1 Visualizer for Audit Graphical Business Intelligence Display & Analysis Tool.
Post on 15-Jan-2016
217 Views
Preview:
Transcript
1
Visualizer for AuditGraphical Business Intelligence
Display & Analysis Tool
2
Visualizer Helps you Understand & Implement Security
“With Visualizer, understanding and implementing security is easy!”
65
Or get an analysis of security data in graphical user-friendly format.
…and create a security rule based on an actual event.
4
3
With Visualizer you can easily isolate a single event
out of millions of log entries…
2
“To create a security rule, I have to actually write a program”…
1
“There are millions of log entries – it’s so hard to find a specific entry.”
3
• Business Intelligence product for presentation, investigation and analysis of security warehouse log data and query output from:
• Firewall- to analyze network accesses• Audit- to analyze QAUDJRN system journal events• AP-Journal – to analyze the log of business-critical data fields
which were accessed or changed• User Profile Reports- to analyze all User Profile information
• Instantaneous “Slice & Dice” response, regardless of database size
• Pinpoints exceptions and trends, easily finds the “needle in the haystack”
Visualizer Features
4
Nightly Maintenance Job Audit
Statistics File
FirewallStatistics
File
Firewall Audit
Visualizer
How Visualizer obtains Audit & Firewall Data
Daily Log Files Daily Log Files
5
Accessing Visualizer from the iSecurity GUI
6
Filter Audit Log Data
No. of Entrieson each Date
Graphical display of most frequent Dates
Visualizer’s workspace
Lower tabs for
“slice and dice’
7
Supports 3D/2D, Vertical and Horizontal Graphs
8
Visualizer Audit Example: Sort all Programs by Quantity, Select QCMD as Filter
9
Add filter for User QSECOFR
10
Add filter for System S520
11
Add filter for last 5 days
12
Add filter by unique iSecurity Entry Type C@: User Profile Changed
13
Select Sub Type “User Profile Changed: STATUS (*ENABLED)”; note 2 entries selected
Click “Drill to Data”
14
View 2 QAUDJRN records, select one and click on Create Detection Rule
15
C@ Detection Rule pre-populated with data from actual QAUDJRN event
16
Print a Report in HTML
17
Please visit us at www.razlee.com
Thank You !
top related