Release Notes - Liste der Änderungen

Build1September, 2023

‎

Version 1.0

Platform version: Acronis Cyber Protect Cloud 23.09 and higher

Overview

The IBM QRadar suite offers integrated products for endpoint security (EDR, XDR, MDR), log management, SIEM and SOAR — all with a common user interface. The integration with IBM QRadar enables MSPs to track Acronis alerts into their SIEM solution, in addition to alerts and incidents coming from other vendors. This streamlines the incident response and ensures better SLAs for the MSP.

The integration is built upon the Acronis SIEM Connector. It allows MSPs to send Acronis alerts to any SIEM solution that can intake data in CEF Syslog format.

What's new

Enable the integration by providing credentials for IBM QRadar (server address, server and client certificates)
Select tenants that should send data to IBM QRadar IBM QRadar SIEM
Review list of Acronis alerts and select ones to push to IBM QRadar IBM QRadar SIEM