marketplace
Netskope - Application Events
Netskope - Connection Events
Netskope - Incident Events
Netskope - Infrastructure Events
Netskope - Network Events
Overview
Netskope is a cloud security platform that provides security solutions to manage and secure cloud-based applications and data. Several features include cloud access security broker (CASB), data loss prevention (DLP), threat protection, and web security.
This integration monitors alerts triggered in Netskope as well as events generated for infrastructure, network, connection, audit, application, and incident. It also helps users visualize the alerts and events generated in Netskope by using various data-rich dashboards available out-of-the-box.
This integration includes the following Datadog Cloud SIEM detection rules for enhanced monitoring and security:
- Netskope received DLP alerts for multiple blocked actions within one hour
- Netskope observed large file transfer activity
- Netskope detected low confidence cloud application interaction
- Netskope detected multiple policy violations by a single user
Note: To use the out-of-the-box detection rules, the relevant integration must be installed in Datadog, and Cloud SIEM must be enabled.
Support
For support or feature requests, contact Crest Data through the following channels:
This application is made available through the Datadog Marketplace and is supported by a Datadog Technology Partner. To use it, purchase this application in the Marketplace.
