manageengine siem e gestione degli access log (garante
TRANSCRIPT
![Page 1: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/1.jpg)
ManageEngineSIEM e gestione degli Access Log
(Garante Privacy)
Andrea MannaraBusiness Unit Manager
![Page 2: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/2.jpg)
ManageEngine Portfolio
Network
Network Monitoring
Bandwidth & traffic Analysis
Network Config Mgmt
Data Center
Server Monitoring
Application Perf
Monitoring
Storage
Monitoring
Desktop & MDM
Desktop Management
OS Deployment
Mobile Device Management
ServiceDesk& Asset
Helpdesk & Customer Support
ITIL Service Desk
Asset Mgmt & CMDB
Active Directory
AD Mgmt & Reporting
Windows Server Audit
Self Service Password
Reset
Log & Security
Log Mgmt & SIEM
Firewall Log Analysis
Password Management
![Page 3: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/3.jpg)
ManageEngine Portfolio
Network
Network Monitoring
Bandwidth & traffic Analysis
Network Config Mgmt
Data Center
Server Monitoring
Application Perf
Monitoring
Storage
Monitoring
Desktop & MDM
Desktop Management
OS Deployment
Mobile Device Management
ServiceDesk& Asset
Helpdesk & Customer Support
ITIL Service Desk
Asset Mgmt & CMDB
Active Directory
AD Mgmt & Reporting
Windows Server Audit
Self Service Password
Reset
Log & Security
Log Mgmt & SIEM
Firewall Log Analysis
Password Management
![Page 4: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/4.jpg)
EventLog Analyzer
• Log Management
• Security Information & Event Management (SIEM)
• Conformità PCI-DSS, SOX, HIPAA, FISMA, ISO 27001 e al Garante Privacy (Access Log Amministratori)
• Real time Monitoring & Alert
![Page 5: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/5.jpg)
EventLog Analyzer
![Page 6: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/6.jpg)
Una soluzione completa per il SIEM
![Page 7: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/7.jpg)
Business Benefits
![Page 8: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/8.jpg)
Business Benefits
![Page 9: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/9.jpg)
Gestione Degli Access Log degli Amministratori di sistema
– Raccoglie i log degli accessi dai sistemi e DB
– Li archivia in un repository centrale
– Li rende inalterabili: crittografia, Hashing e Timestamping
– Gli eventi sono completi
– Conserva i log per un determinato periodo (6 mesi) e poi li elimina
– Permette facilmente di ricercare gli eventi archiviati
EventLog Analyzer e il Garante Privacy
![Page 10: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/10.jpg)
• Si installa e ... sei subito in regola!
– Installazione e configurazione immediata
– Agentless e Agent
• ha già i report necessari per la conformità
– User Logon/Logoff e Logon Attempts
• Immediato da installare e utilizzare
– Interfaccia Web Based intuitiva
– Semplici Wizard per creare nuovi report
EventLog Analyzer e il Garante PrivacyEventLog Analyzer e il Garante Privacy
![Page 11: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/11.jpg)
Supported log sources out-of-the-box /1
![Page 12: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/12.jpg)
Supported log sources out-of-the-box /2
![Page 13: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/13.jpg)
Universal Log Parser
• Analisi di qualunque tipo di log indipendentemente dalla sorgente che logenera
• Indicizzazione di qualunque log testo (leggibile e non crittografato)
• Estrazione dei valori da campi personalizzati (regular expression patterns)
![Page 14: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/14.jpg)
Log Correlation
![Page 15: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/15.jpg)
Monitoraggio dell’Integrità dei File
• Controlla l’integrità di file/cartelle– File Tampering Check (MD5 e SHA-1)
– Baseline integrity monitoring
• Alert real-time per file modificati, aggiunti, rinominati o cancellati
• Monitoraggio della dimensione di File/Cartelle
• Monitoraggio delle Access Control List
![Page 16: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/16.jpg)
Distributed Edition
![Page 17: ManageEngine SIEM e gestione degli Access Log (Garante](https://reader034.vdocument.in/reader034/viewer/2022042415/625f16d3660fae2ddd6d7a7b/html5/thumbnails/17.jpg)
GRAZIE
www.manageengine.it