CorreLog Announces HP ArcSight CEF Certification of its Agent for IBM z/OS

Share Article

CorreLog’s Agent for IBM z/OS will provide increased visibility for mainframe SMF security messages and DB2 activity across HP ArcSight enterprise deployments.

HP ArcSight logo
We are proud to have our agent for IBM z/OS certified and to assist with enhancing mainframe visibility on the HP ArcSight platform.

CorreLog, the leader in software solutions for enterprise security event correlation, today announced that its agent for IBM z/OS mainframe has received HP ArcSight Common Event Format (CEF) certification. With this certification, the Correlog Agent for IBM z/OS is now interoperable with HP ArcSight Enterprise Security Manager (ESM), an industry-leading security information and event management (SIEM) solution designed for enterprise IT environments.

The CorreLog Agent for IBM z/OS will give customers the capability to view mainframe SIEM activity such as TSO Logons, production job ABENDs, TCP/IP connections, FTP events, and event logs from CA Top Secret, ACF2, and RACF, all within the HP ArcSight console. Additionally, CorreLog will provide enhanced real-time monitoring of DB2 events with its dbDefender™ for z/OS. CorreLog’s dbDefender™ will provide up-to-the-second database activity monitoring (DAM) for HP ArcSight, giving it the capability to monitor privileged user activity, general user access auditing, and other object-oriented security auditing for DB2.

“Correlog’s approach to SIEM is well-aligned with that of HP in terms of providing a single console of all event data regardless of the source,” said George Faucher, CorreLog CEO and president. “We are proud to have our agent for IBM z/OS certified and to assist with enhancing mainframe visibility on the HP ArcSight platform.”

The HP ArcSight platform provides customers with a unified view of security by collecting, storing and analyzing big data from any device and any format; with more than 350 connectors, now including the CorreLog Agent for IBM z/OS.

The addition of z/OS event data within the HP ArcSight platform provides added visibility for users accessing data that is held to the strictest compliance and reporting standards such as HIPAA, PCI DSS, FISMA, NERC, Sarbanes-Oxley and IRS Pub. 1075.

The CorreLog Agent for IBM z/OS is currently GA. HP ArcSight customers interested in the CorreLog Agent for IBM z/OS may email CorreLog at info(at)correlog(dot)com, or call toll-free 1 (877) 267-7356, extension 401. For more information on the CorreLog Agent for IBM z/OS, please visit

About CorreLog:

CorreLog, Inc. is the leading independent software vendor (ISV) for IT security log management and event correlation. CorreLog's flagship product, the CorreLog Enterprise Server, combines log management, Syslog, Syslog-NG, SNMP, auto-learning functions, neural network modeling, proprietary semantic correlation, automated help-desk ticketing and reporting functions into a unique multi-platform security solution. CorreLog Enterprise Server operates across Windows, UNIX, Linux and mainframe platforms, shipping with an out-of-box PCI DSS compliant CorreLog agent for IBM z/OS, the world’s most popular mainframe operating system.

All trademarks and registered trademarks used herein are the properties of their respective owners.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Tony Perri
CorreLog, Inc.
+1 (239) 331-7714
Email >
since: 07/2009
Follow >
Visit website