Williams Lea selects LogRhythm’s integrated log management and SIEM solution
March 2012 by Emmanuelle Lamandé
LogRhythm announced that Williams Lea has chosen to deploy its integrated log management and Security Information and Event Management (SIEM) solution, to ensure compliance with ISO 27001 and Payment Card Initiative Data Security Standard (PCI DSS) regulatory requirements. Williams Lea is also using LogRhythm’s solution to help optimise the efficiency of its UK operations, and to improve security across its IT infrastructure.
Tasked with managing the entire communications lifecycle – both externally and internally – for its clients, Williams Lea is entrusted with high volumes of valuable information from many of the world’s most respected brands across a wide range of industries including financial services, retail, telecoms, pharmaceutical and public sectors. As such, the organisation observes numerous compliance obligations, including ISO 27001, ISAE3000 and PCI DSS standards, that require the continuous, automated collection and analysis of all log data generated by IT systems. Furthermore, with over 4,500 employees in the UK accessing its network, which was generating increasingly large volumes of log data, Williams Lea needed a centralised log management solution that would bolster the security of its systems while also improving the efficiency of its IT estate.
As part of its selection process, Williams Lea reviewed a number of solutions, including offerings from LogLogic and Arcsight. It chose LogRhythm’s integrated log management and SIEM platform due to its advanced functionality, its intuitive log analysis and reporting capabilities, and the fact that it offered File Integrity Monitoring (FIM) as an integrated part of its solution at no extra cost.
“We required a solution that could cater to the diverse nature of our business and enable us to automate log management across all the different platforms and domains our IT systems operate on – a key requirement of ISO 27001 and PCI DSS regulations. We were monitoring millions of event logs everyday, and LogRhythm’s centralised and automated solution stood out for being able to help us meet these compliance requirements quickly and efficiently,” said Andrew Allison, Information Security Manager, Williams Lea. “The solution has clearly been designed with the end-user in mind, offering advantages such as value for money, simple implementation and ease of use compared with the other solutions we evaluated. We received excellent support from both LogRhythm and our IT systems partner Armana, which provided us with exceptional service and an outstanding level of assistance throughout the entire deployment process.”
Since implementation, Williams Lea has not only ensured that compliance with regulatory requirements is maintained, but it has also utilised the actionable intelligence and deep insight provided by LogRhythm’s solution to improve the security and efficiency of its entire IT system.
“The LogRhythm solution monitors consolidated user account activity across our networks, allowing us to identify and remediate any suspicious behaviour and potential security threats in real-time. For example, this enables us to immediately recognise and prevent any previous employees attempting to access our system,” said Andrew Allison. “Due to the solution’s intuitive automated report generation capabilities, operational efficiency across our IT infrastructure has also dramatically improved. The hours required for log review have already been reduced by two to three hours a day, and we will be expanding on our usage of the solution to optimise efficiency across our operations going forward.”