The aging of the existing system's equipment increased operational burdens, and the lack of high-speed search and data normalization capabilities delayed threat analysis. There were also difficulties in the long-term storage of log data.
We reconstructed the integrated log management system based on eyeCloudSIM. A high-performance log storage solution was introduced to reliably store large volumes of logs, and real-time compression and storage capabilities were implemented.
By centralizing the log collection and management system, we enhanced the reliability of security event analysis and response, and strengthened the audit log management features to comply with financial security regulations.