The Gramm-Leach-Bliley Act (GLBA) mandate that every financial institution should have polices and processes in place to protect “non-public personal information” from threats.

It is necessary that a security management process exists in order to protect against attempted or successful unauthorized access, use, disclosure, modification, or interference of customer records. In other words, being able to monitor, report, and alert on attempted or successful access to systems and applications that contain sensitive customer information.

EventLog Analyzer helps you to comply with the Financial Services Modernization Act (FMA99) commonly referred to as the Gramm-Leach-Bliley Act (GLBA). Title V of the Act governs the steps that financial institutions and financial service companies must undertake to ensure the security and confidentiality of customer information. The Act asserts that financial services companies routinely collect Non-Public Personal Information (NPI) from individuals, and must notify those individuals when sharing information outside of the company (or affiliate structure) and, in some cases, when using such information in situations not related to the furtherance of a specific financial transaction.

Section 501B (1) – System Events

• System Logs
• Audit Logs Cleared

Section 501B (2) & (3) – Logon

• Successful User Logons
• Successful User Logoffs
• Unsuccessful User Logons
• Terminal Service Session