Using GFI EventsManager to demonstrate compliance
Most of the regulations’ logs are deemed instrumental for tracking the activity occurring on systems that process personal data. Consequently, most of the regulations require that logs are regularly archived and reviewed . GFI EventsManager helps you demonstrate regulatory compliance through four main features:
|GFI EventsManager is automatically configured with general and predefined reports covering common compliance acts, such as: HIPAA, FISMA, GLBA, Payment Cards Industry Data Security Standard (PCI DSS) and Code of Connection.
|Event processing rulesA set of instructions which are applied against an event log.||Dedicated rules used to identify and categorize Windows events that are relevant for different PCI DSS requirements.
|Event archival||The GFI EventsManager storage engine archives event data in files that can be compressed and encrypted. Your event data can be stored locally or in a central location.
GFI EventsManager provides three layers of consolidation for your log data:
At this stage of the evaluation it is recommended that you to go to the Reporting tab:
- Select the report set applicable to your regulation and run a few reports.
- If you don’t find a dedicated report set for your regulation, check the general reports and select the ones that match your requirements. For example, Account Usage reports that show Logon/Logoff information are useful for most compliance acts.
If you need to comply with the Payment Card Industry Data Security Standard (PCI-DSS), review GFI white papers on PCI DSS Compliance at http://go.gfi.com/?pageid=EM_PCIDSS. This offers very detailed information on how GFI can assist with each PCI requirement.