Tripwire Log Center: Security Intelligence Made Simple
Tripwire Log Center solves this problem by securely collecting all log data and then filtering and analyzing that data so that only relevant events are sent to your IT security team or forwarded to your SIEM.
Log management is a best practice that is referenced by many ICS cybersecurity frameworks and regulations (including but not limited to IEC62443, NERC CIP, NIST SP 800-82, and American Water Works Association Process Control Network Security Guidance). Even if you have not selected a cybersecurity framework to adopt or follow, you can still set up a centralized log repository and begin harvesting/analyzing log events. This can prove valuable for discovering if there are any cyber events impacting-or with the potential to impact-the industrial process.