//Customer case 3: Durham County Council
Customer case 3: Durham County Council 2018-04-10T10:19:08+00:00

Durham City Council

Industry: Government
Durham County Council (United Kingdom) is a local government organization that employs 18,000 people and represents a population of more than 500,000.

The case

Durham County Council decided to replace their SIEM solution following serious data losses by the previous system. This, compounded by the vendor’s high cost, led the team to re-evaluate their selection.

The need for compliance

The capital funding for SIEM is primarily justified by the council’s extensive compliance burden.

As a local authority that holds public data and collects revenue, the Durham County Council is subject to multiple compliance and accreditation requirements, including PSN, NHS IG Toolkit, HSCIC, PCI-DSS and BACS.

The solution/value derived from LogPoint

After careful evaluation, the Durham County Council replaced its solution with LogPoint. As a result, they’ve experienced many clear ROI benefits, including:

Reduced cost

LogPoint’s straightforward, predictable pricing model saved Durham almost 50%, as compared to the previous vendor.

Increased productivity

LogPoint’s simpler, per-node pricing structure has allows them to more widely deploy the solution and ingest a greater amount of data. This expands the contextual awareness that the SIEM offers, generating further value from the council’s investment.

Wider team use

Access to the SIEM solution was previously restricted to only two members of the technical services team, tying up much of their time. The simple pricing structure and ease of use that LogPoint offers means that the system opened up to other ICT areas, including the ICT service desk. The service desk can now perform their own searches, such as following up on virus alerts, tracing them back to the originating PC and identifying the alert trigger. This empowers them to contain the virus threat.

Wider systems use

More than 140 distinct devices are now configured to LogPoint, providing a more comprehensive contextual overview for the IT team. Durham County Council plans to incorporate even more systems into the SIEM and become even more proactive thanks to the notifications and updates LogPoint provides.

The main benefits of LogPoint to Durham County Council

  • Compliance reporting automated, providing the info needed rapidly and comprehensively
  • Much more cost effective than the last SIEM
  • Data loss issue resolved
  • Greater variety of systems integrated, giving more extensive reporting context
  • Extended to a far greater number of users in the ICT team, creating time efficiencies and freeing team members up

Paul Woods, information security officer, lists his favorite LogPoint features

  • Customizable searches in everyday English
  • Easy-to-use language, which is the same language for customer alerts and reports
  • Clean, good-looking dashboards that get better with every upgrade
  • The ease of getting logs loaded into LogPoint
  • The ability to write custom signatures
  • Log tearing – the ability to hold some data online and some on secondary storage that takes slightly longer to get info from
  • Customer support: “Excellent, simply excellent!”

“The outstanding offering – in terms of features, look and price – was LogPoint.”

Paul Woods, Information Security Officer