Jamf Protect threat events
このページは日本語には対応しておりません。随時翻訳に取り組んでいます。翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。
Goal
Detect when a Jamf Protect threat event has been raised.
Strategy
The Threat Event Stream is a feature of Jamf Protect and Jamf Threat Defense, which detects and remediates endpoint threats, including malicious network communications, device vulnerabilities, malware, and risky apps.
Triage and response
- Investigate the threat event to determine if it is malicious or benign.
- If the alert is benign, consider including the user, host, or IP address in a suppression list. See Best practices for creating detection rules with Datadog Cloud SIEM.