Security cameras in the form of log monitoring can change behavior
LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. The LogLogic family of MX and LX-ST appliances address the compliance, operations and risk mitigation needs of mid-market companies, as well as the most demanding global enterprises. LogLogic's innovations include creating the world's first search engine for fast-moving IT log data, and Compliance Suites that automate using that data to enforce critical controls and regulations.
Name: Dominique Levin Position: EVP Marketing, Products & Business Development Previous jobs: Principal at Crimson Investments, VP Marketing at PoliVec, various product management roles at Intel, Nippon Telegraph and Telephone, Philips Electronics Education: MBA (Harvard Business School), M.S. in Industrial Engineering (Delft University of Technology, The Netherlands)
In the following interview, Dominique Levin, EVP Marketing, Products & Business Development, LogLogic discusses 1:1 with Rake Narang, Editor-n-chief of Info Security Products Guide, the importance of real-time log management.
Rake Narang, Editor-n-Chief - Info Security Products Guide: How has the enterprise evolved over the years? What are the most recent advances in real-time log management and how do these impact compliance and risk mitigation requirements of organizations?
Dominique Levin, EVP Marketing, Products & Business Development - LogLogic: Log management has gone from a “nice-to-have” to a “must-have” in the enterprise. Log files were invented about 20 years ago at UC Berkeley so that IT administrators could monitor network and server activities. Since then, log data has gone from being an IT asset for problem isolation to a critical business asset used by technical personnel and executives, including company outsiders such as regulators and auditors. Log data contains a granular audit train of user and system activity.
There are various industry regulations and standards, each requiring organizations to collect logs from specific sources, run key reports, and store them for an amount of time. For example, Payment Card Industry (PCI) and HIPAA standards require large enterprises to protect personally identifiable information such as credit card numbers and health records by tracking user behavior through log data.
Rake Narang: What are the latest products and services provided by LogLogic? How are security solutions from LogLogic helping organizations adhere better to regulatory compliances? Dominique Levin: In the last 90 days, we released a line of log management appliances for mid-market customers, we announced several 3rd party applications built on our open log warehouse API and launched new Security-as-a-Service offerings.
Our mid-market appliances deliver easy to use out of the box compliance reports and alerts in PCI, HIPAA, Sarbanes-Oxley, FISMA and ITIL. We see rapid adoption amongst mid-sized retailers, regional hospitals and credit unions amongst others.
Compliance Spectrum and UpperVision are two of our web services API ecosystem partners, which launched compliance dashboard applications integrating log data as critical evidence of proper user behavior.
Verizon Business Services, SecureWorks and SAVVIS each launched cloud-based security offerings in log management based on our technology. In addition to providing on-demand log management and archival services, these organizations can support customers with compliance expertise.
Rake Narang: Will the security vendors always be playing a catch-up game with malware? How do you see the security products and services evolving 2-3 years from today?
Dominique Levin: We see log files as the security cameras monitoring activity amongst different applications, the network, firewall, etc., within an organization. Along these lines, log management provides alerts when unusual activities occur as well as forensic files when a breach is detected. Like security cameras, we can’t stop malware, outside hacking, or even insider curiosity or sabotage from occasionally getting hold of an organization’s sensitive information. As malware gets more sophisticated, security products will likely evolve alongside. During this arms race, our product will sound an alarm, calling in the relevant authorities when a security or user access breach occurs. More importantly, “security cameras” in the form of log monitoring can change behavior. The prospect of getting caught and being held accountable is an important deterrent for overly curious insiders and malicious outsiders alike.
Rake Narang: How is your company focusing on 2008 growth? As an executive leader, what steps have you taken that have had a positive impact on your company?
Dominique Levin: Last year, we grew over 100 percent and signed 160 new customers, bringing our total to 400. We are on track to replicate that rate of growth in 2008. With 100 percent of sales going through our channel, our go-to-market strategy has enabled us to keep pace with a booming demand for log management.
All About LogLogic Head Office Address: 110 Rose Orchard Way, Suite 200; San Jose, CA 95134 Founded in: 2002 CEO: Patricia Sueltz Public or Private: Private Investors: SAP, Sequoia Capital, Focus Ventures, Telesoft Partners, Worldview Technology Partners, Invesco Private Capital Number of Employees: 140 Products: LogLogic LX-ST series and MX series Company’s Goals: Deliver innovative, high quality log management solutions that meet or exceed customer expectations Recent Awards Won: Info Security “Product Excellence Awards” 2008, SC Magazine 'Approved for SC Labs Rating' in 2006 and 2007, IT Week's 'Editor's Choice Award', AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's 'Best Computer Forensics', Info Security's 'Hot Company 2006', and designation to the Red Herring 100 in 2006
