Intellitactics continues its roll out of the SAFE product line of security appliances by announcing SAFE XL. The new addition to the product line uncovers the hidden information in logs, thereby providing understanding and investigation of logs for all IT functions. SAFE XL, along with the other SAFE appliances, provides a complete solution on one appliance for compliance reporting, managing security operations, or securing technology silos.

Intellitactics SAFE appliances, simple-to-deploy and easy-to-use, enable every organization to achieve best-in-class results, whether the focus is audit-worthy reports, risk mitigation through security monitoring, or accelerated incident response. The SAFE appliances can provide stand-alone value or be implemented in a tiered hierarchy to meet the needs of every type and size of organization. SAFE provides real-time access to security events and raw logs to promote understanding of, investigation of, and response to attacks, anomalies, and control violations that threaten compliance or the security of critical assets.

“No security organization, whether it’s comprised of one part-time analyst or a team of twenty, can be effective without cross-functional support from other IT functions. Collaboration, the absence of which is often the ‘elephant in the room’ during operations reviews, can be encouraged by providing all the technology managers with a tool like SAFE XL. SAFE XL enables security to get the logs they need for compliance reporting or control monitoring and, at the same time, provides technology managers or administrators with efficient and effective log management to sustain the availability of business services,” explains Sunil Bhargava, Chief Technology Officer for Intellitactics. “SAFE XL, for example, can be dropped in and pointed to one technology type, such as web proxy servers, to give technology administrators or managers an automated, deep dive into logs using intelligent, device-specific queries, filters, and reports. At the same time, it provides a non-intrusive flow of log data to a centralized SAFE LP appliance, enabling the security team to manage compliance to regulatory standards or internal policies.”

SAFE XL, like the other SAFE appliances, acquires logs from any source located anywhere; and provides a complete solution for logging plus and security event management in a single appliance. SAFE XL automates the log management and review process for technology administrators. The appliance comes packaged with device-specific, predefined, and configurable queries that accelerate review of specific events for understanding, investigation, or response. SAFE XL is packaged in three configurations, small, medium and large, and provides agent-free acquisition of logs from any type of device, such as verbose firewalls or IDS and hard to manage Windows domains. SAFE XL is easily implemented with the technology owner and can also send events in a hierarchical deployment to other SAFE appliances to provide a consolidated management oversight for managing compliance or enterprise-wide security operations.

SAFE XL’s operations-time monitoring of security events, escalations, and notifications, along with actionable reports, offer capabilities suitable for the security team and for other functions in IT that share accountability for enforcing security policy. SAFE XL is distinguished by:

1) Agent-less log acquisition - accepts any logs from anywhere, including MS-Windows, databases, and proprietary firewall (Checkpoint) and IDS stores (Cisco, Sourcefire)

2) Continuous parsing - provides the ability to parse and normalize logs from any devices and applications, including custom applications

3) Data modules - control the collection and parsing of logs and pre-determine how the logs will be used for filtered searches, correlation, report creation, and charting of graphics for the dashboard

4) Packaging - available in three affordable hardware configurations that align to the target technology log output

Logs are dense and often intelligible. Most often, the log volume is so high that it’s physically impossible to quickly investigate raw logs. SAFE XL replaces time-consuming, error-prone manual log reviews and automates investigation by providing:

• Filtered search - SAFE comes with pre-defined, query-based event exploration driven by the data modules that correspond to the different data source. For each data source, pre-defined queries speed up search. The user can select one of these or define and save “most often used” queries or FAVORITES, thereby creating a personalized search capability.
• Configurable, personalized dashboards - SAFE includes charts and graphs appropriate for each data source and determined by the data modules. Users point-and-click on charts of summarized events to link directly to the underlying event data; from the event data, users are one click away from the logs themselves.
• Proactive notification– SAFE notifies incident investigators and responders, compliance investigators, or any security analyst of an event; proactive notification of an event is configurable.

Other SAFE appliances include SAFE LP and SAFE LA.

SAFE LP is the logging plus event management appliance that uncovers hidden information in the logs. SAFE LP is ideal for organizations with a compliance focus that stand to benefit from packaged reports for regulatory standards, like HIPAA and PCI DSS, and a report wizard to create new and edit existing reports. SAFE LP’s security events give the organization a jump start on security by eliminating false positives, isolating threats with the data needed to do something about them. The new Web 2.0 user interface includes a dashboard and an event explorer to rapidly mine the rich store of security information in Intellitactics’ Security Data Warehouse™. Users click from any type of notification to event reports or from a dashboard chart to events detail and associated logs in seconds.

SAFE LA is an affordable appliance designed to simply collect logs from any source located anywhere and safely delivers the encrypted, compressed logs to any SAFE appliance or Intellitactics Security Manager, the enterprise security management software. The reliable SAFE LA delivers high-performance log collection 365x7x24 and is ideally suited for un-manned remote locations.

About Intellitactics, Inc.

Headquartered in Reston, VA, Intellitactics provides a suite of complementary security incident and event management (SIEM) products for organizations of all sizes. Well-known as the provider of Intellitactics Security Manager, the optimal enterprise security management solution, to the largest organizations in the world, Intellitactics has expanded its product leadership with a line of security management appliances, Intellitactics SAFE. The combination of the appliances and software products underscores Intellitactics product leadership in providing solutions for log management, compliance, threat management and incident response to every organization regardless of size or purchasing power. By combining any of the products of the suite, global organizations can effectively distribute SIEM capabilities outside headquarters. Complementary to Security Manager is Intellitactics™ SAM, which features security assurance metrics™ on a configurable dashboard. Intellitactics was awarded Common Criteria Certification in December 2004, making it the first software provider to earn this certification as a security information and event management solution. Founded in 1996, Intellitactics is backed by JMI Equity Fund LP and Lazard Technology Partners and is ranked by well-known industry analysts as a market leader known for product development, delivery and thought leadership. Visit us at www.intellitactics.com.