Unified security monitoring and threat detection inside AWS and beyond
Gain rapid insights into the severity and frequency of GuardDuty findings for more rapid and effective remediation efforts.
Simply click on any AWS GuardDuty finding from the Sumo Logic dashboard and instantly be routed to your AWS EC2 environment for rapid remediation efforts.
GuardDuty findings and raw log data can easily be filtered by "tags" for more granular search and detailed analysis. Search "Tag" types include User ID, Region, VPC, subnet, instance ID, ports, IPs, Principle ID, Access Key ID, etc.
Sumo Logic provides a single pane of glass to reduce the complexity of managing multiple environments, with pre-configured, user friendly and customizable dashboards that take GuardDuty’s linear data format and layers-on rich graphical reporting and depictions of trends over time.
Complete visibility into the health and protection of your AWS environment through pre-built GuardDuty dashboards. Insightful graphic representation of the overall health of your deployment, to quickly spot, analyze and inspect any indications of non-standard security events.
The Sumo Logic GuardDuty App adds additional sources of analytics for deeper and wider visibility in the AWS environment and context across the organization including full stack visibility into application/infra logs, Application/Elastic Load Balancer (ALB/ELB) performance, and supplemental threat intel provided by Crowdstrike for management of resources outside of AWS.
