Blog Post

Microsoft Defender for Endpoint Blog
1 MIN READ

Start consuming Windows Defender ATP alerts data on IBM QRadar SIEM

Evald Markinzon's avatar
Oct 10, 2018

Hi Everyone,

We’re very excited to share that IBM QRadar has released an adapter for Windows Defender Advanced Threat Protection. IBM QRadar now joins the list of security event and incidents management (SIEM) solutions that can consume Windows Defender ATP alerts data, alongside ArcSight and Splunk. 

For more information about connecting Windows Defender ATP to IBM QRadar, see: https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-atp/enable-siem-integration-windows-defender-advanced-threat-protection#integrate-windows-defender-atp-with-ibm-qradar

 

Thanks,

Windows Defender ATP Team

Published Oct 10, 2018
Version 1.0
No CommentsBe the first to comment