Cisco Security and LogZilla

We decided to do something about the endless incidents and the manual processes required to solve them. Born from a small open source experiment years ago by our CEO, we've taken the core concepts and lessons learned along the way of providing real-time visibility and automation in network operations from that open source hobby to a mature, intelligent, Network Event Orchestration™ platform. LogZilla operates with easy to use dashboards delivering intelligent, automatic network operations for use by every enterprise on the planet.

Product Integrations:

Cisco Identity Services Engine: ISE integrates with the LogZilla platform to bring together a network wide view of security event analysis and relevant identity and device context. The data can include the identity and level of access of each user and the type of device used. This information permits the analyst to more quickly determine where the event is coming from whether it needs further investigation and if so how urgent is the threat.

Secure Firewall: LogZilla embeds the Cisco eStreamer client into their platform and can collect data like a SIEM. LogZilla has a unique ability to filter events based on field values with regular expressions, all extensible to users. This can dramatically reduce noise and the cost of storage. LogZilla is often deployed as a layer between event sources and the SIEM which it can deduplicate, transform and filter.