I'm a new Security Analyst. I'm learning how to navigate Sumo Logic My question is... how do I parse my SentinelOne data when I am only collecting the data and it is not supported under the apps location within Sumo. Following the tutorials doesn't help me because it isn't there... Is there any work around for me to create logs, alerts, and dashboards for Sentinel one? We are receiving the data but how do I make sense of it?
Please sign in to leave a comment.