 |
 |
 |
|
 |
|
 |
 | ||||
| ||||
| ||||
|
| |||||||||
|
Data security standards in the Payment Card Industry (PCI) and regulatory compliance mandates such as Sarbanes Oxley (SOX), Gramm-Leach-Bliley Act (GLBA) and the Health Insurance Portability and Accountability Act (HIPAA) are driving the need for audit-quality log collection, storage and analysis. These requirements affect a large number of organizations. PCI Data Security Standards, for example, affect up to 6 million merchants internationally. And Section 404 of SOX extended to all US public companies in 2008, including those mid-market companies with market capitalizations of less than $75 million. The number of healthcare organizations that are affected by HIPAA is uncertain but estimates that range as high as two million are not uncommon. Compliance is now a large pain point for both medium and large enterprises across all industries, forcing these organizations to deal with compliance data retention and audit requirements efficiently and cost-effectively. But for some verticals there are special rules and regulations that require additional consideration, including: Retail (PCI-DSS), Financial Services (SOX), HealthCare (HIPAA), Energy (North American Electric Reliability Council-NERC), and Process Control (Supervisory Control and Data Acquisition-SCADA). "Enterprise interest in log management is very hot as compliance requirements push organizations to get a grip on their log data," said Chris Peterson, vice president of worldwide channels for ArcSight. "Auditors are prodding companies to implement centralized log management in order to ensure control over scattered data. In the past, generic logging of information was acceptable, but today, you have to do more than simply log the data. You have to be able to interpret, analyze and understand the data coming from hundreds, even thousands, of disparate devises, applications, and point solutions." These regulations and guidelines also necessitate automated long-term retention policies and intelligent analysis for reporting and alerting against all log data. Distributed collection and efficient centralized storage and analysis are required to keep up with the volume of log data generated daily by enterprises and government agencies. As a result, the average organization is experiencing a dramatic increase in the volume of log data that needs to be captured and analyzed. The Reseller Opportunity "Log management is a significant business opportunity for channel partners today," said Peterson. "No matter what size the customer is or where they are with their compliance initiative, The ArcSight Log Management Suite will enable the channel partner to build a log management infrastructure which is integrated and scalable. Appliance-based solutions enable partners to rapidly deploy and help demonstrate compliance to their customers, supported by implementation and consulting opportunities related to log management policies and procedures. Authorized channel partners can utilize their own engineers and consultants or resell technical services offered by our Value Added Distributor - Alternative Technology." With an easy entry point for ArcSight Authorized channel partners to deliver log management capabilities across their customer base, the ArcSight Log Management Suite can scale from mid-market to the largest of corporate enterprises or government agencies, with a family of stackable appliances suited to each organization's requirements. ArcSight Logger is available in a range of form factors and price points with entry-level systems starting in the mid five figures that support 2,000 events a second for up to 200 devices. The mid-range solution can capture 5,000 events per second in 500 devices. The higher-end model can process up to 100,000 events per second with pricing in the low six figures. Implementation The ArcSight solution can be deployed entirely as turnkey appliances. For added flexibility enterprises can opt for either appliance or a software-based log collection infrastructure in remote locations. No database administration expertise or remote onsite client installation is required to deploy or manage the ArcSight solution. Configuration and management of remote collection infrastructure parameters can be performed en masse in batch mode to roll out or modify collection parameters or software updates. ArcSight Log Management Suite is made up of the ArcSight Logger Appliance, the ArcSight Connector Appliance or Connector Software and Compliance Insight Packages, with prepackaged configurations and reports. -- ArcSight Logger is a turnkey appliance which can capture and analyze all enterprise log data while providing a compressed, cost-effective and self-managing log repository. To address the growing need for collection, storage and analysis of enterprise-wide log data, ArcSight Logger is delivered in a range of turnkey, stackable appliances that support high-performance collection of logs from any source, into a highly compressed yet easily searchable and self-managing log data repository with a powerful reporting and alerting engine. -- ArcSight Connector is available in a range of plug-and-play appliances or as software-based deployment. The ArcSight Connector Appliance can be easily deployed and remotely managed while providing a localized, agent-less collection option. For locations where no additional rack space is available, but where spare computing cycles are available on existing servers, ArcSight Connectors offer the flexibility of software-based deployments while still delivering strong centralized management capabilities. "The connector appliances don't require you to deploy storage out at a customer site," said Peterson. "You can deploy a low-cost connector appliance, and tie that into a logger that is based back at the headquarters operations center, thus saving the customer who has many locations lot of money." -- ArcSight Compliance Insight Packages includes prepackaged reports, alerts and dashboards that are mapped to the needs of specific regulations or industry mandates and best practices to automate audit reporting requirements. "ArcSight Insight Packages for PCI and SOX are predefined, prepackaged reports and configurations," said Peterson. "The channel can overlay these Insight Packages on top of a logger sale to get the customer PCI or SOX compliant very quickly. The Insight Package also opens up consulting opportunities for the partner to help the customer with compliance implementation and monitoring," he added. A Universal Solution "A key differentiator for the ArcSight is our partner ecosystem," said Peterson. "ArcSight has the largest partner ecosystem in the industry. We connect to more vendor products and devices than any vendor in the space, thus giving the reseller a universal solution that can collect logs, alerts, and events from everything in the customer's network." The ArcSight library of out-of-the-box SmartConnectors provides optimized collection from over 180 commercial event-generating sources across 35 data categories. SmartConnectors span the entire stack of event-generating source types from network and security devices up through databases and commonly used enterprise applications and are updated frequently to accommodate new versions of supported products. In addition, an ArcSight FlexConnector SDK framework allows the partners to write custom connectors with a wizard-driven interface to build collection logic and contextualize logs from custom, legacy, and home-grown sources. Channel Enablement ArcSight, through its Value Added Distributor, Alternative Technology, has designed programs to get the channel partner community into the log management business very quickly. "ArcSight brings an essential security and compliance management component to our Solutions Program for PCI Compliance," said Nancy Gapter, vice president of marketing, Alternative Technology. "They equip our VARs with the tools they need to help protect their customer's cardholder data and avoid fines, which is a growing market need and opportunity." Alternative Technology provides technical training and is the Authorized Reseller Training Center for ArcSight in North America. Alternative Technology also offers technical implementation and consulting services that the reseller can bundle into the sale until they build their own implementation and consulting staffs internally. Not-For-Resale Demo Units are available to Authorized Resellers at 90% off of list price, and ArcSight will issue a credit to the reseller for the remainder on a sale made within the first 12 months. Alternative Technology has also created a Web site with a host of materials for the reseller's education and enablement, including Solution Briefs, White Papers, Case Studies, and Webinars. To tap into this wealth of information and to find out how you can gain access to the ArcSight Log Management Suite for your customers, visit http://www.alttech.com/a/5815 or call Alternative Technology at 866-728-1958. Mark Rieger is Managing Director of ProAmericas, Centennial, Colorado, a full service supplier of channel and end user market strategy, advertising, media research and publicity services for ISVs and VARs. He can be reached at markr@proamericas.com or www.proamericas.com.
|
|
|||||||
| |||||||||
|
home | feedback | printer friendly version | email this article
©2009 Integrated mar.com Corporation | 1.800.465.2059 |
|
|||||||
 | |
1,469 | |
 | |
419,376 | |
 | |
49,763,951 | |
 | |
$57,402,670,680 | |
 | |