IT departments typically use logs to monitor security breaches, whether malicious employees or outside hackers. While it can indicate unsuccessful attacks, the data is particularly valuable for identifying actual intrusions.
Just this week, the IRS put out a report saying they weren’t properly collecting cybersecurity logs for the past 20 months, meaning taxpayer data could have (or may have) been hacked over the Internet.
While the PCI group is focused on payment security–it was founded by American Express, Discover Financial Services, JCB International, MasterCard Worldwide, and Visa Inc.–the addition of LogRhythm will extend the focus toward making logs across all organizations more secure.
“A significant percentage of LogRhythm’s customers must comply with the Payment Card Industry (PCI) Data Security Standard (DSS), so we have acquired deep domain expertise in helping organizations meet its requirements,” said Andy Grolnick, president and CEO of LogRhythm.