OTHER SIEM INTEGRATION CASE STUDIES
Customer is a leading Personal Data Privacy and Protection provider.
It enables organizations to discover and map all types of data from all enterprise data sources; automatically classify, correlate, and catalogue identity & entity data into profiles; manage and protect enterprise data with advanced data intelligence; and automate data privacy and protection.
It identifies all PII across structured, unstructured, cloud & Big Data.
Customer requested to build a Connector app to integrate its platform with Splunk to scan the Splunk data for finding the PII information.
Sacumen developed the Connector app to integrate Splunk using Java SDK 8 version. The Connector app performs the following actions:
Use Splunk authentication token to access REST endpoints.
Makes REST API call to appropriate endpoints to get the index data from Splunk.
Uses data sampling techniques to sample the response data.
Formats the response data and pass it to the customer platform.