A hospital serving 500,000 residents increases network security with Logmanager’s lightweight SIEM

Key challenges

Jihlava Hospital is the largest hospital in the Vysočina region, employing over 1,500 staff. It serves as the primary healthcare provider for up to 500,000 residents.

The hospital primarily offers healthcare services, which include outpatient and inpatient diagnostics, treatment, preventive care, and pharmaceutical services. Additionally, the hospital engages in scientific research, education, and other activities related to hospital operations.

The ICT department at Jihlava Hospital is responsible for dozens of information systems, comprising thousands of various hardware and software components.

Reasons for Implementing Logmanager

The hospital required a solution capable of collecting log data on the functionality and status of managed devices, particularly security and network devices, including historical data. The primary focus was on enhancing the security of the computer network and its components.

Key criteria included device performance and storage capacity. Large SIEM systems are typically not cost-effective or operationally suitable for organizations of this nature, as they require significant time and expertise to manage.

As a result, the hospital chose Logmanager, which not only met all the requirements but also provided a more affordable solution.

Deployment

The hardware installation took approximately 4-5 hours, followed by environment configuration based on the hospital’s needs, with an initial focus on firewalls and network elements.

After a month of operating Logmanager, the customer fine-tuned the system together with vendor. During this process, the client became familiar with log normalization and alerts, which were gradually deployed into operation.

Many unknown and difficult-to-identify logs were recorded during implementation. To effectively utilize the information from these logs, custom parsing rules were created.

Thanks to its flexibility, Logmanager easily adapts to growing operational demands—such as a data volume increase of tens of gigabytes per day—and to the ongoing development and changes within the hospital’s ICT environment.

Impactful results

In the Jihlava Hospital setting, Logmanager proved to be an accessible and high-quality system for logging and SIEM. The system can be easily integrated into an existing environment, with ease of integration being one of its main advantages.

By implementing Logmanager, security issues were identified, such as spoofed DHCP or network devices mining cryptocurrency, among others.

The ability to connect with various platforms allows for the logging and presentation of events and logs from any network, security devices, operating systems, and application software in a clear graphic and textual format.

The system’s simplicity and clarity enable ICT administrators to receive information and alerts tailored to their requirements.

Logmanager’s quick log search and analysis capabilities met the hospital’s expectations. The client also appreciates the ease of system upgrades and access to webinars that provide updates, changes, and technical insights from the developers.

An additional benefit is full access to logs from firewalls and network devices, with long-term storage.

Key Features

Jihlava Hospital’s IT administrators appreciate the following solution features:

  • Fast deployment and implementation.
  • High performance and extended retention period for online data, with easy backup options.
  • Quick identification of the root cause of system malfunctions
  • Real-time operational issue identification and automatic alerts.
  • Easy creation of custom queries, graphs, reports, and dashboards.
  • Support for creating security audits.
  • Ability to limit permissions and filter displayed data for non-privileged users.

 Get a hands-on Logmanager experience, explore its features and see how it can meet your needs in our interactive product demo.