Mimecast is pleased to announce the general availability of the Data Logging Application Programming Interface (API) and Splunk application. The API allows customers and partners to integrate data to their security information and event management (SIEM) or data analytics platform of choice to help identify current email vulnerabilities in their organization and defend against future cyber threats.
SIEM platforms have grown quickly as organizations seek to ease compliance reporting, improve incident detection and more efficiently remediate events. Splunk is one of the most popular and fastest growing SIEM platforms, allowing users to quickly add new data and drive value with numerous applications accessible from SplunkBase. Using the Data Logging API, Mimecast created an application to give organizations that use Splunk a seamless way to add and analyze email information.
Benefits for Customers and Partners
- Consolidate and centralize security investigations and reporting, making it more efficient for the security team.
- Improve threat detection and investigations by integrating Mimecast logged data with the data from other security systems and IT infrastructure within a single security monitoring system such as Splunk or any other SIEM system.
- ‘Out of the box’ Splunk reports for email, the most widely used attack vector. Easily index and visualize Mimecast data with no development and little Splunk experience required. Getting Mimecast data into Splunk is as easy as installing the application and filling out a short web form. No coding or scripting is required.
Mimecast customers can download the application and begin using the Splunk application to manage email data. For those that want to integrate Mimecast data without Splunk, the Data Logging API provides an open standard to combine email data with other information. For more details, customers and partners can access the Mimecaster Central Developer Community at https://community.mimecast.com/community/developer.