Integration with Exabeam

Exabeam extends the cloud-scale capabilities of Exabeam Security Log Management with additional features for threat, detection, investigation, and response (TDIR). Exabeam SIEM includes Alert and Case Management, over 100 pre-built correlations, integrated threat intelligence and powerful dashboarding capabilities. The solution delivers analysts new speed, processing at over 1M events per second (EPS) sustained, and multi-year search capability for query responses across PB of hot, warm, or cold data in seconds.

Securely collect data from on-premises or cloud data sources at scale using a single interface. Parse each raw log into a security event, identify named fields, and normalize it using a standard format for accelerated analysis and added security context. A wizard enables custom parser creation from new or templated log sources making it easy to develop, deploy, and manage error-free parsers. Process events at over 1 million per second (EPS) sustained.

This integration is enabled through the Acronis SIEM Connector. The SIEM Connector uses the Acronis agent as a log writer, enabling MSPs to store Acronis Alerts, Events, Activities, and Audit Log on any endpoint in the customer network from where they can be ingested by the SIEM, or send those logs to a syslog server. The Connector supports CEF and JSON log formats.