do more with less. Changes are happening, and organizations now need access to terabytes of historical data for analysis that encompasses not just log files, but other data types. Organizations need to find ways to manage all this data cheaper and better, by deduplicating efforts, collecting and archiving data for reuse for many purposes. Organizations also need to gain better visibility into their data by easily cross correlating their data and tailoring work flow to meet their unique needs. This webcast will cover what top organizations are doing to cut IT costs, drastically improve IT performance, monitor system activities, and meet ever more stringent security and compliance requirements - all with log data already being generated.

Speaker: Chima Njaka, Director Product Management

Companies are spending a lot of time and money on log management today. 20% of log access is associated with compliance and security. Preparing for audits involves time consuming manual labor, script writing, and hardware and software purchases. 80% of log access is associated with problem resolution and performance management. Access to log data is historically reserved to expensive third level support personnel. Automating log data collection, analysis and archival not only improves compliance and security, but also reduces costs. This webinar will focus on how to justify log management automation and present a ROI model to calculate your savings when you unleash the power of your logs.

Compliance and external controls are an important part of the today's information security landscape. Although compliance is often a headache for IT security professionals, organisations understand the importance of covering their backs. What sometimes gets forgotten however, is the need to evidence the successful implementation of internal controls. Implementing controls without a monitoring system to assess the success of the system is pointless. Assurance and confidence in internal controls is essential. It's time to look at the broader potential of your enterprise control efforts and build in enduring efficiencies with broad-reaching impact.

This Webinar will answer the following questions:

• What is a controls evidencing system?


• What are the benefits of such a system?


• How does the system help with internal compliance?


• What does a controls evidencing system look like?

Speakers:

• Dr. Anton Chuvakin, GCIA, GCIH, GCFA, Chief Logging Advisor


• Jerry Shenk, Senior Security Analyst for D&E Communications

The fourth annual Log Management Survey, will compare and contrast how respondents use their log data, their challenges, and what they hope to derive out of their log data in the future.

Learn how large enterprises are using log data analysis tools in a growing number of areas, including IT troubleshooting, regulatory compliance auditing and user behavior monitoring. On this webcast, experts from ESG and LogLogic will shed light on how this growing source of valuable data can best be analyzed. Attendees also receive a free Log Data Warehousing Pack.

Lockheed met the vague requirements of FISMA by replacing their old log management product with one more suited to its manpower and skill-level requirements. The company found a solution that had lower total cost of ownership, could process all logs and had correlation capabilities to show attack indicators.

Join logging experts from LogLogic and Forrester as we identify best practices for developing a log data warehouse for IT GRC. Learn why logs are critical to compliance, information asset protection and security. Viewed in isolation they are useful for troubleshooting and forensics. Viewed in the context of other IT logs they provide critical insight into user activity and the status of information assets.

Join us for this one-hour event to explore these and other best practices for maintaining, harmonizing, and future-proofing your PCI log management efforts.

Join us for this one-hour event to explore these and other best practices for maintaining, harmonizing, and future-proofing your PCI log management efforts.

Join experts from LogLogic and Forrester to learn the best practices for PCI compliance and tips you can adopt today to get compliant.

Recognizing a need to centralize and correlate massive amounts of log data from multiple locations, devices and system platforms across Asia prompted Manulife to investigate log management solutions. Accommodating log formats from a variety of devices and system platforms made it difficult to analyze and correlate log data in a timely manner, especially in the case of suspected security breaches. The company found a single solution that resolved the complexity of their diverse environment, delivered real time reporting, and was significantly cost effective for both operations and management.

The user story is presented as a webcast interview — in essence a conversation between SANS Director of Research, Alan Paller, and a person who uses the security product. The conversation attempts to answer all the questions a prospective buyer might ask a satisfied (but unbiased) user.

In this webcast, Stephen Northcutt and Dominique Levin share analysis of the growing importance of proper log management, including real-world issues facing the IT community around best practices of log management, traditional approaches vs. new high-performance commercial solutions and the capturing of all log data messages including informational-levels.

Today's compliance initiatives are keeping IT departments working fast-and-furious as they implement best practices for risk mitigation including measurable and auditable policies. Best practices recommend that organizations not only measure security enforcement policies, but also segregate the duty of policy enforcement and policy audit. Once you have received your compliance audit results, (such as HIPAA and SOX etc.) does this safeguard organizations from facing legal inquiries?

Matt Luallen speaks about regulatory compliance and the impact of the Payment Card Industry (PCI) specifications.

SANS is happy to bring you the latest in our complimentary series of Webcasts. Join us on Tuesday, March 28 at 1:00 PM EST as SANS presents: WhatWorks in Log Management: Caring for Logs with Northwestern Memorial Hospital.