Dec 02 2019 10:29 AM
Anyone integrated an Alienvault SIEM Connection with defender ATP and the security center?
Our last solution we had to export the data from Sophos and manually load it into the SIEM
Dec 02 2019 10:41 AM
Dec 04 2019 07:20 AM
OK Thanks for that input, are you refering to Azure Sentinel and have them parse into the SIEM? Would you happen to have any info this process as this is a major part of our PCI requirements. Our old system (Sophos Cloud) we manually exported the logs and they were imnported into the Vault device.
Dec 05 2019 12:40 AM