The Janrain SIEM Integration provides clients a robust method to feed event data from the Janrain Identity Cloud® into their Security Information and Event Management (SIEM) systems, log management platforms and data analytics solutions. Support for open standard data formats and a variety of real-time and fast-batch data transfer methods allow for easy integration with widely used enterprise products like IBM QRadar, Splunk Enterprise Security, ArcSight ESM, LogRhythm, McAfee Enterprise Security Manager and others.
Security plays an increasingly important role for enterprises, not just to protect their internal systems and company data but also to safeguard the data that their customers trust them with as part of their personal digital identities. According to the US Consumer Privacy Index, 89% of online consumers would avoid doing business with companies that do not protect their privacy. Today, most enterprises use a dedicated Security Information and Event Management (SIEM) solution to support the early detection of attacks and data breaches and to collect, store, investigate and report on event data for incident response, forensics and regulatory compliance.
As a Customer Identity and Access Management (CIAM) platform, the Janrain Identity Cloud represents a key interface between a company's IT and business organizations, and the customers that the business delivers value to. The Janrain Identity Cloud already monitors for threats in real-time and supports an organization with a wide variety of security and compliance-ready features and capabilities. In addition, the Janrain SIEM Integration gives companies the ability to deliver a wide variety of CIAM event data points into their own monitoring and alerting infrastructure and use their respective SIEM platform for centralized security analytics, alerting and incident response. This provides enterprises two layers of security monitoring – one by Janrain and one by the client themselves – for a holistic approach to cybersecurity that helps teams to identify and analyze issues quickly and reduce mean time to resolution (MTTR). Clients will be able to access data on account related activities such as registration, login/logout success and failed attempts, profile modifications such as password resets, password changes, email changes and back-end configuration changes of the Janrain platform itself.
The Janrain SIEM Integration can deliver log and event data in two different, standardized formats that are supported by all major SIEM and log management systems, allowing for out-of-the-box parsing and analysis: Common Event Format (CEF) and Log Event Extended Format (LEEF). The data can be transmitted via a webhook in near real-time or in scheduled batches via an intermediary secure FTP server.
The Janrain SIEM Integration allows clients to fully utilize the power of their SIEM solution and easily track the registration and login events associated with their metadata, including IP addresses, registration, login, authorization, user behavior analytics and other Janrain data across all Janrain-connected web sites, mobile applications and identity integrations.