OTHER SIEM INTEGRATION CASE STUDIES
Pulse Secure integration (Add-on) with SplunkIntegration with LogRhythm
CASB Platform integration (Add-on and App ) with Splunk
DNS Platform integration (App ) with Splunk
Business Risk Intelligence Platform integration ( Add-on) with Splunk
Infrastructure Monitoring Platform integration ( Add-on) with Splunk
Categories
Customer
Customer is a leading Security Rating provider.
It rates Cybersecurity postures of corporate entities through the scored analysis of cyber threat intelligence signals for the purposes of third party management and IT risk management
Requirement
Customer requested for the development of the Certified Splunk Add-on to integrate its rating platform with Splunk
Technology Solution
Sacumen developed the Certified Splunk Add-on that performs the following:
Fetch the Overall/Factors/Issues/ Issue findings data
Application set-up ( API key, Polling interval, Different flags to poll and filter data as per customer needs)
The Add-on was built using Splunk Add-on builder and modular input in python language was written
The Add-on supports Splunk version 7.x and 8.0
Complex logic to manage the date logic was implemented. This ensured that the data loss did not happen
Add-on supported Retry mechanism, It supported setting logging level and proxy support
Add-on supported CIM 4.x
info@sacumen.com
+91 80 4976 5878
There are no reviews yet.