Automate remediation of threats detected by Datadog Cloud SIEM
Datadog Cloud SIEM enables users to easily triage and alert on threats as they occur. By using webhooks integration, users can automate responses to common threats detected across their environments. Webhooks are HTTP callbacks that send messages to applications whenever a certain condition is met, allowing for the creation of simple automated remediation workflows that neutralize threats in real-time. Datadog's webhook integration makes it easy to set up webhook messages that deliver payloads to designated services when a Detection Rule is broken. Examples of using Datadog with webhooks to automate security responses include deleting misconfigured security groups, banning suspicious IP addresses, and auto-remediating application abuse and fraud.
Company
Datadog
Date published
June 16, 2021
Author(s)
Justin Massey, Jonathan Epstein
Word count
864
Language
English
Hacker News points
None found.