OTHER SIEM INTEGRATION CASE STUDIES
Pulse Secure integration (Add-on) with SplunkIntegration with LogRhythm
CASB Platform integration (Add-on and App ) with Splunk
DNS Platform integration (App ) with Splunk
Business Risk Intelligence Platform integration ( Add-on) with Splunk
Infrastructure Monitoring Platform integration ( Add-on) with Splunk
Categories
Customer
Customer is a leading Data Protection solution provider.
It has security software platform to let organizations track, visualize, analyze and protect their structured and unstructured data
Requirement
Customer requested the integration of their Data protection platform with the Splunk so that their clients can view the threat data in Splunk console.
Technology Solution
Sacumen developed the Splunk Modular Input app that polls events data in JSON format from the Data protection platform through REST APIs
Modular Input had configuration file to configure the Client’s URL, API Key and other required configuration parameters.
Modular Input parsed the data and used Splunk SDK
Events mapping was done against the Splunk field and custom events were defined
Splunk Modular Input app was developed for Splunk version 6.5 and above
info@sacumen.com
+91 80 4976 5878
There are no reviews yet.