Skip to main content

Cloud SIEM Integrations

In this section, we'll introduce the following concepts:

Icon of two screens

ThreatQ Source

Learn how to set up a ThreatQ source.

Icon of two screens

Insight Enrichment Server

Learn how to automatically enrich Cloud SIEM Insights.

Icon of two screens

Enable VirusTotal Enrichment

Learn how to enrich Signals based on queries it runs against VirusTotal.

Icon of two screens

TAXII Feed

Learn how to integrate Cloud SIEM with a TAXII threat intelligence feed.

Icon of two screens

Security Incident Response (SIR)

Learn to install and configure the integration between Sumo Logic Cloud SIEM and ServiceNow's SIR.

Icon of two screens

Enrichments and Threat Indicators

Learn how enrichments can add threat indicators to show risk level in Insights and Entities.

 

Edit this page
Last updated on by John Pipkin (Sumo Logic)
Status
Legal
Privacy Statement
Terms of Use

Copyright © 2024 by Sumo Logic, Inc.