SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Story image
Cloudflare integrates with top data analytics platforms
Thu, 24th Jun 2021
FYI, this story is more than a year old

Cloudflare has announced new collaborations with analytics partners, with the intention of helping customers solve security and performance challenges.

Cloudflare's new integrations include Microsoft Azure Sentinel, Splunk, Datadog, and Sumo Logic, and focus on making it easier for businesses to connect and analyse key insights across their infrastructure.

Now businesses are able to funnel security insights from Cloudflare directly into their preferred analytics platform to analyse in the context of their entire technology stack, without the need to build custom integrations.

According to Cloudflare, in today's security environment, CISOs rely on data insights to make critical decisions on how to help prevent, detect and mitigate threats.

To get the most out of their security data, many companies want to see that data in the context of insights they're receiving from other applications within their overall technology stack.

With these integrations, security teams can now extend the valuable insights provided by Cloudflare Logs to their entire stack, the company states.

Cloudflare's security logs can be ingested directly to Azure Sentinel, Datadog, Splunk, and Sumo Logic within a few clicks. As a result, security teams can view the insights from Cloudflare in the context of their broader infrastructure.

For example, a customer that catches a SQL injection attack is alerted, and can block additional traffic from the attacker's IP address directly in Cloudflare's Web Application Firewall.

With an integration to an analytics platform, they could also see all past activity from that IP address across all applications and infrastructure, not just Cloudflare.

According to Cloudflare, the integrations also provide the ability to:

  • Get insights from new datasets: By introducing Cloudflare Logs to new datasets including Firewall Events and Network Error Logging, Cloudflare is providing customers with the ability to identify security threats and performance opportunities across their entire network.
  • Take logs anywhere with support for any storage destination: Cloudflare has long supported AWS, Azure, and Google Cloud as storage destinations and is now adding the support for any storage destination with the industry standard S3-compatible API. These include Backblaze, DigitalOcean, and more.
  • Visualise data in a new user interface (UI): With so many new data sets and destinations Cloudflare completely redesigned the Logs UI from the ground up. The new design makes set-up more intuitive to help customers quickly and easily get up and running and simplifies the user experience.

Cloudflare co-founder and CEO Matthew Prince says, "CISOs want their security teams to focus on security, not building clunky and costly integrations just to get insights from all of the different applications and tools in their infrastructure.

"We saw an opportunity to make that process faster, easier, and cheaper, working with other top analytics platforms to bring added value to our customers.

"Now, we can give security teams the tools they need to have visibility and added security across the entire stack, even the parts beyond Cloudflare."