Cloud SIEM Enterprise
Cloud SIEM Enterprise (CSE) is a cloud-based SIEM that provides the following functionality:ย
- Collection of log and event data from your infrastructure and applications, on-premise and in-cloud.
- Correlation of the collected data to reduce the volume of info you need to sift through to investigate issues.
- A rich interface that analysts and admins can use to investigate security issues and administer CSE itself.
- Integration with the Sumo Logic platform.
In this section, we'll introduce the following concepts:
๐๏ธ Administration
15 items
๐๏ธ Ingestion
34 items
๐๏ธ Rules
13 items
๐๏ธ Schema
10 items
๐๏ธ Sensors
6 items
๐๏ธ Integrations
5 items
๐๏ธ Match Lists and Suppressed Lists
5 items
๐๏ธ Records, Signals, Entities, and Insights
15 items
