I attended a local networking event here in town last week where a representative from AlienVault presented their open source security incident/event management tool called OSSIM. I had to endure a painful sales pitch (that wasn’t supposed to be a sales pitch, mind you) and a simple-minded “use this product for all your needs” approach to information security…but the tool actually looks promising. It’s a “free” way to pull together all of your event logs, alerts, etc. across multiple platforms into one central location. Definitely a legitimate part of managing information security that most organizations have zero control over.
There are tons of (expensive) commercial tools out there that have been around for years. But if you’re having trouble getting your arms around everything your systems are spitting out – especially in the name of compliance – OSSIM is certainly worth taking a look at.
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”