Security Threat Detection and Secure Logging 

SIFT-IT is an enterprise grade security threat detection and secure log management solution for the IBM i that performs real-time monitoring of all types of system and server logs.   Unlike legacy products that simply harvest journals and archive them to syslog servers, SIFT-IT products can analyze the contents of the logs in order to filter and manage specific events based on granular details.  Some of the types of events can include invalid logins, logins outside of your network or outside of normal business hours, changing system values, monitor IFS directory activty, monitor processes using adopted authority and much more.  While some other offering boast about real-time sending to remote SIEM consoles and syslog servers which any monitoring agent for the IBM i should do SIFT-IT goes well beyond that by offering customers the ability to automate remediations in real time through triggering steps in exit programs.  This means you can stop things from continuing immediately rather than waiting for someone to discover it later on a SIEM console or syslog server.

SIFT-IT has unlimited reformatting and integration capabilites to any enterprise SIEM or detection software by providing output options for CEF, LEEF, Syslog formats supporting RFC3424 or RFC5424 or even directly outputting to text files for other types of monitoring processes.  Customize the payload to remote console by adding searchable tags which is very necessary to prioritize searches on SIEM that have tremendous amounts of data.

SIFT-IT is proven in many industries including financial (banks, insurance, etc), healthcare and manufacturing.  Some of our clients process as much as 10,000 security events per second for secure logging to multiple SIEM consoles simultanously.

if you need a high volume, sophisticated security detection solution for the IBM i, SIFT-IT is right for you!   See for yourself and download a trial of SIFT-IT.