SIEM solutions for AWS Control Tower in AWS Marketplace

Cribl Stream is a vendor-agnostic observability pipeline that gives you the flexibility to collect, reduce, enrich, normalize, and route data from any source to any destination within your existing data infrastructure.

Cribl Stream allows customers to:

• Accelerate your migration to the cloud

• Increase the resource utilization from your analytics platform

• Route data from any source to the most cost-effective destination

• Replay data from Amazon Simple Storage Service (Amazon S3) or Amazon Security Lake anytime

• Reduce data volumes while remaining compliant

• Please advise how they seller can update their solution or who they need to reach out to update their solution.
  

Splunk’s integration into AWS Control Tower allows administrators to automatically configure and setup AWS services. Data from AWS CloudTrail, AWS Config, and other sources can be incorporated in to your Splunk deployment using Kinesis Data Firehose and Splunk HTTP Event Collector (HEC). With Splunk Cloud, you can automatically collect data from newly vended AWS Accounts and dashboards and alert compliance to AWS Control Tower Guardrails.

Splunk Cloud features include:

• Compliance reporting with Control Tower Guardrails Dashboards
• Automated AWS Account enrollment into Splunk data collection
• Simplified data collection from AWS CloudTrail, AWS Config, and AWS CloudWatch Logs

Sumo Logic Cloud-Native Machine Data Analytics pulls in critical operational data across services and accounts to give a unified view of AWS environments. Easily navigate from overview dashboards into account, region, availability zone, or service-specific views. Intuitive navigation across logs and metrics data ensures teams can quickly resolve issues, minimize downtime, and improve system availability. The Sumo Logic Continuous Intelligence Platform™ automates the collection, ingestion, and analysis of application, infrastructure, security, and IoT data to derive actionable insights.

Sumo Logic Cloud-Native Machine Data Analytics Service features include:

• Self-service provisioning and the highest level of security certifications available
• Speed issue resolution with unified service visibility and overview dashboards into account, region, availability zone, or service views
• Intuitive navigation to ensure teams can quickly resolve issues, minimize downtime, and improve system availability
• Reduced Time To Value (TTV) with pre-built dashboards specific to AWS services
  

Logz.io AI-Powered ELK-as-a-Service is a cloud-native observability platform providing unified monitoring, troubleshooting, and security for distributed cloud environments. Intelligent log analytics help engineers and businesses resolve incidents faster and simplify cloud security. Logz.io’s analytics and optimization tools help businesses reduce overall logging expenses and identify production and security incidents in real-time.

Logz.io features include:

• Machine learning-based automatic threat detection and aid resolution
• Built-in integration with AWS services
• Real-time alerting of high-priority attacks
• Scheduled, automated reports of threats detected over a predefined timeframe