globe

Insider Threat
Monitoring Solution

introduction

Insider Threat Auditing System

Audit log generation

Generate real-time audit logs for all key values entered by terminal users on Unix and Linux systems. Generate audit logs including keyboard input, mouse events, processes, file events, running processes, remote access information, resource change information, and screen captures on MS Windows systems.

Real-time risk detection and alerts

Policy settings for user commands, file changes, and process execution
Policy settings for user commands, file changes, and process execution

Leakage and breach analysis

Search and analysis reporting of important actions such as keystrokes
User screen playback based on search or analysis results

Obtaining evidence

Obtaining log data on breach incidents
Responding to compliance issues

merit

Developing a Countermeasure
Against Insider Threats

Creation and collection of various audit logs and analysis

Establishing a triple backup system using non-rewritable media (Blue-Ray) for Key Input, Screen Dump, Process, Session, Remote, File Event, Mouse Event, and Resource.

Performance verification through various certifications

Certified by an authorized agency that has obtained National Intelligence Service CC certification (EAL3+) and GS certification

Stability of log collection

Equipped with a dedicated log collection agent, it retransmits logs without omission after a log management system failure, solving the log loss problem of Syslog.

Dedicated H/W construction to ensure performance

To ensure the performance of processing large-capacity log files, a dedicated collection/analysis server of the appliance type for real-time data storage was built.

structure

Expected effect

Providing legal information
on insider activities

Business Support Automation

Proof of transaction history in case of legal dispute
Providing and customizing various Web UIs tailored to the client's needs
Providing a web-based dashboard for customers

Original log management

Real-time collection and storage of all original logs
Use of media that is fundamentally impossible to tamper with
- CD, DVD, Blu-ray, WORM
- Support for dual/triple backup system configuration
Configuration management support for I/O specialists
Provides log query function for development/testing systems.

Secure critical system audit data

Improvement of the management supervisor's personnel limitations through analysis, storage, and real-time monitoring of the work history of important servers.
Understanding who, what, when, where, and how
By managing and supervising simple mistakes or intentional computer manipulation during operation, we respond to accidents and information leaks that may occur through operational personnel.

Integrated management of transaction logs

Real-time collection and storage of all transaction logs
Understand who did what, when, where, and how
By managing and supervising simple mistakes or intentional computer manipulation during operation, we respond to accidents and information leaks that may occur through operational personnel.

Compliance with legal regulations and guidelines

- Article 22 of the Electronic Financial Transactions Act (Creation and Preservation of Electronic Financial Transaction Records) The contents of electronic financial transactions shall be preserved for up to five years.
Article 9 of the Enforcement Rules of the Electronic Financial Supervision Regulations (Computer Data Protection Measures)
- ① Article 8: Back up computer data and dissipate to a safe area (remote location)
- ② Records of access to the main computer, computer data, and information system, including data content, accessors, and access date and time, shall be preserved for at least one year.

Insider Threat Monitoring Solution

Insider Threat Auditing System

Developing a Countermeasure Against Insider Threats

Providing legal information on insider activities

Related Link

Insider Threat
Monitoring Solution

Developing a Countermeasure
Against Insider Threats

Providing legal information
on insider activities