elasticmachine
commented
4 months ago Pinging @elastic/security-service-integrations (Team:Security-Service Integrations)
Open jvalente-salemstate opened 4 months ago
elasticmachine
commented
4 months ago Pinging @elastic/security-service-integrations (Team:Security-Service Integrations)
The Tenable.io API exposes an Audit User Activity endpoint. This is not being collected by the integration.
Adding a data stream for this would allow retention and correlation of audit logs, as well as opportunities for security monitoring and alerting of activity within Tenable.io