📄️ Alert Channels
Lacework combines alert channels and alert rules to provide a flexible method for routing alerts. For alert channels (outgoing integrations), you define information about where to send alerts, such as to Jira or Slack. For alert rules, you define information about which alert types to send, such as critical and high severity compliance alerts. This two-part method provides the flexibility to define multiple channels and multiple rules and then have each rule use the channels you specify.
📄️ Alert Rules
You can have route alerts generated by policy assessments using alert rules. Alert rules specify the properties that generate notifications, such as a minimum alert severity or category. Alert rules combine those settings with an alert channel, which determines the destination to which the alert is delivered, such as a group email address.
📄️ Amazon EventBridge Alert Channel
This topic describes how you configure an Amazon EventBridge event bus as a Lacework alert channel
📄️ Amazon Security Lake Alert Channel
This topic describes how to integrate Lacework with Amazon Security Lake, to provide real-time security findings
📄️ AWS Security Hub Alert Channel
This topic describes how to integrate Lacework with Amazon Security Hub to manage all your AWS posture and compliance events.
📄️ Azure DevOps Alert Channel
This topic describes how to configure Azure DevOps to receive alerts from Lacework
📄️ Cisco Webex Team Alert Channel
This topic describes how to configure Cisco Webex Team alert channel, to forward Lacework alerts
📄️ Datadog Alert Channel
This topic describes how to configure a Lacework Alert Channel to send notifications to Datadog
📄️ Elastic/ELK Stack Alert Channel
This topic describes how to create a Lacework alert channel to send events to Elastic/ELK
📄️ Email Alert Channel
This topic describes how to configure Lacework to send alert summaries and reports to and email addresses using an email alert channel
📄️ Google Cloud Pub/Sub Alert Channel
This topic describes how to configure a Lacework alert channel to send event to Google Cloud Pub/Sub
📄️ Google Eventarc Alert Channel
This topic describes how to configure Lacework Alert Channel to forward events to Google Eventarc
📄️ IBM QRadar Alert Channel
This topic describes how to configure Lacework to create and send alerts to IBM QRradar
📄️ Jira Alert Channel
This topic describes how you configure a Lacework alert channel with Jira to send alert notification to a Jira account
📄️ Microsoft Teams Alert Channel
This topic describes how to configure a Lacework alert channel to forward alerts to a Microsoft Teams channel using an incoming webhook
📄️ New Relic Alert Channel
This topic describes how you configure Lacework to forward alert notifications to New Relic using the Insights API
📄️ Opsgenie Alert Channel
This topic describes how to configure a Lacework alert channel to send notifications to Opsgenie
📄️ PagerDuty Alert Channel
This topic describes how to configure a Lacework alert channel to send events to PagerDuty
📄️ ServiceNow Alert Channel
This topic describes how to configure Lacework alert channel to forward alerts to ServiceNow, using the ServiceNow REST API
📄️ Slack Alert Channel
This topic describes how you configure Lacework to send notifications to Slack through an alert channel
📄️ Splunk Alert Channel
This topic describes how you configure Lacework Alert Channel to forward alerts to Splunk using an HTTP Event Collector
📄️ Sumo Logic Alert Channel
This topic walks you through the steps to create a Lacework alert channel to forward alerts to Sumo Logic customer app endpoint
📄️ VictorOps Alert Channel
This topic describes how you configure Lacework Alert Channel to forward alerts to designated VictorOps group using a VictorOps REST endpoint
📄️ Custom Webhook Alert Channel
This topic describes how to configure Lacework to create a custom webhook to receive alert notifications from an alert channel, and forward alerts to another application