SIEM Integration

Exporting audit records to your SIEM

Modern Treasury provides detailed audit records that are essential for identifying security incidents, maintaining compliance, and tracking user activity. These audit records can be streamed in real-time to Security Information and Event Management (SIEM) or log management solutions. Audit records are enriched with context helpful for investigations.

Supported Destinations

Below are currently supported destinations. Additionally, data can be sent to a generic HTTP endpoint.

  • Amazon Redshift
  • Amazon S3
  • Coralogix
  • Datadog
  • Dynatrace
  • Elastic
  • Exabeam
  • Honeycomb
  • IBM QRadar
  • LogicMonitor
  • LogRhythm
  • Microsoft Sentinel
  • MongoDB
  • New Relic
  • OpenSearch Service/Serverless
  • Rapid7
  • Splunk
  • Sumo Logic

Supported Objects

We currently support sending audit records. Contact [email protected] if you are interested in adding additional signals.

Setting it up

To learn more about activating this feature, reach out to [email protected]

Integrations typically require routing (e.g. an endpoint URL) and authentication (e.g. an API key) information for your destination.