SIEM Integration – Attaching Custom Fields to Every Event
Administrators can now define custom fields to be added to every event forwarded to SIEM platforms
Organizations’ SIEM platforms are part of critical IT security processes. To support these automated processes, the data received from the security vendor is often not enough and additional custom tagging is required.
Administrators can now define up to five fields and values to be added to every forwarded event, so these events can be properly managed and cataloged.
This is especially useful for MSPs and large global organizations, with several portals forwarding events to the same SIEM platform.
To do that, go to Configuration -> Security Engines -> SIEM Integration -> Configuration -> Add custom field.
You may also like
Beyond Trust: Revolutionizing MSSP Security with a Zero Trust Framework
Introduction The cyber security landscape is evolving at breakneck speed, ...
Check Point Harmony Endpoint: Strategic Leader in Real-World Endpoint Protection
In the ever-evolving landscape of cybersecurity, theoretical protection is not ...
Check Point Software Technologies: A Visionary Approach to Workspace Security
In today’s rapidly evolving digital landscape, businesses face unprecedented cybersecurity ...
Securing Data in the AI Era: Introducing Check Point Harmony Endpoint DLP
In today’s digital landscape, data is the lifeblood of organizations. ...