IBM Security zSecure Alert integration with QRadar SIEM
JeroenTiggelman 27000186A5 Comment (1) Visits (16047)
Integration between IBM Security zSecure Alert and QRadar SIEM 7 has become generally available on December 19, 2012.
This integration allows forwarding real-time alerts from zSecure Alert to QRadar SIEM through the syslog protocol.
zSecure Alert is the real-time monitor component of the zSecure suite. It can correlate events and send out real-time alerts through e-mail, text message, Write To Operator console messages, SNMP traps, or syslog receiver events. It also integrates capabilities for data analysis and enrichment that are part of zSecure Audit.
For the original integration between zSecure Audit and QRadar SIEM released last July, look here.
QRadar SIEM is a next-generation Security Information and Event Management solution by
Q1 Labs has made a new "IBM zSecure Alert" DSM available to consolidate the alerts into the QRadar SIEM offering, through rpm packages for both QRadar SIEM 7.0 and 7.1.
To be able to benefit from this integration, install the appropriate rpm package on your QRadar SIEM system. This should work with your existing zSecure Alert installation.
If you have any questions, please post them here or on the zSecure forum.