Skip to main content
Sumo Logic

Cylance

Cylance applies artificial intelligence, algorithmic science, and machine learning to cyber security, and provides visibility to their service through integrations with a central security analytics platform like Sumo Logic. By combining the threat events data from Cylance and other data sources, you can reduce your security risk and improve your overall security posture.

The Sumo Logic App for Cylance allows you to analyze Cylance security events by type, status, and detection method. You can use the App to investigate Cylance-specific events and provide operational visibility to team members without needing to log into Cylance.

Log Types

The Sumo Logic App for Cylance uses two log types:

  1. Threat Events
  2. Threat Classifications

For details on the format and definitions, refer to Cylance documentation.