Senior Editor Denise Dubie guides you through the latest developments in management tools and services.
Security information management (SIM) products began to emerge earlier this decade as an alternative to manually dealing with the volume of security alerts generated across various network and security devices.
Sometimes called security event management, SIM products started to pop up from start-ups and some existing management and security vendors. A flurry of start-ups emerged -- such as netForensics, GuardedNet, e-Security and Intellitactics to name just a few -- with technology designed to marry the data collection, normalization and correlation capabilities of management software with the intelligence of security tools.
SIM technology is designed to automate the collection of event log data from security devices and help users make sense of it through a common management console. SIM products use data aggregation and event correlation features similar to those of network-management software and applies them to event logs generated from security devices such as firewalls, proxy servers, intrusion-detection systems and antivirus software. What's more, SIM products can normalize data -- that is, they can translate Cisco and Check Point Software alerts, for example, into a common format so the data can be correlated.
Bigger vendors picked up on the potential of this technology and started shopping. For instance, Novell acquired e-Security; Micromuse acquired GuardedNet; and IBM later acquired Micromuse. And those vendors were on to something even a few years ago.
According to Forrester Research, the market for SIM technology is growing at a rate of about 50% and will continue to grow like that until 2009 -- reaching close to $1.2 billion by 2011. Due to pressures around meeting regulatory standards, more companies need to perform log management and demonstrate the integrity of their business processes -- "which means they are monitoring applications and the underlying infrastructure for improper behavior," a recent Forrester report states.
Another factor that will drive the growth, Forrester says, is small to midsize businesses taking a look at SIM. As the products become easier to use and more affordable, SMBs will start to invest in the technology. Right now, Forrester estimates, companies with fewer than 1,000 employees account for about 1% of the market, but by 2011 they could make up about 30%. And SIM technology could become a bridge between IT and business operations, the research firm speculates, saying it will foster more collaboration as it flourishes in companies of all sizes.
Denise Dubie is senior editor with Network World.
Rss FeedRss Feed
Diagnosing why an application is slow is hard, at times taking days or weeks to isolate and resolve. This paper explains the challenges involved using current management tools, provides a 'wish list' for application management and analysis, and explains the need for an application system-wide approach that monitors entire applications, not components.
This paper highlights the impact of virtualization on application performance. "Managing Application Performance in Virtual Environments" states: "Best-in-Class organizations are predominately taking actions around improving visibility across both physical and virtual systems, assessing the business impact of application performance and understanding interdependencies of applications in virtualized environments."
Forrester Research analyst Glenn O'Donnell and BlueStripe co-founder Vic Nyman discuss a breakthrough approach to application problem management. Learn the new approach for ITSM problem management, which provides: Rapid isolation of application slow-downs to specific components for quick problem resolution, 24/7 monitoring for proactive notification of potential issues before end users are impacted and much more.
The Leader in Network Knowledge
Partner Content
Blue Stripe Software
www.bluestripe.com/
Improving Application Performance Troubleshooting
Diagnosing why an application is slow is hard, at times taking days or weeks to isolate and resolve. This paper explains the challenges involved using current management tools, provides a 'wish list' for application management and analysis, and explains the need for an application system-wide approach that monitors entire applications, not components.
Download Whitepaper
Virtual Vigilance: Managing Application Performance in Virtual Environments
This paper highlights the impact of virtualization on application performance. "Managing Application Performance in Virtual Environments" states: "Best-in-Class organizations are predominately taking actions around improving visibility across both physical and virtual systems, assessing the business impact of application performance and understanding interdependencies of applications in virtualized environments."
Download Whitepaper
Application Service Requests: The Missing Link for Pragmatic ITSM
Forrester Research analyst Glenn O'Donnell and BlueStripe co-founder Vic Nyman discuss a breakthrough approach to application problem management. Learn the new approach for ITSM problem management, which provides: Rapid isolation of application slow-downs to specific components for quick problem resolution, 24/7 monitoring for proactive notification of potential issues before end users are impacted and much more.
Register for Webcast
Comments (1)
RE: Forrester: SIM market set to flourishBy John Ciampa on August 29, 2007, 10:31 amSo how does an organization monitor SOA Database or data transactions. (Those transactions initiated by a SOA Session?) The SOA authentication piece I understand...
Reply | Read entire comment
View all comments