Get prebuilt dashboards to centralize and analyze the security of your AWS GuardDuty environments
Why the Sumo Logic App for AWS GuardDuty?
Rapid Security Insights
Gain rapid insights into the severity and frequency of GuardDuty findings for quicker, more effective troubleshooting.
Click to Fix
Click on any AWS GuardDuty finding from the Sumo Logic dashboard to go instantly to your AWS EC2 environment for rapid remediation efforts.
Powerful Search Tools
GuardDuty findings and log data can be filtered by tags (like User ID, Region, VPC, subnet, ports, IPs, etc.) for granular search and detailed analysis.
Manage Any AWS GuardDuty Environment With Ease
Quickly gain value and reduce the complexity of managing security for all your AWS GuardDuty environments (and beyond). The Sumo Logic app provides pre-built dashboards that leverage GuardDuty’s findings data and integrates it with additional sources of analytics.
The Sumo Logic App for AWS GuardDuty also incorporates industry-leading threat intel beyond the AWS environment for a more holistic and centralized view of your security and compliance posture with industry standards like PCI, HIPAA, SOC 2, and soon GDPR.
Use Pre-Built Dashboards to Manage, Troubleshoot, and Secure Your Data
Sumo Logic provides a single pane of glass to reduce the complexity of managing multiple environments. Take advantage of pre-configured, user-friendly, and customizable dashboards that take GuardDuty’s linear data format and layer on rich graphical reporting and depictions of trends over time.
With pre-built dashboards, you can quickly leverage and centralize visibility into the security of your AWS GuardDuty environments. The Sumo Logic GuardDuty dashboards enhance and enrich the GuardDuty analytics feeds with rich graphical depictions of any security findings, trends in each of the AWS environments, identification of outliers, and other relevant event data over time to help in simplifying the management of security and compliance efforts.
Rapid and Intelligent Threat Detection
Get visibility into the health and protection of your AWS environment through pre-built GuardDuty dashboards. View insightful graphic representations of the overall health of your deployment in order to spot, inspect, and any non-standard security events.
Features of the Sumo Logic App for AWS GuardDuty include:
- Prioritize and customize GuardDuty “findings” based on severity and risk.
- Monitor trends over time to predict potential events before they occur.
- Simplify management of your AWS environment with simple, “out-of-the box” dashboards that enrich and enhance GuardDuty analytics
- Simply “click to fix” with instant routing to your EC2 environment for troubleshooting efforts.
- Use GuardDuty search tags for more granular investigation of events and findings, such as the IP address and geo-location of the attacker.
Value-Added Context Beyond GuardDuty
The Sumo Logic App for GuardDuty adds additional sources of analytics for deeper, wider visibility in the AWS environment and context across the organization. Advanced analytics from Sumo Logic bring full stack visibility into application/infra logs, Application/Elastic Load Balancer (ALB/ELB) performance, and supplemental threat intel provided by Crowdstrike for management of resources outside of AWS.
Other Sumo Apps
Sumo Logic Apps help you quickly gain visibility into your applications and infrastructure by providing preconfigured searches and dashboards for your most popular data sources.See the full list