Cloudflare
Experience the power of CompassOne
Get a DemoIntegrate. Simplify. Protect.
Meet compliance and log retention requirements by collecting and storing Cloudflare logs. Provide the Blackpoint SOC with additional network and security telemetry to assist in threat detection and hunting. Simplify SIEM deployment with a lightweight, powerful platform, without the complexity or cost of traditional tools.
Cloudflare + CompassOne Overview:
01Effortless log collection
Seamlessly capture real-time data from Cloudflare’s edge network using Logpush. Collect HTTP request logs, firewall events, DNS queries, Zero Trust gateway activity, audit logs, and more directly into CompassOne via the HEC integration. Requires a Cloudflare Enterprise plan.
02Satisfy compliance, insurance, and regulatory needs
Record and retain logs required for regulatory standards, cyber insurance policies, and regular audit checks. Quickly retrieve logs with built-in search features to support review processes.
03Predictable and affordable billing
Eliminate unexpected fees and complicated log pricing structures. CompassOne delivers clear, monthly flat-rate billing per log source. No data tiers and no surprises.
04Robust log search
Quickly pinpoint data with time filters, field-level sorting, keyword searches, and advanced queries to streamline incident reviews and investigations.
05Stored in standardized schema
Logs are formatted using the Open Cybersecurity Schema Framework (OCSF), enabling smooth integration with other tools for parsing, visualization, or analysis.
06Complementary and extended storage
Get 12 months of Cloudflare log storage at no additional cost. Extended retention options are available.
07Simple setup
Create a new Cloudflare integration in the CompassOne portal, configure a Logpush job in your Cloudflare dashboard to push logs to the provided URL, and be operational within minutes.