LogRhythm, the company that makes log data useful, today announced that The Share Centre, one of the UK's leading retail stockbrokers, has deployed its integrated log management and Security Information and Event Management (SIEM) solution to ensure compliance with Payment Card Industry Data Security Standard (PCI DSS) regulations.
The Share Centre is also using LogRhythm to help implement security best practices and optimise IT operations.
The Share Centre previously used an alternative solution to collect log data, however the company was keen to upgrade its infrastructure to ensure it met PCI compliance regulations. The organisation's IT team was required to manually review all log data in order to identify and scrutinise anomalies, as well as work out which data related to which security event. This process had become increasingly time-consuming and the company needed an easier to use, automated solution capable of providing real-time monitoring as well as a consolidated overview of all events.
The Share Centre evaluated several solutions from competing vendors, with LogRhythm's validation in Gartner's Magic Quadrant, together with reseller recommendations, ensuring its inclusion on the shortlist. LogRhythm was eventually chosen following rigorous testing, for its ease of use and ability to deal with a wide range of data sources.
"As a retail stockbroker, our reputation depends on our ability to handle confidential information safely and in compliance with our regulatory obligations; we cannot afford mishaps," said Giles Roberts, IT Infrastructure Manager at The Share Centre. "The stringent requirements of both the Financial Services Authority and PCI DSS meant that we needed to improve the systems we had in place. We realised a centralised, automated logging solution, with real-time monitoring, and a clear view of what's happening within the network, would help us stay both compliant and secure. LogRhythm's log management system provides all this functionality, generating reports and alerts so that we can act immediately in the case of an incident."
The Share Centre was also determined that its new log management solution should be both easy to implement and use. The company received support from LogRhythm to ensure that the solution was up and running ww running within just a day, providing forensic insights into the entire IT system via a single pane of glass.
"LogRhythm supplied us with an outstanding level of assistance in getting the solution set up, including training our staff," continued Roberts. "The solution is very easy to use on a day-to-day basis as we can view the entire network infrastructure from one dashboard and easily generate clear, digestible reports. In addition, it correlates all the data relating to an incident, so that we avoid the time consuming process of investigating these logs manually."
Since implementation, The Share Centre has found that as well as maintaining regulatory compliance and strengthening security, LogRhythm provides the actionable intelligence required to see where configuration changes need to be made. This kind of deep insight is helping the company improve the effectiveness and efficiency of its entire IT system.
Ross Brewer, vice president and managing director International Markets, LogRhythm, said "With the latest version of PCI and PA DSS mandating centralised log management, the regulatory requirements for companies like The Share Centre are becoming ever-more rigorous. Combine these requirements with the growing number of high-profile data losses and it becomes clear that organisations must take more steps to counter the risks. However, by adopting a LogRhythm solution, The Share Centre hasn't just improved its security and compliance processes, it has gained powerful insight into the efficiency of its whole IT operations. The new solution will also help the company overcome future challenges, including achieving ISO 27001 compliance and meeting external IT audit criteria."