Enterprise SIEM Integration for IBM i

iSecurity Syslog

iSecurity Syslog provides real-time transmission of IBM i security event information to enterprise SIEM solutions.

iSecurity Syslog transmits security & event management information for standard IBM i audit types as well as for specific iSecurity entry types, to provide additional security details beyond what the IBM i Audit journal (QAUDJRN) currently offers.

With iSecurity Syslog, you can share log/activity information from QAUDRJN and various iSecurity modules with your enterprise SIEM solution, providing a more complete picture of computer and network access in near real time.

image
image

SIEM integration provides an enterprise view of security compliance with regulatory requirements

image

Automatically sends current IBM i security data to your defined SIEM system

image

Improves the efficiency of incident handling activities

image

Helps create a real-time picture of potential threats against your IT infrastructure

image

Enables enterprise security teams to proactively deal with IBM i-related security events

Features of iSecurity Syslog

image

Integration with Leading SIEM Solutions

iSecurity Syslog provides an additional layer of security to companies by sending IBM i messages to enterprise SIEM solutions. iSecurity Syslog enables companies to gain an enterprise level view by integrating IBM i security data with other collected enterprise security information. iSecurity Syslog integrates with industry leading SIEM solutions such as IBM (QRadar), RSA NetWitness, Splunk, McAfee, ArcSight, LogRhythm, and more.

Security information beyond QAUDJRN

iSecurity Syslog provides transmission of event information for standard IBM i audit types as well as for specific iSecurity audit entry types. It provides additional details beyond what QAUDJRN currently offers, including authority failures, password resets, use of adopted authority, object access auditing, job changes, and more.

image
image

iSecurity module Integration for SIEM transmission

iSecurity Syslog provides real-time alert handling and integrates seamlessly with other iSecurity solutions to send additional security event information to SIEM systems. iSecurity Syslog can transmit QAUDJRN, QHST, & Message Queue info from iSecurity Audit. It can also transmit network security & IBM i exit point activity from iSecurity Firewall; User Authority Changes from iSecurity Authority on Demand; Virus Detection Alerts from iSecurity Anti-Virus; and security information from other iSecurity suite components.

Latest Blogs

image
IBM i
March 26, 2024
Waiting for AI-Enhanced IBM i Anti-Ransomware Protection
image
IBM i
March 21, 2024
Five Key Resource Areas to Monitor on IBM i Servers
image
IBM i
March 8, 2024
What is IBM i Single Sign-On (SSO)?

LET’S GET IN TOUCH

We’re happy to answer any questions about our software and what we do.

CONTACT US NOW