Large enterprise scalability
With a common application platform, database and user interface, this solution delivers massive log management scalability. It supports millions of events per second within a single unified database in real time. IBM® QRadar® Log Manager allows you to define data retention by time and type of data.
Advanced threat detection
QRadar Log Manager aggregates security logs and network flows and uses its QRadar Sense Analytics™ Engine to help you identify advanced threats. Using behavioral-based analytics, it helps you detect anomalies and suspicious activities, perform event aggregation and correlation and assess severity. It provides security analysts with a manageable list of items requiring investigation
Security event data processing and capture
A customizable dashboard for role-based access by function and a full view of log data provide you with extensive reporting for regulatory compliance and threat management. Provides a seamless migration path to the full QRadar SIEM product, helping to ease your transition to true security intelligence.
SoftLayer cloud installation capability
Senses, collects and manages logs in a cloud infrastructure from applications running both in the cloud and on-premises to deliver comprehensive log management functionality.
High availability and disaster recovery options
Helps you maintain uninterrupted log source data collection and storage. Using high availability software, you can take advantage of automatic failover and full disk synchronization between systems, helping support continuous operations if appliance or server failure occur. Disaster recovery appliances can safeguard your log data by mirroring it to a secondary, identical and offsite backup system. Advanced plug-and-play appliances allow you to add protection where and when you need it.