Cloudflare has announced new integrations with Microsoft Azure Sentinel, Splunk, Datadog, and Sumo Logic to make it easier for businesses to connect and analyze key insights across their infrastructure.
Now, businesses will be able to funnel security insights from Cloudflare directly into their preferred analytics platform to easily analyze in the context of their entire technology stack – without the cost or complexity of building custom integrations.
“CISOs want their security teams to focus on security, not building clunky and costly integrations just to get insights from all of the different applications and tools in their infrastructure,” said Matthew Prince, co-founder and CEO of Cloudflare.
“We saw an opportunity to make that process faster, easier, and cheaper, working with other top analytics platforms to bring added value to our customers. Now, we can give security teams the tools they need to have visibility and added security across the entire stack, even the parts beyond Cloudflare.”
In today’s security environment, CISOs rely on data insights to make critical decisions on how to help prevent, detect and mitigate threats. To get the most out of their security data, many companies want to see that data in the context of insights they’re receiving from other applications within their overall technology stack. To do so, security teams have traditionally had to build and maintain costly, time-consuming, and fragile integrations with their analytics platforms.
With these integrations, security teams can now extend the valuable insights provided by Cloudflare Logs to their entire stack. Cloudflare’s security logs can be ingested directly to Azure Sentinel, Datadog, Splunk, and Sumo Logic within a few clicks.
As a result, security teams can view the insights from Cloudflare in the context of their broader infrastructure. For example, today a customer that catches a SQL injection attack is alerted, and can block additional traffic from the attacker’s IP address directly in Cloudflare’s Web Application Firewall. With an integration to an analytics platform, they could also see all past activity from that IP address across all applications and infrastructure, not just Cloudflare.
With these integrations, Cloudflare is also arming customers with the ability to:
• Get insights from new datasets: By introducing Cloudflare Logs to new datasets including Firewall Events and Network Error Logging, Cloudflare is providing customers with the ability to identify security threats and performance opportunities across their entire network.
• Take logs anywhere with support for any storage destination: Cloudflare has long supported AWS, Azure, and Google Cloud as storage destinations and is now adding the support for any storage destination with the industry standard S3-compatible API. These include Backblaze, DigitalOcean, and more.
• Easily visualize data in a new user interface (UI): With so many new data sets and destinations Cloudflare completely redesigned the Logs UI from the ground up. The new design makes set-up more intuitive to help customers quickly and easily get up and running and simplifies the user experience.