With the transition of most of important company data to electronic form, gaining access by an unauthorized person to a computer network can pose a potential security threat to companies.
LOGmanager is a system for centralised management of events and logs from all active network elements, security devices, operating systems and application software. It is a tool based on a new type of scalable database and a high-performance system for searching and presentation of search results. It collects all relevant events and logs in an organisation storing them in a secured centralised repository with pre-defined retention allowing to search over extremely large volumes of data in real time. Search results are presented in text and graphic form offering extensive interactive features for further processing. The system also supports long-term storage of data ensuring its integrity and compliance with regulatory, forensic analysis and security audit requirements. However, by its design the system is not intended only as a system for corporate IT security departments. The system will provide great benefits also to operational facilities for which it allows, by a simple interaction with the events database, to identify causes of system failures, identify possible faults and quickly find events describing the causes of a specific problem, loss of data or communication. The system includes Windows Event Sender – a client for workstations and servers. The client is centrally managed and it enables collecting of logs from Windows operating systems. These logs can be filtered and coded data contained in the logs are translated into an intelligible form.