Tenable Log Correlation Engine helps organizations find and respond to security threats and demonstrate compliance with policies and regulatory requirements.

The Log Correlation Engine collects, normalizes and analyzes logs from devices throughout your network. It analyzes and correlates data from firewalls, intrusion detection and prevention systems, and data loss prevention solutions, as well as raw network traffic, application logs and user activity, looking for threats and vulnerabilities in real-time.

The Perfect Complement to the Nessus Vulnerability Scanner

While the ubiquitous Nessus vulnerability scanner actively scans your network for vulnerabilities, Log Correlation Engine collects and analyzes logs to spot anomalies and threats. Using Log Correlation Engine with Nessus expands your view into network security, combining security information and event management capabilities.

Unified Security Monitoring

When used with Tenable SecurityCenter and Nessus vulnerability scanners, Log Correlation Engine is part of a unified security monitoring solution that delivers a holistic, comprehensive view of network security and compliance.

Fast Network Insight for Security and Compliance

• Fast threat detection: Statistical analysis and correlation helps you detect threats or attacks as they occur.
• IT troubleshooting: Find worm outbreaks; monitor files and directories for unauthorized changes; spot escalating application errors
• Compliance monitoring: Demonstrate compliance and maintain an auditable infrastructure

Powerful Features for Complex Environments

Log Correlation Engine is uniquely suited for managing threats in large and complex networks:

• Anomaly Detection & Event Correlation: Statistical profiling alerts you to unusual behavior and never-before-seen events.  Advanced correlation rules detect problems like attacks, worms and misused wireless access points. 

• Fast Performance for Real-time Insight: Log Correlation Engine can normalize and analyze one billion events.  Most queries execute within 10 seconds, supporting fast remediation efforts. 
• Reporting and Analysis: A single web interface offers insight into security vulnerabilities and events from across the network.
• Flexible Log Management: Store, compress and search logs from thousands of network devices and applications, and save specific searches as tamper-proof forensic evidence.