Holistic Approach to Strong Security w/Logsign Unified SO Platform
Improve Cyber Resilience, Reduce Risks and Avoid Chaos with Logsign Unified Security Operations Platform.
Logsign Unified Security Operations Platform integration with Acronis Cyber Protect Cloud
This integration helps MSSPs to provide enhanced security data collection and centralized response for their Logsign Unified SO Platform & Acronis Cyber Cloud mutual customers. From the SIEM - data collection perspective, using Logsign's pre-defined integrations to create drill-down analysis, monitor and report in real-time will be easier. In the meantime, they can also create specific alerts and trigger them to centralise the incidents. From the response perspective, with the help of centralized incidents, the response can be given with automation and orchestration. Action rules of Logsign help to create a new action procedure and/or security analysts can take the centralised incidents into account and orchestrate the team.
This integration is enabled through the Acronis SIEM Connector. The SIEM Connector uses the Acronis agent as a log writer, enabling MSPs to store Acronis Alerts, Events, Activities, and Audit Log on any endpoint in the customer network from where they can be ingested by the SIEM, or send those logs to a syslog server. The Connector supports CEF and JSON log formats.