Logwatch

LogWatch serves as a fast and efficient alternative for managers and security officers who find themselves weighed down with the task of reviewing security logs. This will also help your organization comply with regulatory requirements such as GLBA Section 501(b), and will buy you security at a rather reasonable cost.

What is LogWatch?

LogWatch was developed by ERM's team of consultants to ease the log monitoring process for clients. It consists of the following five steps:

Step 1 - ERM provides the client tailored configuration requirements depending upon the platform. The client selects the frequency (e.g., daily, weekly, monthly) for the monitoring.

Step 2 - The client uploads the security logs into ERM's LogWatch Web Portal. This has been designed using Secure Sockets Layer (SSL) technology to provide the highest level of protection. All information submitted is encrypted and stored in a stand alone server.

Step 3 - ERM analyzes the security logs using automated tools and scripts created to locate suspicious activity and identify possible security breaches.

Step 4 - ERM uploads the Analysis Report into the LogWatch Web Portal and notifies the client via e-mail. Security logs will be analyzed and uploaded into the Web portal within 24 hours.

Step 5 - The client downloads the report and investigates the security issues.

Some of the platforms covered:

Other platforms can be addressed based on client needs.

To download our service brochure for LogWatch, please click here.

Note: LogWatch must not be mistaken for 24/7 monitoring. LogWatch is a remote service tailored to client needs that involves analysis, and auditing, of various security logs and generation of reports based on findings observed in the logs.