TechValidate Research on Quest Microsoft Platform Management


Quest InTrust Case Study

Global 500 Beverage Company

Introduction

This case study of a Global 500 beverage company is based on a February 2018 survey of Quest InTrust customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

“The best feature which I like is the collection of event logs proactively regarding security incidents.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Quest InTrust:

  • Collecting large volumes of event log data from different systems, devices and applications
  • Native event log data is cryptic and hard to interpret
  • Need to protect logs from tampering or erasure
  • Strict compliance regulations for data retention
  • Expensive storage costs for event logs
  • Need to respond quickly to security incidents

Use Case

The key features and functionalities of Quest InTrust that the surveyed company uses:

  • Uses the following SIEM tools in their environment:
    • LogRhythm
  • Is collecting data from the following systems:
    • Linux/Unix (HP-UX, IBM AIX, Solaris)
    • DB Server (SQL Server, Oracle)
  • Uses the following systems to analyze InTrust data:
    • Quest IT Security Search
    • Quest InTrust Repository Viewer (Searches and Reports)
    • Quest Knowledge Portal

Results

The surveyed company achieved the following results with Quest InTrust:

  • Realized the following benefits with InTrust:
    • Improved real-time alerting of suspicious activity
    • Automated responses to specific events
    • Protected event log data from tampering or erasure
    • Improved pre-defined best practice reports
    • Integrated with Quest IT Security Search to correlate data
  • Reduced storage costs by 61-80% with InTrust’s highly-compressed repository
  • Collects 1,000 events per day using InTrust
  • Sends 100 events per day to their SIEM solutions
  • Total size of their InTrust repositories is 2 TB




About This Data

This data was sourced directly from verified users of Quest Microsoft Platform Management by TechValidate.

TechValidate verifies the identity and organizational affiliation of all participants that contribute to published research data. When research participants so desire, we also guarantee their anonymity so that they may share information honestly and freely.


More Research on Quest Microsoft Platform Management