From b940f8ade107a58ffad93f8c7ec3130957f1538c Mon Sep 17 00:00:00 2001 From: Chris Collins Date: Wed, 24 Apr 2024 14:34:27 -0300 Subject: [PATCH] QRadar ABI Documentation Updates --- README.md | 4 ++-- guide/content/_index.md | 8 ++++---- guide/content/additional-resources.md | 2 +- guide/content/costandlicenses.md | 6 ++++-- guide/content/overview.md | 10 ++++++---- guide/content/post-deployment-steps.md | 2 +- guide/content/pre-deployment-steps.md | 2 +- guide/content/test-deployment.md | 2 +- 8 files changed, 20 insertions(+), 16 deletions(-) diff --git a/README.md b/README.md index c2f1572..bc9b500 100644 --- a/README.md +++ b/README.md @@ -1,3 +1,3 @@ -# IBM Security QRadar Log Insights AWS Built-in +# IBM Security QRadar AWS Built-in -[**IBM Security QRadar Log Insights AWS Built-in Documentation**](https://a.co/7Nhmca6) \ No newline at end of file +[**IBM Security QRadar AWS Built-in Documentation**](https://a.co/7Nhmca6) \ No newline at end of file diff --git a/guide/content/_index.md b/guide/content/_index.md index 23b993e..dfccf70 100644 --- a/guide/content/_index.md +++ b/guide/content/_index.md @@ -1,12 +1,12 @@ --- weight: 1 -title: IBM Security QRadar Log Insights AWS Built-in -description: AWS Built-in Integration with IBM Security QRadar Log Insights +title: IBM Security QRadar AWS Built-in +description: AWS Built-in Integration with IBM Security QRadar --- -# IBM Security QRadar Log Insights AWS Built-in +# IBM Security QRadar AWS Built-in -The purpose of this document is to walk you through the process of utilizing the AWS Built-in program (ABI) program along with QRadar Log Insights to easily setup and configure both CloudTrail and GuardDuty (optionally) in your AWS multi-account structure using AWS Control Tower or AWS Organizations and easily configure the ingestion of that data into QRadar Log Insights. +The purpose of this document is to walk you through the process of utilizing the AWS Built-in program (ABI) program along with QRadar Log Insights or QRadar SIEM (Cloud-NAtive SaaS) to easily setup and configure both CloudTrail and GuardDuty (optionally) in your AWS multi-account structure using AWS Control Tower or AWS Organizations and easily configure the ingestion of that data into QRadar. The AWS Built-in program is a differentiation program that validates Partner solutions which have automated their solution integrations with relevant AWS foundational services like identity, management, security and operations. This program helps customers find and deploy a validated Partner solution that addresses specific customer use cases while providing deep visibility and control of AWS native service integration. diff --git a/guide/content/additional-resources.md b/guide/content/additional-resources.md index 095926a..040ea39 100644 --- a/guide/content/additional-resources.md +++ b/guide/content/additional-resources.md @@ -3,7 +3,7 @@ weight: 11 title: Additional resources description: Additional resources --- - +* [IBM Security QRadar SIEM (Cloud-Native SaaS)]( https://www.ibm.com/products/qradar-cloud-native-siem) * [IBM Security QRadar Log Insights](https://www.ibm.com/products/qradar-log-insights) * [AWS Security Reference Architecture (AWS SRA)](https://docs.aws.amazon.com/prescriptive-guidance/latest/security-reference-architecture/welcome.html) * [Code repository for AWS SRA examples](https://docs.aws.amazon.com/prescriptive-guidance/latest/security-reference-architecture/code-repo.html) diff --git a/guide/content/costandlicenses.md b/guide/content/costandlicenses.md index ee83d14..9e409de 100644 --- a/guide/content/costandlicenses.md +++ b/guide/content/costandlicenses.md @@ -4,9 +4,11 @@ title: Cost and licenses description: Cost of the solution and licenses required. --- -## IBM Security QRadar Log Insights SaaS +## IBM Security QRadar -See [IBM Security QRadar Log Insights SaaS (US)](https://aws.amazon.com/marketplace/pp/prodview-p2llj6q6wlsq4) pricing. +See [IBM Security QRadar SIEM (Cloud-Native SaaS)](https://aws.amazon.com/marketplace/pp/prodview-yjqjuhcxzub7s) pricing. + +See [IBM Security QRadar Log Insights SaaS](https://aws.amazon.com/marketplace/pp/prodview-p2llj6q6wlsq4) pricing. ## CloudTrail diff --git a/guide/content/overview.md b/guide/content/overview.md index b08f41c..0c35d9d 100644 --- a/guide/content/overview.md +++ b/guide/content/overview.md @@ -1,15 +1,17 @@ --- weight: 2 -title: IBM Security QRadar Log Insights ABI Overview -description: An overview of AWS Built-in Integration with IBM Security QRadar Log Insights +title: IBM Security QRadar ABI Overview +description: An overview of AWS Built-in Integration with IBM Security QRadar Log Insights and IBM Security QRadar SIEM (Cloud-Native SaaS) --- -This [AWS Built-in](https://aws.amazon.com/marketplace/solutions/built-in) solution deploys IBM QRadar Integrations for AWS Organizations on the AWS Cloud. It’s for QRadar Log Insights, QRadar On Cloud (QRoC), and QRadar SIEM customers that want to provide AWS CloudTrail and Amazon GuardDuty integrations across multiple AWS accounts. +This [AWS Built-in](https://aws.amazon.com/marketplace/solutions/built-in) solution deploys IBM QRadar Integrations for AWS Organizations on the AWS Cloud. It’s for QRadar Log Insights, QRadar SIEM (Cloud-Native SaaS), QRadar On Cloud (QRoC), and QRadar SIEM customers that want to provide AWS CloudTrail and Amazon GuardDuty integrations across multiple AWS accounts. Deploying this AWS Built-in solution does not guarantee an organization’s compliance with any laws, certifications, policies, or other regulations. ### AWS Marketplace listing -[IBM Security QRadar Log Insights SaaS (US)](https://aws.amazon.com/marketplace/pp/prodview-p2llj6q6wlsq4) +[IBM Security QRadar Log Insights SaaS](https://aws.amazon.com/marketplace/pp/prodview-p2llj6q6wlsq4) + +[IBM Security QRadar SIEM (Cloud-Native SaaS)](https://aws.amazon.com/marketplace/pp/prodview-yjqjuhcxzub7s) **Next**: [Terminologies](/terminologies/index.html) diff --git a/guide/content/post-deployment-steps.md b/guide/content/post-deployment-steps.md index 7cba04c..b1adde1 100644 --- a/guide/content/post-deployment-steps.md +++ b/guide/content/post-deployment-steps.md @@ -4,7 +4,7 @@ title: Postdeployment options description: Postdeployment options --- -Configure QRadar Log Insights to ingest CloudTrail and GuardDuty data. +Configure IBM Security QRadar to ingest CloudTrail and GuardDuty data. **Note**: Configure other options, including Proxy Server, EPS Throttle, or other advanced options, as required for your environment. diff --git a/guide/content/pre-deployment-steps.md b/guide/content/pre-deployment-steps.md index 8125a12..47c9228 100644 --- a/guide/content/pre-deployment-steps.md +++ b/guide/content/pre-deployment-steps.md @@ -6,7 +6,7 @@ description: Predeployment options Before deploying this AWS Built-in solution, complete the following steps: -1. Subscribe to IBM Security QRadar Log Insights SaaS (US) from [AWS Marketplace](https://aws.amazon.com/marketplace/pp/prodview-p2llj6q6wlsq4). +1. Subscribe to [IBM Security QRadar Log Insights SaaS](https://aws.amazon.com/marketplace/pp/prodview-p2llj6q6wlsq4) or or [IBM Security QRadar SIEM (Cloud-Native SaaS)](https://aws.amazon.com/marketplace/pp/prodview-yjqjuhcxzub7s) from AWS Marketplace 2. Set up your AWS account using either AWS Control Tower or AWS Organizations. diff --git a/guide/content/test-deployment.md b/guide/content/test-deployment.md index eb0caca..acf5806 100644 --- a/guide/content/test-deployment.md +++ b/guide/content/test-deployment.md @@ -7,7 +7,7 @@ description: Test the deployment To verify successful ingestion data source configuration, do these steps: 1. Set up the ingestion data sources and wait a few minutes. -2. Open the Data Explorer in QRadar Log Insights and search for the last five minutes. +2. Open the Data Explorer in QRadar and search for the last five minutes. 3. Verify that CloudTrail logs and/or GuardDuty findings are being ingested into the system. **Next**: [Additional resources](/additional-resources/index.html) \ No newline at end of file