VDI Insider threat Monitoring with SIEM Data Source events export

October 19, 2022

VDI Insider threat Monitoring with SIEM Data Source events export

CLOUD STATUS

    Now Available
Citrix Analytics - Security

VDI Insider threat Monitoring with SIEM Date Source events export{}

You can now leverage the new Data events export workflow to export data source events in addition to the machine-learning generated risk insights events and associated data.

This enables Security and Security operations (SOC) admins to:

  • Correlate data from Citrix Analytics (Citrix in-session VDI events) with organization’s networks, servers, endpoints, SaaS and other digital assets, aggregated on security information and event management (SIEMs)
  • Control what data events flow to SIEMs for storage cost optimization

The data events are delivered to your existing SIEM integrations and data connectors and in parity to what is available on our Self-service event search view.

 

For more information, see Data events exported from Citrix Analytics for Security to your SIEM service.