CorreLog, Inc., a provider of multi-platform IT security event log management, has announced a reseller partnership with Townsend Security, a provider of data privacy solutions, to provide log forwarding and event log correlation for security and compliance on IBM i systems via Townsend Security’s Alliance LogAgent. This agreement grants both CorreLog and Townsend Security authorized distributorship for their respective mainframe security solutions and combined access to a wider IBM i and z/OS customer pool.
Both CorreLog SIEM Agent for z/OS and Alliance LogAgent for IBM i (formerly for AS/400) convert mainframe event messages to distributed syslog format (RFC 3164), Common Event Format (CEF), and Log Event Extended Format (LEEF), and both solutions hold certified integration with IBM® QRadar Security® for real-time event correlation within distributed SIEM systems.
CorreLog’s SIEM Agent for z/OS is a mainframe security and compliance SIEM platform that intercepts RACF, ACF2, Top Secret, DB2, IMS, TCP/IP, IND$file and other user events for suspicious activity and converts them to syslog format for real-time event correlation in CorreLog’s SIEM, or any other distributed enterprise SIEM solution.
The SIEM Agent for z/OS holds certified integrations for IBM® QRadar Security®, HP ArcSight, RSA Security Analytics (EMC), Solutionary and McAfee ESM. Additionally, SIEM Agent has field integrations to Splunk, Dell SecureWorks, LogRhythm and other name-brand SIEM systems. SIEM Agent for z/OS provides audit trails for key industry compliance initiatives such as PCI DSS, HIPAA, Sarbanes-Oxley, IRS Pub. 1075, GLBA, FISMA, NERC and many other regulatory standards.
“Small- and medium-sized businesses carry the same weight of responsibility to monitor sensitive data on IBM i as the largest z/OS datacenters,” said George Faucher, president and CEO of CorreLog, Inc. “We’re excited to join forces with Townsend Security to increase the breadth of real-time event log management and visibility for security and compliance across all mainframe environments.”
Townsend Security’s Alliance LogAgent for IBM i (formerly AS/400) automatically collects and transmits system security events in a single repository for consolidation with events from all servers across a network environment. Alliance LogAgent identifies IBM-formatted log entries and converts them into syslog format (RFC 3164), Common Event Format (CEF), or Log Event Extended Format (LEEF), and sends them to CorreLog’s SIEM Correlation Server, or any other name-brand SIEM for real-time log collection, analysis, and alert management. Townsend Security’s Alliance LogAgent for IBM QRadar is also certified for IBM® QRadar Security®.
“As attacks are becoming more sophisticated, log collection and monitoring is one of the top critical security controls that a business can take to detect and prevent a data breach,” said Patrick Townsend, Founder & CEO, Townsend Security. “Our partnership with CorreLog gives IBM users, whether on the IBM i or z/OS, the tools they need to capture, format, and send security-related events to their SIEM.”
Widget not in any sidebars
- Five Questions You Need To Ask Yourself When Evaluating SIEM Solutions - November 8, 2017
- Winning the Data Breach War with User and Entity Behavioral Analytics - November 3, 2017
- 5 Alternatives to The Gartner Magic Quadrant for SIEM - October 31, 2017