IT

PaperSolve Effectively Monitors Network Devices using Log360

PaperSolve

About the Organization

Established in the year 1986 as Stardate Computer Systems, PaperSolve is a managed IT services and software development company based in New York. The company not only provides IT solutions and services to small and medium-sized businesses, but also deals with document imaging and cloud hosting.

PaperSolve specializes in resolving any discrepancies that may arise within an organization by providing a complete suite of services comprising technology consulting, data recovery options, remote monitoring, and more.

  • Company

    PaperSolve
  • Location

    USA
  • Industry

    IT

Challenges

The IT team at PaperSolve consists of five people, including Michael Russo who works in the managed services department. The organization was looking for a solution to help them overcome the following issues: 

  • Being a managed service provider, PaperSolve collects logs from different types of devices in its client network to track events and spot threats. Though most firewall and other network device vendors provide log analysis capabilities, these metrics are available in silos. There is no central view of all security events to facilitate rapid threat detection and response. 
  • The tool that PaperSolve previously employed didn't provide sufficient insights on account lockouts. This was one of the vital requirements for PaperSolve as it dealt with a number of users with account lockout issues. 

The Solution

Deploying ManageEngine Log360 has helped PaperSolve's network administrators efficiently manage the IT infrastructure of their clients in the following ways:

  • Automated account lockout alerts: Real-time alerts are sent to IT administrators in the event of account lockouts, along with details such as locked-out time, source IP, device name, and more. This helps with tracking the source of authentication failure and troubleshooting.
    Russo mentioned,

    "Before ManageEngine, I don't think [account unlock activity] was really automated at all. We use Log360 for analyzing account lockouts. It helps us unlock user accounts and provide reports on where the issue came from."

  • Network device monitoring: Provides better visibility into network events by monitoring devices such as firewalls, routers, switches, and intrusion detection and prevention systems. The logs from these devices are parsed and correlated to identify attack patterns and alert security professionals.

In addition, PaperSolve values ManageEngine's technical support in terms of sorting out issues and providing timely upgrades. 

"They've [the customer support team] worked with me, and we've sorted out all the issues that we've ever had. It's very good,"

said Russo.

Explore Log360's online demo

Other Highlights of Log360

Log360 is a one-stop solution for all log management and network security needs. It offers:

  • Advanced threat analytics: Log360 has the ability to correlate events with dynamically updated threat feeds, and alerts you in real-time upon any malicious intrusion attempts. Further, the solution's advanced threat analytics feature provides more information about the security threat, including the geolocation of the threat's origin, the threat category, the reputation score of the source, and more.
  • Behavior analytics: Log360 utilizes machine learning to analyze logs from heterogeneous devices and detects any deviation from normal behavior. By assigning risk scores and generating intuitive reports, Log360 provides IT administrators with actionable insights to defend their network from both internal and external attacks.
  • Satisfy compliance requirements: Log360 audits every change made within the organization's network and provides hundreds of audit-ready report templates to fulfill compliance mandates for regulations including PCI DSS, GDPR, FISMA, SOX, HIPAA, and more.
  • Customization: We believe that security information and event management (SIEM) isn't a one-size-fits-all approach. Therefore, along with offering built-in reports, Log360 allows IT administrators to generate and schedule custom reports. The report and alert builder are highly intuitive and easy to use. With these reports, you can generate any report or alert required for your internal security needs.

Impact

PaperSolve is glad it switched to ManageEngine Log360 as its SIEM tool. PaperSolve now gets a comprehensive picture of its clients' IT infrastructures, enabling it to drill down on issues and provide optimal solutions. 

Offering his feedback about Log360, Russo remarked, 

"ManageEngine Log360 seems to be doing everything that we need it to do."

About Log360

ManageEngine Log360, a comprehensive SIEM solution helps enterprises to thwart attacks, monitor security events, and comply with regulatory mandates. The solution comes bundled with a log management component that provides better visibility into network activity, incident management module that helps quickly detect, analyze, prioritize, and resolve security incidents, ML-driven user and entity behavior analytics add-on that baselines normal user behaviors and spots anomalous user activities, threat intelligence platform that brings in dynamic threat feeds for security monitoring and aids enterprises to stay on top of attacks. For more information about Log360, visit manageengine.com/log-management.

Log360 is a unified SIEM solution with integrated DLP and CASB capabilities that detects, prioritizes, investigates, and responds to security threats. It combines threat intelligence, machine learning-based anomaly detection, and rule-based attack detection techniques to detect sophisticated attacks, and offers an incident management console for effectively remediating detected threats. Log360 provides holistic security visibility across on-premises, cloud, and hybrid networks with its intuitive and advanced security analytics and monitoring capabilities.

Follow Us

2022 Zoho Corporation Pvt. Ltd. All rights reserved.