OTHER SIEM INTEGRATION CASE STUDIES
Customer is a leading CASB Solution Provider.
The CASB solution provider delivers cloud visibility, security and anomaly detection for hybrid enterprises.
Customer requested the development of Splunk Add-on and App to integrate with its CASB platform.
Sacumen developed the Splunk Add-on to ingest the events logs data in Syslog format
Around 20 log events are supported by the add-on.
Support for CIM 4.0
Sacumen developed the Splunk app containing 1 Dashboard which consists of 10 items. Splunk app fires the Splunk Search Query against the indexed data (data ingested into Splunk by the Splunk Add-on) and build the items in the Dashboard.
Both Splunk App and Add-on support Splunk Enterprise (version 7.3)