Cloud SIEM

이 페이지는 아직 한국어로 제공되지 않으며 번역 작업 중입니다. 번역에 관한 질문이나 의견이 있으시면 언제든지 저희에게 연락해 주십시오.

Overview

Datadog Cloud SIEM (Security Information and Event Management) unifies developer, operation, and security teams through one platform. Use a single dashboard to display DevOps content, business metrics, and security content. Detect threats, like a targeted attack, a threat intel listed IP communicating with your systems, or an insecure configuration, to your application and infrastructure in real time, and notify your team of security issues by email, Slack, Jira, PagerDuty, or a webhook.

The Cloud SIEM home page showing the Security Overview section with widgets for important signals, suspicious actors, impacted resources, threat intel, and signal trends

Threats are surfaced in Datadog as Security Signals and can be correlated and triaged in the Security Signals Explorer. Security Signals are generated by Datadog Cloud SIEM with Detection Rules. Detection Rules detect threats across different sources and are available out of the box for immediate use. You can clone any of the provided detection rules to change the configuration. You can also add a new rule from scratch to fit your specific use case.

Get started

Additional helpful documentation, links, and articles:


Further reading

Additional helpful documentation, links, and articles:

Proactively track, triage, and assign issues with Datadog Case ManagementBLOG more more Automate common security tasks and stay ahead of threats with Datadog Workflows and Cloud SIEMBLOG more more Build compliance, governance, and transparency across your teams with Datadog Audit TrailBLOG more more AWS threat emulation and detection validation with Stratus Red Team and Datadog Cloud SIEMBLOG more more Monitor 1Password with Datadog Cloud SIEMBLOG more more Build sufficient security coverage for your cloud environmentBLOG more more