Surrey Heath Borough Council has implemented a log management, log analysis and event management solution from LogRhythm to meet GCSx, ISO 27002 and PCI DSS compliance.


Previously the council had been manually checking the log data generated by its different servers, and investigated a centralised, automated logging solution to help ensure easier and quicker compliance with GCSx, and the associated Code of Connection (CoCo).


LogRhythm currently interfaces directly with Surrey Heath's domain controllers and intrusion protection systems. Should any unusual behaviour occur, LogRhythm will notify Surrey Heath's IT team by text message and email so that they can respond as quickly as possible.


Steve Norwood, systems security officer at Surrey Heath, said: “We looked at a number of open-source based, self-build options as well as a specific log event management solution but none of these were granular enough to meet our needs and couldn't portray exactly what was going on across our network on one single screen.


“On further examination, we particularly liked LogRhythm's ability to analyse network patterns and enable the fast and easy forensic investigation into historical activities.”


Ross Brewer, vice president and managing director, LogRhythm, said: “Surrey Heath represents LogRhythm's continued expansion across the public sector. As publicity continues around high-profile data security breaches within the public sector, we are finding that a growing number of organisations are turning to us to help them gain a tighter control of exactly what is occurring within their network so that they can act and respond before any damage is done.”