Intellitactics Sponsors SANS What Works: in Security Information and Event Management (SIEM)

Share Article

Arlan McMillan, Director of Global Information Security Operations at ABN AMRO, explains how his organization collaborated with Intellitactics to get the perfect product in order to improve workflow processes, accuracy and depth of intelligence

Intellitactics announced that Alan Paller, Director of Research for the SANS Institute, and customer Arlan McMillan, VP/Director of Global Information Security Operations at ABN AMRO, will discuss what works with security in formation and event management (SIEM) on December 11 during a special webcast at 1 PM EST. This popular SANS feature, the What Works webcast, tells the story of how ABN AMRO correlates and analyzes massive data flows using Intellitactics. It wasn't a success story from the beginning. McMillan relates what SIEM looked like at ABN AMRO three years ago and what it looks like today; Intellitactics improved the product and ABN evolved their strategy and improved processes to strengthen security and prove compliance.

WHAT: SANS WhatWorks in Security Information and Event Management: Correlating and Analyzing Massive Data Flows with ABN AMRO

Seeking help to correlate and make sense of the massive volumes of security data coming from its global network, ABN AMRO chose Intellitactics and saw the product evolve and incorporate ABN's requested enhancements. The Intellitactics SIEM evolved to dramatically improve workflow processes, accuracy and depth of intelligence for the ABN AMRO team. The enhanced product allows them to process more than a billion events a month in real time with greater accuracy and introduced the ability for ABN AMRO to rapidly perform ad-hoc investigations to determine complex traffic patterns.

WHEN: Thursday, December 11th, 2008
1:00 PM EST (1800 UTC/GMT)


WHO: Featuring: Arlan McMillan and Alan Paller

Alan Paller: Alan Paller is the director of research for the SANS Institute, responsible for projects ranging from the Internet Storm Center (the Internet as an early warning system with 500,000 sensors around the world) to the Top Ten Security Menaces of the coming year. He also edits NewsBites, the twice-weekly summary of the most important news stories in security. But he says his most satisfying responsibility is finding people who have solved important security problems and helping SANS 85,000 alumni in 60 countries learn about those people and their discoveries.

Alan earned degrees in computer science and engineering from Cornell and MIT. He wrote hundreds of articles on computer graphics, EIS and computer security, and authored two books, The EIS Book: Information Systems for Top Managers and How to Give the Best Presentation of Your Life.

He has testified before the House and Senate, and in 2001 the President named Alan as one of the original members of the National Infrastructure Assurance Council. In 2005 the Federal CIO Council chose him as its annual Azimuth Award winner recognizing his singular vision and outstanding service to government information technology.

His degrees are from Cornell University and the Massachusetts Institute of Technology.

Arlan McMillan: Arlan McMillan, First Vice President/Director is the Global Head of Information Security Operations for ABN AMRO Bank. He leads a globally dispersed team which monitors the bank's global network for suspicious and malicious traffic. The ABN AMRO enterprise consists of over 250,000 nodes spanning more than 50 countries. To oversee the enterprise, the ABN AMRO team monitors an environment which consists of over 200 NIDs, 60 firewall complexes and the vulnerability information of over 95% of all network attached devices, numerous proxy logs and antivirus data. The over 1 billion monitored events as well as other data sets generated monthly are fed into a centralized collection system which in turn provides automated correlation and triage for the Information Security Analysts.

About Intellitactics, Inc.
Headquartered in Reston, VA, Intellitactics provides a suite of complementary security incident and event management (SIEM) products for organizations of all sizes. Well-known as the provider of Intellitactics Security Manager, the optimal enterprise security management solution, to the largest organizations in the world, Intellitactics has expanded its product leadership with a line of security management appliances, Intellitactics SAFE. The combination of the appliances and software products underscores Intellitactics product leadership in providing solutions for log management, compliance, threat management and incident response to every organization regardless of size or purchasing power. By combining any of the products of the suite, global organizations can effectively distribute SIEM capabilities outside headquarters. Complementary to Security Manager is Intellitactics™ SAM, which features security assurance metrics™ on a configurable dashboard. Intellitactics was awarded Common Criteria Certification in December 2004, making it the first software provider to earn this certification as a security information and event management solution. Founded in 1996, Intellitactics is backed by JMI Equity Fund LP and Lazard Technology Partners and is ranked by well-known industry analysts as a market leader known for product development, delivery and thought leadership. Visit us at

About SANS
SANS is the most trusted and by far the largest source for information security training and certification in the world. It also develops, maintains, and makes available at no cost, the largest collection of research documents about various aspects of information security, and it operates the Internet's early warning system - Internet Storm Center. The SANS (SysAdmin, Audit, Network, Security) Institute was established in 1989 as a cooperative research and education organization. Its programs now reach more than 165,000 security professionals around the world. A range of individuals from auditors and network administrators, to chief information security officers are sharing the lessons they learn and are jointly finding solutions to the challenges they face. At the heart of SANS are the many security practitioners in varied global organizations from corporations to universities working together to help the entire information security community. SANS-SSI, the Secure Software Institute aims at promoting, educating and assessing secure programming practices.

Pamela Casale


Share article on social media or email:

View article via:

Pdf Print

Contact Author

Pam Casale
011 703 819 5658
Email >
Visit website