Thread Info
  • State Verified Answer
  • Replies 5 replies
  • Subscribers 10 subscribers
  • Views 3513 views
  • Users 0 members are here
Options
Suggested

how to get a Demo on 3rd Party Integrations in central?

LHerzog

We're thinking of using a supported Vendor 3rd Party integration for a 3rd party appliance not yet bought into Sophos Central

https://docs.sophos.com/central/customer/help/en-us/ManageYourProducts/ThreatAnalysisCenter/Integrations/OverviewProducts/index.html

Currently we do not have any other vendor integrated into our Central data pool. How can we get a short demonstration on how the data integration looks like?

As far as I understood, it's mostly based on syslog. Can this data be used by MDR teams?



Added tags
[edited by: Gladys at 5:58 AM (GMT -7) on 28 Apr 2025]
  • 0

    HI 

    Thanks for reaching out to the community.

    We have a video that shows a demo of how Sophos Central collects data from different data sources/Integrations and shows it under a single investigation/case when an incident occurs. Demo: Sophos MDR Attack Simulation

    To answer your other query, yes, all the data from the integrations is uploaded to the Sophos data lake, and that can be used by the admins or the MDR team for threat investigations. Sophos also applies AI and ML models to the data lake data and generates a detection under the threat analysis center if any suspicious activity is noticed.

    Hope this helps!

    In case you have any further questions related to integration or the data lake, let me know. I will try to clear your doubts.