An integrated event-management system is key component of any well-managed and secure computing environment.
The rationale for monitoring, reporting and alerting services is well summarised by the following quote from the Centre for Internet Security which states, “It is a way too common mistake to underestimate the tremendous value to the organization in proper monitoring, and hence resources for monitoring are not sufficient and/or the log filtering and anomaly detection is turned up to the point where attacks and abuse are not detected. Increases in web application attacks has been one of the primary security trends on this past decade and is expected to continue for the foreseeable future. ”
DotSec is able to securely collect, aggregate and analyse security events from servers, desktops, networks, applications and appliances. DotSec heavily utilises Splunk to collect, aggregate, index and report on logging events from almost any source. DotSec is a Splunk certified partner and has been integrating Splunk, as an information security solution, for over three years. Splunk has become an indispensable tool for the ongoing management and monitoring of both our own and our customer networks, and this latest Gartner report re-enforces our view of Splunk as an industry leader and best-of-breed log aggregation, monitoring and reporting tool.
DotSec acts as a trusted, independent third party, supporting our customers’ compliance and audit requirements, and has prepared compliance and reporting documents to satisfy the requirements of APRA and the PCI-DSS.