Sumo Logic, a security information and event management (SIEM) solutions provider that works with MSSPs, has launched an integration that combines its Cloud SIEM Enterprise solution with the ServiceNow Security Incident Response platform.
The integration gives security analysts the ability to ingest and transform Cloud SIEM Insights into ServiceNow’s platform as Security Incidents, the companies said. It also ensures that risk scores, configuration items, Cloud SIEM Insight descriptors and other observables are automatically normalized to keep data organized and workflows consistent.
In addition, Sumo Logic offers native webhook integrations for ServiceNow ITOM, ITSM and Security Incident Response, the companies stated. These integrations help IT and security operations teams to manage events and security incidents at scale.
Sumo Logic Security Updates
Previously, Sumo Logic released a beta version of its ServiceNow integration at its virtual Modern SOC Summit in June 2021. The company also made several other security announcements during the event, including:
- Sumo Logic Cloud SOAR: Allows MSSPs to use Sumo Logic Cloud SOAR to automate repetitive tasks, establish repeatable incident response workflows and measure and optimize the performance of security operations and incident response programs.
- Sumo Logic Cloud SIEM Powered by Amazon Web Services (AWS): Provides insights into AWS multi-cloud and hybrid cloud environments to help MSSPs eliminate security blind spots.
- Cloud Security Monitoring and Analytics Apps: Use AWS Cloud Trail, AWS VPC Flows, Palo Alto Networks Firewall, Windows and Linux as data sources to provide insights into an organization's security posture and analytics to help security and IT teams address security issues.
Sumo Logic specializes in continuous intelligence. It offers a partner program that enables MSSPs to deliver security intelligence and SIEM solutions.