Power LogOn SIEM Extension
Security Information and Event Management (SIEM) is a key element in cybersecurity compliance, auditing, and network intelligence.
Power LogOn SIEM Extension
SIEM solutions allow IT Administrators to collect real-time security monitoring and event data for analysis, from multiple sources, including logon and other telemetry-specific data.
Power LogOn SIEM Extension is essential for our customers to fulfill cyber insurance requirements, HIPAA/HITECH compliance, and NIST 800-171 DFAR MFA mandates. While Google and Microsoft both state that MFA-based password management will decrease a credential theft cyber-attack by 99%, having the SIEM integration eliminates even more threats.
Power LogOn SIEM Extension manages over thirty-five different Common Event Format (CEF) events such as users logging on and off, administrators issuing, access denied, and revoking cards that are forwarded to 3rd-party RFC-adhering, SIEM systems in real-time. Event logs resulting from activities at Power LogOn client workstations or at the Power LogOn server are generated and sent by the Power LogOn server to a SIEM system at a selected IP address and port.
Power LogOn SIEM requires no modifications to either the client computer or server because the third-party SIEM solution is already collecting the information.
Testimonial
One of our customers best describes how the Power LogOn SIEM add-on meets his cybersecurity needs:
“We are aggregating telemetry data from every telephony marker you can think of. From all the computers, servers, domain controllers, email servers, firewalls, spam filters, MFA solutions, and BYOD to name a few. All that data is fed into the SIEM service for analysis.
Within a two-month period, the SIEM has performed over twenty-million observations, which lead to investigations and found interesting security activities that would have been difficult to identify without the use of the SIEM.
What makes Power LogOn so valuable is the security of all user passwords, the convenience for the user access services, and the integration into our SIEM. Users can access the cloud, on-prem, or offline data, and Power LogOn protects the logon credential. The SIEM captures Power LogOn activities to create one concise report. Power LogOn SIEM Extension has taken a great load off my mind to where I can now go on vacation and know that an attempted ransomware attack will be isolated, and no passwords will be discovered or compromised.”