Context

Tool mentors explain how a tool can perform tasks, which are part of ITUP processes and activities. The tasks are listed as Related Elements in the Relationships section.

You can see the details of how processes and activities are supported by this tool mentor, by clicking the links next to the icons:

•   Event Management
  •   Detect and Log Event

Details

IBM® Tivoli® Compliance InSight Manager (TCIM) can monitor a huge number of event sources covering network nodes, operating systems applications and databases.

Audit event data is collected and stored in the TCIM's Depot for future analysis. The collect process is automated, reliable, and verifiable. Specific reports monitor the collected process including the Log Continuity Report.

Events are analyzed against policy on a schedule as well to create reports. During the analysis process events are:

1. Normalized to a single W7 model, which makes events easily understandable by non-SMEs.
2. De-duplicated with similar events being represented by one event in the reports.
3. Evaluated against policy to identify those events warranting further study.

For more information

For more information about this tool, click IBM Tivoli Compliance InSight Manager at the top of this page.