Conformità legale e normativa grazie al monitoraggio dei registri di eventi
Gli enti normativi e i revisori pubblici richiedono strumenti che consentano loro di rintracciare retroattivamente le registrazioni di controllo. Per numerose ragioni tra cui, a titolo esemplificativo ma non esaustivo: esposizione aziendale ad azioni legali, richieste di eDiscovery riconducibili a irregolarità compiute dagli utenti, vertenze contrattuali e conformità a normative statali e di enti locali, le piccole-medie imprese potrebbero avere la necessità di produrre un tracciato di eventi specifici passati.
Una recente indagine, condotta dal SANS Institute, ha rilevato che il 44% degli amministratori di sistemi conserva i log per non oltre un mese. Dato che i requisiti normativi e statali citano, a volte, periodi di conservazione da tre a sette anni, ciò potrebbe rappresentare un potenziale disastro annunciato.
Gli organismi normativi e leggi quali il Basilea II, i PCI Data Security Standard, il Sarbanes-Oxley Act, il Gramm-Leach-Billey Act, l'HIPAA, il FISMA, l'USA Patriot Act, la Turnbull Guidance 1999, il UK Data Protection Act e l'EU DPD richiedono tutti la conservazione dei dati relativi ad eventi. Inoltre, molti richiedono l'analisi degli eventi: ad esempio, il NIST (National Institute of Standards & Technology) statunitense consiglia un'analisi degli eventi almeno due volte alla settimana. I log di eventi costituiscono la fonte principale per determinare il livello di conformità e identificare eventuali carenze.
Materiale di riferimento dettagliato sulla conformità normativa
Per informazioni sui vari requisiti normativi richiesti dai diversi organi di regolamentazione, si rinvia al nostro materiale di riferimento specializzato (in lingua inglese):
Motivi per avvalersi di GFI EventsManager™ per rispettare conformità legali e normative
- Risparmiare il costo di eventuali ammende per infrazioni alla conformità legale
- Archiviare automaticamente log inalterati in un database centrale facile da gestire
- Generare rapporti dai registri di eventi in modo da garantire che le risorse di rete siano utilizzate in maniera opportuna.
Premi e recensioni
Previous
Next
-
-
One to consider for almost any SIEM project
One to consider for almost any SIEM project
"GFI Software is one of the smaller vendors in the SIEM market. However, size doesn't matter if you build quality into a product like GFI has done with its GFI EventsManager 2012. All things considered, GFI EventsManager proves to be very apt at what it is designed for, managing events driven by the SIEM methodology. Strong reporting tools and an interactive GUI round out the product, making it one to consider for most any SIEM project" – SC Magazine, April 2012
-
InfoWorld reviews GFI EventsManager
InfoWorld reviews GFI EventsManager
"GFI EventsManager Report Pack comes with dozens of predefined reports (mostly Windows-related), each of which can be edited or used to make new reports." - InfoWorld
-
GFI EventsManager - 'built the right way for the right job at the right time'
GFI EventsManager - 'built the right way for the right job at the right time'
GFI EventManager is a very efficient and effective...
GFI EventsManager - 'built the right way for the right job at the right time'
GFI EventManager is a very efficient and effective log and event management tool which covers most of the daily security monitoring activities - Dragos Lungu
-
One to consider for almost any SIEM project
-
-
GFI EventsManager awarded Community Choice Award
GFI EventsManager awarded Community Choice Award
GFI EventsManager and GFI Network ServerMonitor we...
GFI EventsManager awarded Community Choice Award
GFI EventsManager and GFI Network ServerMonitor were named winners of the "Community Choice Awards", and GFI EndPointSecurity was awarded Best Security Product - Community Choice by Penton Media's Windows IT Pro magazine - Windows IT Pro
-
Editor’s Choice
Editor’s Choice
In a comparative review in of log management products in WindowsIT Pro, the magazine gives GFI EventsManager 4.5 marks out of 5 for both its ease of implementation and ease of use. The reviewer recommends GFI EventsManager for anyone “whose log management needs are limited to Windows Events logs, syslog output and W3C log file information”. - Windows IT Pro
-
An excellent tool
An excellent tool
In a review on firewall.cx, Alan Drury describes GFI EventsManager 7 as an excellent tool that will “make your life easier and help keep both you and your systems out of trouble” and rates it 9 of out 10. He said the product enables you to collect and archive event logs across an organisation, but “there’s so much more to it than that”. He highlights GFI EventsManager’s ability to run external scripts and adds that “customisation is one of the real keys to this product”. Although GFI EventsManager 7 may be a little on the slow side at startup, “this is a testimony to the fact that the product is doing a lot of work on your behalf and, to get the best from it, you really should give it a decent system to run on. The benefits you’ll gain will more than make up for the investment. Overall, this is an excellent tool that will.” - Firewall.cx
-
GFI EventsManager awarded Community Choice Award
-
-
Nice package with clear business benefits
Nice package with clear business benefits
GFI EventsManager “is a very nice package with clear business benefits” according to a review in ITpro.co.uk by Ian Murphy. Giving the product four stars out of a maximum six, the author highlights the product’s relative easy to install, well-written documentation and other features that help the administrator during the installation and configuration process. - ITpro.co.uk
-
Nice package with clear business benefits