The non-intrusive design of McAfee Database Event Monitor for SIEM supports your expanding compliance auditing and reporting requirements and enhances security operations. While it monitors all database transactions, Database Event Monitor for SIEM provides a complete audit trail of all database activities, including queries, results, authentication activity, and privilege escalations.
Database Event Monitor for SIEM is the only product that both consolidates database activity into a central audit repository and provides normalization, correlation, analysis, and reporting of that activity. It normalizes activity for analysis with other pertinent security information for expanded visibility into user and data interactions, user information, application contents, OS activity, vulnerabilities, and even network location.
Database Event Monitor for SIEM allows you to:
- Track users across applications
- Examine full session activity, from login to logoff
- Detect sensitive data and identify policy violations
- Detect loss of data through authorized channels
- Correlate database activity to security events
- Generate detailed reports for PCI DSS, HIPAA, NERC-CIP, FISMA, GLBA, SOX, and many more compliance requirements
Features & Benefits
Get compliance reports pre-built and ready to run
Comply with regulations such as PCI DSS, HIPAA, NERC-CIP, FISMA, GLBA, SOX, and others, while strengthening your overall security posture with pre-defined rules and reports and privacy-friendly logging features.
Benefit from integration with other McAfee products
Get full integration with McAfee Enterprise Security Manager and McAfee Enterprise Log Manager for unprecedented event analysis and correlation, in addition to compliant storage and encryption of data activity logs.
Find the data that enables your business
Discover all database instances including unauthorized or rogue databases.
Uncover regulated and confidential data for compliance
Detect when a database contains sensitive information — such as personal identity information — so that you can monitor all access to that information in accordance with PCI DSS, HIPAA, NERC-CIP, and other compliance requirements.
Log database activity for a complete audit trail
Retain details of all database transactions, from login to logoff, to support compliance auditing requirements; masking can protect sensitive personal information in logs.
Reconstruct sessions with one click
Speed investigations of database events by viewing the entire session from login to logoff with a single mouse click.
Monitor your network without compromising database performance or capture rates
Avoid overhead, monitor your database over the network, and ensure the audit data you need is retained.
Integrate database event information into SIEM workflows
Leverage integration with McAfee Enterprise Security Manager as a central resource and interface for all database monitoring and compliance needs, and enable database transactions to be used by event correlation and other advanced SIEM features.