Logging Compliance | HIPAA | PCI DSS | SOX Compliance

Logging Compliance

Protect your data with secure and compliant log collection & management

Snare Ensures Logging Compliance

Managing and, importantly, analyzing, log data is crucial to staying in front of evolving regulations regardless of what industry you operate in. Event logging and forensic analysis make it easy to comply with these regulations.

United States

HIPAA, PCI-DSS, FERPA and more!

The Health Insurance Portability and Accountability Act (HIPAA) was created primarily to modernize the flow of healthcare information, stipulating how Personally Identifiable Information maintained by the healthcare and healthcare insurance industries should be protected from fraud and theft, and to address limitations on healthcare insurance coverage.

The Payment Card Industry Data Security Standard (PCI DSS) consists of a minimum set of necessary requirements that every merchant and/or service provider must meet in order to protect the cardholder data of their customers.

The Family Educational Rights and Privacy Act (FERPA) is a Federal law that protects the privacy of student education records. The law applies to all schools that receive funds under an applicable program of the U.S. Department of Education and gives parents, and eventually the students, certain rights with respect to their children’s education records.

Europe

GDPR

The General Data Protection Regulation (GDPR) is the toughest privacy and security law in the world. Though it was drafted and passed by the European Union (EU), it imposes obligations onto organizations anywhere, so long as they target or collect data related to people in the EU.

Canada

PIPEDA

Personal Information Protection and Electronic Documents Act (PIPEDA), is a federal privacy law in Canada for private organizations, setting out ground rules to ensure that the private and confidential information about an organizations customers and employees are secured.

Australia

The Privacy Act of 1988

The Privacy Act 1988 (Privacy Act) was introduced to promote and protect the privacy of individuals and to regulate how Australian Government agencies and organisations with an annual turnover of more than $3 million, and some other organisations, handle personal information.

Japan

APPI

Japan’s first foray into data protection legislation came with the adoption of the Act on the Protection of Personal Information (APPI) in 2003. APPI was one of the first data protection regulations in Asia. It received a major overhaul in September 2015 after a series of high profile data breaches shook Japan, making it clear APPI’s requirements no longer met present day needs.

India

ITA-2000

The Information Technology Act 2000 (ITA 2000) provides the legislation around e-commerce, electronic contracts and e-signatures for India. It also defines certain acts of cybercrime and outlines penalties. It was notified on October 17, 2000 by the Indian parliament.

If a data breach occurs, being able to pinpoint exactly what happened is essential to be able to prevent a similar breach from occurring again in the future. A full accounting of what happened may also be required by the relevant authorities.

The ultimate goal is to dramatically reduce the mean time to detection (MTTD) and mean time to resolution (MTTR). Doing so can help reduce any liability on behalf of the organization and can help minimize the actual damage done by a breach.

Collecting information such as event logs is only the first part of the equation. The most important part of the process is forensically analyzing the data to determine who accessed what within the network, and what they did while they were there.

Organizations in any industry must comply with various regulations:

HIPAA

Organizations involved in providing healthcare or related services need to comply with information security guidelines laid out as part of legislation in the relevant country. For example, in the United States, the Health Insurance Portability and Accountability Act of 1996 (HIPAA), recommends that organizations in the healthcare sector establish a comprehensive audit and event logging regime across data stores, applications, and operating systems.

SOX

Financial services organizations are required to protect their customers’ personal financial information. The Financial Modernization Act of 1999 (also known as the Gramm-Leach-Bliley Act) compels US-based financial institutions to protect customer information. In Australia the Privacy Act of 1988 includes similar requirements, while the General Data Protection Regulation (GDPR) protects European customers.

All publicly-traded companies in the United States have to submit an annual assessment of the effectiveness of their internal financial auditing controls to the Securities and Exchange Commission (SEC) under the Sarbanes-Oxley requirements.

The Sarbanes-Oxley Act (SOX) affects all publicly-traded companies and focuses on the accountability and integrity of the financial reporting process for a public company. Log files contain a wealth of information that can be mined for details that will assist in detecting system problems and providing an audit trail for incident response and forensic investigation.

SNARE Enterprise Tools help organizations comply with SOX by providing a centralized repository where logs collected from disparate systems can be collected, normalized, aggregated, and archived, which supports SOX Section 404’s IT process controls. These logs form the basis of the internal controls.

PCI DSS

Retailers need to be PCI-compliant. This means you need to satisfy various requirements to demonstrate that your customers’ payment card information is protected.

Payment card industry data security standards (PCI DSS) were developed to help prevent credit card fraud for organizations that process credit card payments. A part of the requirements for retailers, you must:

build and maintain a secure network
protect cardholder data
maintain a vulnerability management program
implement strong access control measures
regularly monitor and test networks
maintain an information security policy.

The Snare Central Server is designed with forensic examination and compliance in mind, and is ideal for investigating events because:

it keeps stored logs away from the systems generating logs so they can’t be tampered with, remain secure, and can be accessed when needed to investigate an event
it uses a very high compression ratio, standards-compliant format that lets you store approximately 40 terabytes’ worth of data on about 1 terabyte of physical disk space
the data can be exported as-is to third-party analysis tools or it can be analyzed on the server
the Central Server includes 200 standard template reports that map to legislative requirements and can be configured as required
deeper analysis is made simple and accessible with incident trails clear and easy to follow.

Snare Agents also contribute to forensic analysis by:

forwarding data in a non-proprietary format that’s light on system resources so you can collect a wide range of events that may not be immediately critical, but may be useful as forensic support material for future investigations
extrapolating localized information from audit event logs that are critical for long-term forensic follow-up but may be transitory on the source server
not removing information from the source log data
cryptographically fingerprinting log collections with checksums archived to support long-term validation of source data.

Need Help with Compliance?

Get in touch with our compliance experts

Cookie and Privacy Settings

How we use cookies

We may request cookies to be set on your device. We use cookies to let us know when you visit our websites, how you interact with us, to enrich your user experience, and to customize your relationship with our website.

Click on the different category headings to find out more. You can also change some of your preferences. Note that blocking some types of cookies may impact your experience on our websites and the services we are able to offer.

Essential Website Cookies

These cookies are strictly necessary to provide you with services available through our website and to use some of its features.

Because these cookies are strictly necessary to deliver the website, refuseing them will have impact how our site functions. You always can block or delete cookies by changing your browser settings and force blocking all cookies on this website. But this will always prompt you to accept/refuse cookies when revisiting our site.

We fully respect if you want to refuse cookies but to avoid asking you again and again kindly allow us to store a cookie for that. You are free to opt out any time or opt in for other cookies to get a better experience. If you refuse cookies we will remove all set cookies in our domain.

We provide you with a list of stored cookies on your computer in our domain so you can check what we stored. Due to security reasons we are not able to show or modify cookies from other domains. You can check these in your browser security settings.

Google Analytics Cookies

These cookies collect information that is used either in aggregate form to help us understand how our website is being used or how effective our marketing campaigns are, or to help us customize our website and application for you in order to enhance your experience.

If you do not want that we track your visist to our site you can disable tracking in your browser here:

Other external services

We also use different external services like Google Webfonts, Google Maps, and external Video providers. Since these providers may collect personal data like your IP address we allow you to block them here. Please be aware that this might heavily reduce the functionality and appearance of our site. Changes will take effect once you reload the page.

Google Webfont Settings:

Google Map Settings:

Google reCaptcha Settings:

Vimeo and Youtube video embeds:

Privacy Policy