Enhancing security visibility and cost efficiency with ManageEngine Log360 at the New York City Department of Investigation

Breaking down the business requirements

The DOI, faced with the growing complexity of managing and analyzing security logs from a diverse range of systems, sought a solution to enhance its security posture and ensure compliance with regulatory mandates. Prior to implementing ManageEngine Log360, the DOI relied on several logging solutions, hindering its ability to gain a comprehensive view of security threats and effectively respond to incidents.

As Samuel Latortue, chief information security officer at the DOI, explained,

The DOI identified the following critical requirements:

• Centralized log management: A unified platform to consolidate logs from all sources, providing a holistic view of security events across the organization.
• Enhanced security capabilities: Improved threat detection and response capabilities, including the ability to correlate events and identify suspicious activity.
• Compliance requirements: Meet regulatory requirements and demonstrate compliance with industry standards.

The solution: ManageEngine Log360

The DOI selected ManageEngine Log360 to address these critical needs.

stated Latortue.

Key features of Log360 that appealed to the DOI included:

• Real-time log collection and analysis: Enables proactive threat detection and rapid response to security incidents.
• Advanced threat intelligence: Leverages ML algorithms to identify and prioritize critical security events.
• Compliance reporting: Generates reports for various compliance audits and regulations.
• User-friendly interface: Provides intuitive dashboards and visualizations for easy navigation and data analysis.

Streamlined implementation and expert support

The DOI experienced a smooth implementation process, thanks to the strong support provided by the Log360 team. The implementation team effectively communicated and shared its expertise, ensuring that the necessary knowledge was imparted to the DOI team. Additionally, the proactive follow-up and accessibility of the Log360 team played a key role in addressing any concerns and ensuring a seamless transition. This proactive support ensured a successful deployment and ongoing operational success.

Outcomes and improvements

Since implementing Log360, the DOI has experienced significant improvements in its security posture.

Enhanced visibility:

highlighted Latortue. This centralized view has provided the DOI with a much clearer understanding of security events across its entire IT infrastructure.

Improved threat detection: Log360's advanced threat intelligence capabilities have empowered the DOI to proactively identify and mitigate potential threats, such as ransomware attacks.

Streamlined compliance efforts: Log360 has simplified compliance efforts by automating the generation of reports required by various regulations.

Cost savings: By consolidating its logging infrastructure and leveraging the cost-effectiveness of Log360, the DOI has achieved significant cost savings compared to previous solutions.

The DOI's experience with ManageEngine Log360 demonstrates the value of a robust and integrated security solution. By leveraging the power of Log360, the DOI has strengthened its security posture, improved operational efficiency, and enhanced its ability to protect sensitive data and comply with regulatory requirements.

About OnboardPro

OnboardPro is a ManageEngine service that provides solution implementation to clients upon request. This service includes installation and customized configuration of ManageEngine solutions. It enables clients to seamlessly begin work without worrying about the complexities of installation, deployment, and product use. Every client environment is unique and requires additional support beyond the basic installation and standard features. With custom onboarding, clients have the option to engage a team of product experts to manage the installation, implementation, customization, and training based on the business needs.

About Log360

Log360 is a unified SIEM solution with integrated DLP and CASB capabilities that detects, prioritizes, investigates, and responds to security threats. Vigil IQ, the solution's TDIR module, combines threat intelligence, ML-based anomaly detection, and rule-based attack detection techniques to detect sophisticated attacks, and offers an incident management console for effectively remediating detected threats. Log360 provides holistic security visibility across on-premises, cloud, and hybrid networks with its intuitive and advanced security analytics and monitoring capabilities.