I find your posts very interesting and helpful. Thanks. At Sysdig, we do correlate live cloud events (and not just cloud posture findings) to container events. We extract live detections from cloud audit logs, Okta logs and so on, and a lot of our energy is in correlating across cloud control plane events, identity behavioral events (in the cloud) and workload events. Would love to share what we do as and when it makes sense.
Hey Suresh - always happy to do this, I asked about it at Reinforce so I think it may just be the specific nature of the event I'm looking for! Happy to take a look and correct if needed!
James,
I find your posts very interesting and helpful. Thanks. At Sysdig, we do correlate live cloud events (and not just cloud posture findings) to container events. We extract live detections from cloud audit logs, Okta logs and so on, and a lot of our energy is in correlating across cloud control plane events, identity behavioral events (in the cloud) and workload events. Would love to share what we do as and when it makes sense.
Hey Suresh - always happy to do this, I asked about it at Reinforce so I think it may just be the specific nature of the event I'm looking for! Happy to take a look and correct if needed!