Satisfied ISO/IEC 27002 Controls

ISO/IEC 27002 contains over forty-eight controls that can be evidenced or audited by TIBCO LogLogic reports and alerts. Although some of the controls are not directly related to log data, the TIBCO LogLogic reports and alerts can be use to assist in satisfying those requirements. Routinely reviewing TIBCO LogLogic reports and responding to TIBCO LogLogic alerts aid in preventing, detecting, containing, and correcting security violations.

The data generated by the TIBCO LogLogic Compliance Suite can be used to conduct a thorough risk analysis of the risks and vulnerabilities threatening the entity. The risk analysis can then be used to customize specific TIBCO LogLogic reports and alerts that enable an entity to manage risks in a dynamic environment where risks and vulnerabilities rapidly change.

All TIBCO LogLogic reports can be used to monitor regular user activity, as well as the activity and results of system and network administrators. Any activity or network configuration setting that is determined to violate security policies or procedures can result in sanctions against people, processes or resources.

All TIBCO LogLogic reports and alerts directly aid an entity by allowing the regular review of information system activity. The LogLogic^® Compliance Suite - ISO Edition allows for the continuous monitoring of the IT infrastructure using behavioral-based alerts. Configure alerts to monitor performance of firewalls, routers, switches, servers, applications, and operating systems so they can be notified immediately of failures. Real-time reports and custom, regular-expression searches also enable administrators to quickly identify and determine the root cause of any problems. This further mitigates risk and minimizes interruptions to service availability.

Copyright © Cloud Software Group, Inc. All rights reserved.