7/28/2019 3 - UKs Code of Connection - Mark

1/18

Code of Connection ComplianceFor Local Authorities

February 2010

7/28/2019 3 - UKs Code of Connection - Mark

2/18

Novell, Inc. All rights reserved.2

Agenda

What is Code of Compliance

Solutions to CESG Memo requirements

Benefits of a Sentinel Log Manager Appliance

Attraction of a SLM appliance to Local Authorities

Forensic searching and reporting Solution features

7/28/2019 3 - UKs Code of Connection - Mark

3/18

Acollectionofsecurityrecommendations RelevanttoallUKLocalAuthorities EnablessecurecommunicationwithDWP+ Details127securitycontrols

Includessite

security

to

audit

logging

5/27/2010 3

WhatisCodeOfConnection(CoCo)compliance?

7/28/2019 3 - UKs Code of Connection - Mark

4/18

SuccessfulLogins\ Logouts FailedLogins\ Logouts

Unauthorisedapplication

access

Restrictedfileaccess

Privilegedsystem

changes

Logdatamustbekeptfor6months

5/27/2010 4

SolutionaddressestheCESGMemo22requirements

7/28/2019 3 - UKs Code of Connection - Mark

5/18

SurreyCountyCouncil Sentinel CambridgeCityCouncil Sentinel

HertfordshireCounty

Council

Sentinel

LondonBoroughofLambethCouncil SLM

WellingboroughCouncil

SLM

EastNorthamptonshireCouncil SLM

5/27/2010 5

SomeUKLocalAuthoritiesusingSentinel

7/28/2019 3 - UKs Code of Connection - Mark

6/18

DellPowerEdge R710 2UChassis

IntelXeon

E5530

2.4Ghz

8GBRAM

1.8Tb

Raid

Storage

15K

RPM

disks

5/27/2010 6

HardwareApplianceSolution

7/28/2019 3 - UKs Code of Connection - Mark

7/18

IP\ DNS

name

DefaultRoute

Nameservers

PreInstalled

Delivered

readyto

be

plugged

in

5/27/2010 7

HardwareApplianceSolution

7/28/2019 3 - UKs Code of Connection - Mark

8/18

Reducemanual

process

StreamlineIToperations Automateaudits Places

control

with

the

business

owners

Othercompliancei.e.PCIandISOetc

Reducecosts

5/27/2010 8

WhatwastheattractionofaSentinelLogManagerAppliance?

7/28/2019 3 - UKs Code of Connection - Mark

9/18

Scalabilityandflexibledeployment Rapidconnection

Flexibleand

efficient

storage

Eventdataandrawdatastorage

Cost

Effective

5/27/2010 9

AdditionalreasonstochooseSentinelLogManagerAppliance

7/28/2019 3 - UKs Code of Connection - Mark

10/18

Searching Searchresultsanddrilldown

Reporting Price?

5/27/2010 10

Keysellingpointsdemonstratedtocustomer

7/28/2019 3 - UKs Code of Connection - Mark

11/18

login mlowings sev:[0TO5]

sev:0AND

sun:"KSweedy

sev:0ANDsun:"KSweedy"ORsun:"MLowings

5/27/2010 11

Searchingsyntax

7/28/2019 3 - UKs Code of Connection - Mark

12/18

5/27/2010 12

Searching

7/28/2019 3 - UKs Code of Connection - Mark

13/18

5/27/2010 13

Searching

7/28/2019 3 - UKs Code of Connection - Mark

14/18

7/28/2019 3 - UKs Code of Connection - Mark

15/18

5/27/2010 15

Searchresultsanddrilldown

7/28/2019 3 - UKs Code of Connection - Mark

16/18

5/27/2010 16

Reports

7/28/2019 3 - UKs Code of Connection - Mark

17/18

Notjust

apoint

solution

Greatsearchingandreporting

Greatstorage

options

Clearvendorroadmap

5/27/2010 17

Summary

7/28/2019 3 - UKs Code of Connection - Mark

18/18

BenFountain,InformationSecurityOfficeratLambeth Council:

WehadashortlistoffiveorsixsolutionsandNovellSentinelLog

Managerwas

the

clear

winner.

MaryCotterell,TechnologyProgramme ManageratLambeth Council:

"NovellSentinelLogManagerhasmadeanessentialcontribution toourGCSX

compliance

exercise,

and

will

continue

as

akey

tool

for

meeting

futurecompliancerequirementssuchasPCIDSS,"

5/27/2010 18

Thefirstappliancedelivery!