University of Nottingham Looks to IP Performance and LogRhythm for Future-Proofed SIEM Solution
After a review of its existing log management system, University of Nottingham concluded it did not have the capacity to manage growing data logging needs. LogRhythm's log management and SIEM 2.0 (Security Information and Event Management) technology was implemented to prepare for future logging requirements and gain more insight into what is happening across its IT infrastructure.
The University of Nottingham is ranked in the top one percent of world universities and is seventh in the UK for research. It has 6,100 staff, 32,000 students in the UK and even two fully fledged campuses in China and Malaysia hosting a further 7000 students.More than 90 per cent of research at the University of Nottingham is of international quality, according to the most recent Research Assessment Exercise, with almost 60 per cent of all research defined as 'world-leading' or 'internationally excellent.'The University of Nottingham reached a landmark in its long list of academic achievements in 2003 when Sir Peter Mansfield was awarded the Nobel Prize for Medicine for his work in the application of Magnetic Resonance Imaging (MRI)
As a large provider of higher education, the University of Nottingham generates huge quantities of log data, and therefore needed an effective way to collect, analyse and process it. In addition, the organisation needed to implement a solution to assist with regulatory obligations including the Data Protection Act and Good Practice Guide 13 (GPG 13), a Protective Monitoring framework designed by CESG, the UK Government's National Technical Authority for Information Assurance. GPG 13 combines a number of roles, including enterprise monitoring, serving as a definition of scope for relevancy and effective deployment of monitoring technology and as a standard for measuring the quality of organisational SIEM.The university was also starting to field questions from potential research partners that require it to be ISO 27001 compliant. As a leading research body it is essential that future research grants are not jeopardised by the issue of non-compliance.
After a review of all available solutions on the market, including Splunk, LogRhythm came out on top. This came down to a number of factors including LogRhythm's ability to intelligently process a greater number of data sources, its wide range of investigation capabilities and the fact that it combines both log management and event management on one unified platform.