Why your organization should be integrating an SIEM with your IBM & how to do it
iSecurity Syslog provides real-time transmission of IBM i security event information to enterprise SIEM solutions.
iSecurity Syslog transmits security & event management information for standard IBM i audit types as well as for specific iSecurity entry types, to provide additional security details beyond what the IBM i Audit journal (QAUDJRN) currently offers.
With iSecurity Syslog, you can share log/activity information from QAUDRJN and various iSecurity modules with your enterprise SIEM solution, providing a more complete picture of computer and network access in near real time.
SIEM integration provides an enterprise view of security compliance with regulatory requirements
Automatically sends current IBM i security data to your defined SIEM system
Improves the efficiency of incident handling activities
Helps create a real-time picture of potential threats against your IT infrastructure
Enables enterprise security teams to proactively deal with IBM i-related security events
iSecurity Syslog provides an additional layer of security to companies by sending IBM i messages to enterprise SIEM solutions. iSecurity Syslog enables companies to gain an enterprise level view by integrating IBM i security data with other collected enterprise security information. iSecurity Syslog integrates with industry leading SIEM solutions such as IBM (QRadar), RSA NetWitness, Splunk, McAfee, ArcSight, LogRhythm, and more.
iSecurity Syslog provides transmission of event information for standard IBM i audit types as well as for specific iSecurity audit entry types. It provides additional details beyond what QAUDJRN currently offers, including authority failures, password resets, use of adopted authority, object access auditing, job changes, and more.
iSecurity Syslog provides real-time alert handling and integrates seamlessly with other iSecurity solutions to send additional security event information to SIEM systems. iSecurity Syslog can transmit QAUDJRN, QHST, & Message Queue info from iSecurity Audit. It can also transmit network security & IBM i exit point activity from iSecurity Firewall; User Authority Changes from iSecurity Authority on Demand; Virus Detection Alerts from iSecurity Anti-Virus; and security information from other iSecurity suite components.