Integrations

Microsoft Sentinel is a scalable, cloud-native security information and event management (SIEM) that delivers a comprehensive solution for SIEM and security orchestration, automation, and response (SOAR). Microsoft Sentinel provides cyberthreat detection, investigation, and response capabilities and also natively provides Azure services such as Log Analytics and Logic Apps.

The Illumio Sentinel Solution provides the integration between Microsoft Sentinel and Illumio's Zero Trust Segmentation platform and provides the following key benefits:

Illumio Sentinel Solution includes a data connector that pulls audit events and traffic flow logs into Sentinel. Within Sentinel, the Illumio solution contains three new Sentinel workbooks: Auditable Events Workbook, Flow Data Workbook, and Workload Stats Workbook. These new workbooks allow network and security teams to centralize security, as well as work with enriched data for troubleshooting and use this data to meet their audit and compliance needs. This solution is now available on the Microsoft Azure Marketplace and Sentinel Content Hub.