Feature spotlights

Large enterprise scalability

With a common application platform, database and user interface, this solution delivers massive log management scalability. It supports millions of events per second within a single unified database in real time. IBM® QRadar® Log Manager allows you to define data retention by time and type of data.

Advanced threat detection

QRadar Log Manager aggregates security logs and network flows and uses its QRadar Sense Analytics™ Engine to help you identify advanced threats. Using behavioral-based analytics, it helps you detect anomalies and suspicious activities, perform event aggregation and correlation and assess severity. It provides security analysts with a manageable list of items requiring investigation

Security event data processing and capture

A customizable dashboard for role-based access by function and a full view of log data provide you with extensive reporting for regulatory compliance and threat management. Provides a seamless migration path to the full QRadar SIEM product, helping to ease your transition to true security intelligence.

Rich compliance reporting capabilities

Supports requirements such as Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), North American Electric Reliability Corporation (NERC) and Federal Energy Regulatory Commission (FERC), Sarbanes–Oxley (SOX) and more. Exceeds Federal Information Security Management Act (FISMA) requirements for continuous monitoring. Reports can be easily customized.

SoftLayer cloud installation capability

Senses, collects and manages logs in a cloud infrastructure from applications running both in the cloud and on-premises to deliver comprehensive log management functionality.

High availability and disaster recovery options

Helps you maintain uninterrupted log source data collection and storage. Using high availability software, you can take advantage of automatic failover and full disk synchronization between systems, helping support continuous operations if appliance or server failure occur. Disaster recovery appliances can safeguard your log data by mirroring it to a secondary, identical and offsite backup system. Advanced plug-and-play appliances allow you to add protection where and when you need it.

Customer case study

Technical details

Software requirements

Software requirements can be found here:

    Hardware requirements

    Hardware requirements can be found here: