Integrations
CloudGuard operates with a number of third-party systems upstream (sources of asset and compliance findings information) and downstream (log collectors, ticketing and messaging systems):
Cloud Security Posture Providers
|
Tenable.io provides information about vulnerabilities in cloud environments. It can be configured to provide this information to CloudGuard, where it can be seen on the Events page. |
Cloud Security Threat Detection
|
Amazon GuardDuty is an Amazon threat-detection service that continuously monitors logs for signs of malicious activity, infected hosts, and unauthorized behavior in your AWS Amazon® Web Services. Public cloud platform that offers global compute, storage, database, application and other cloud services. account. See Integrating Amazon GuardDuty Findings with CloudGuard |
Communication and Collaboration Systems
Issue Management Systems
|
Jira is a platform that combines issue collection and agile project management capabilities. You can configure CloudGuard to send Posture findings to Jira with an HTTP endpoint. |
|
PagerDuty is a SaaS-based incident response system. You can configure CloudGuard to send Posture findings to PagerDuty, from where they can be managed as incidents. |
|
ServiceNow is a SaaS incident response system. You can configure CloudGuard to send alerts to ServiceNow, with a custom application, available in the ServiceNow Store. See Sending Alerts to ServiceNow and Use CloudGuard as a ServiceNow Provider |
Log Collectors
Security Management Systems
|
GCP Security Command Center - The Google Cloud Security Command Center is a GCP Google® Cloud Platform - a suite of cloud computing services that runs on the same infrastructure that Google uses internally for its end-user products, such as Google Search, Gmail, Google Drive, and YouTube. service for security management and data risk assessment. It aggregates information security issues and risks on your GCP resources and gives centralized visibility and control of your cloud data and services. You can configure CloudGuard to send Compliance findings to the Command Center. See Configure CloudGuard as a source for the Google Cloud Security Command Center (CSCC) |
|
AWS Security Hub - The AWS Security Hub is an AWS service on which you can centrally see and manage security alerts from your cloud resources, and automate compliance checks. You can configure CloudGuard to send findings to the hub, from where they can be seen and managed. |
|
Microsoft Defender for Cloud - Microsoft solution for cloud security posture management (CSPM) and cloud workload protection (CWP) that finds weak spots across your cloud configuration, helps strengthen the overall security posture of your environment, and can protect workloads across multi-cloud and hybrid environments from evolving threats. You can configure CloudGuard to send Compliance findings to the Defender. |