Insurance services provider Endsleigh has deployed integrated log management and security information and event management (SIEM) solutions from LogRhythm to help comply with PCI DSS regulations.

Endsleigh decided to deploy a dedicated log management and SIEM solution when it became clear it could no longer rely on the log data provided by individual applications and network devices in order to prove PCI DSS compliance and spot security threats.

With a rising number of logs and with each device and application requiring manual configuration and producing separate log data reports, the overhead of collecting and processing log data was becoming difficult to manage.

Jason Collins, IT project manager at Endsleigh, said: “We needed a solution that would work straightaway and provide us with constant reassurance that our infrastructure was compliant and secure. Endsleigh is subject to a variety of regulations, including the Data Protection Act, PCI DSS and FSA rules, so we wanted a centralised, automated solution that could help meet all these requirements quickly and efficiently.

“We used to collect and manage log data manually, but with LogRhythm we can now automate this process and have a single view of the entire infrastructure. This means we can now spot even the tiniest of events, including those which would have been missed in the past.”

He said that in the future, Endsleigh intends to use LogRhythm to discover and fix operational inefficiencies, including understanding when remote access connections have failed, or identifying desktops that have not received scheduled software updates.

Ross Brewer, vice president and managing director of international markets at LogRhythm, said: “Like so many organisations, Endsleigh faced an uphill challenge to collect, process and store an ever growing number of logs; otherwise it risked non-compliance or a breach.  LogRhythm hasn't just solved these issues, it has also given Endsleigh the ability to pinpoint operational problems and improve the overall efficiency of its entire IT estate.”