| Security Event
Log Management |
|
The SNARE System is a comprehensive event monitoring and analysis tool designed for an organizations with security auditing requirements. SNARE is comprised of two separate but complimentary toolsets, the SNARE Agents and the SNARE Server.
| The SNARE Agents are programs that are installed on the host devices and allow you to define the security relevant events that you need to collect. Agents are currently available for Windows, Linux, Solaris, Irix, AIX, and MS SQL, with two additional Agents refered to as Epilog Agents for Windows and Linux. While the agents are predominantly known as an Open Sourced product, for enhanced security requirements, Enteprise Agents are available. and provide additional functions which are required to satisfy most regulatory requirements. |
 |
The SNARE Server will collect the data payload from the Agents, and devices that send data via remote sys log into a centralized data store. The logs are normalized, allowing for queries and report generation.
One of the key values is the Servers ability to define complex security objectives in an easy-to-program language, and report its findings in a simple manner. The Server itself comes equipped with over 200 common security goals and objectives which can be cloned or copied to suit your corporations’ security objective.
While the SNARE System can track and monitor most standard requirements such as logins/logoffs, password expiration, it can also track:
- Unauthorized access to the computer systems;
- Unauthorized access to sensitive files;
- Unauthorized use of account privileges;
- Monitoring users access to the internet;
- and more.
The SNARE Server, combined with the SNARE agents, is used by many organizations to meet some of the local and federal security requirements, such as : PCI DSS, NERC, GLBA (Gramm-Leach-Bliley Act), Sarbanes Oxley (SOX), DCID 6/3, Nispom Chapter 8, HIPAA.
The licensing is simple and straight forward allowing for scalability. It is provided a base model that can collect up to 250 devices (remote syslog or open sourced agents). Depending on your requirement Enterprise SNARE Agents can be purchased for more reliability and integrity of the data. It is available as either software only (ISO) or as an applianced product.
In addition, if you would like to receive our "How-To" documents on configuring the open sourced agent/Enterprise agent for specific compliance regulations, please contact us to include you on our mailing list. This is a new initiative, and as we build our library of docs, should anyone have a request, again just send us an email. Please be aware that we will only be collecting coporate emails.
To view a demo of the server, http://demo.intersectalliance.com - the username of Snare_Admin and password of Welcome2SNARE!, or you can view this short video demo.
To book a comprehensive web demonstration with one of our SE’s please contact us.
For more information, please visit our dedicated web site - www.snare-server.com
|
|
|
|
