An ever-increasing compliance burden is driving highly-regulated Australian companies to embrace increasingly capable security intelligence and event management (SIEM) platforms, according to the newly-appointed Australian head of 11-year-old SIEM success story LogRhythm.
The company, which recently reported more than 50 per cent year-on-year growth as it ramps up its worldwide presence, recently launched a Sydney office as a stepping stone into a region where a growing requirement for data governance is driving CSOs to increase their investment in log analysis.
According to ANZ director of sales Simon Howe, the choice to open in Australia – which it did only recently, spruiking its credentials at this week's AusCERT conference – came because of the country's "informed, advanced and discerning market" that has come to expect far more functionality from its security monitoring than many tools are providing.
"SIEM today means a lot more today than it did in its earlier generations," Howe told CSO Australia. "It use to be about log aggregation and integration, but now it involves network monitoring, advanced correlation and a number of other capabilities."
"Customers are recognising that current protection technologies don't necessarily protect them from everything – so they need to be looking at the logs, and have more pervasive visibility of what's going on in the environment so they can protect against advanced threats."
LogRhythm's SIEM platform combines analysis of a broad range of security log formats with a range of analytical tools, alerts and dashboards, and a flexible rules language that allows for a broad range of actions based on changing security profiles.
This has made the tools popular with financial-services and government organisations that are facing ongoing and tightening compliance burdens in the face of ever-growing information security threats.
"The key sectors for this are highly regulated and compliance driven industries," Howe said, noting the strong representation of federal, state and local government organisations within the company's Australian user base.
"They're leading the charge, and increasingly there are compliance requirements filtering across the rest of the market as well."
LogRhythm had previously been represented in Australia through Lan 1, with which it signed a distribution agreement in late 2011.
LogRhythm already has four local employees and is currently working to build out a local partner community that will be able to complement its security monitoring technology with compliance consulting, managed services and other value-added capabilities.