Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Current »

Currently, our SIEM support relies on allowing the SIEM server to query our Database.


Your SOC team should build their queries based on these tables:


1.dbo.auditing -Ethical Wall violation
2.dbo.dlp_rules_log - DLP violations
3. dbo.security_auditing - general actions that are not ethical wall or DLP
  • No labels