Exporting audit logs to SIEM systems
You can export audit log files to SIEM systems.
The Yandex Cloud team has prepared a set of solutions for exporting audit logs into several SIEM systems. You can find solution files in the respective sections of the Yandex Cloud Security Solution Library repository.
Yandex Cloud Security Solution Library is a public repo on GitHub with a set of examples and recommendations on how to build a secure infrastructure in Yandex Cloud.
How to choose an architecture
As of today, solutions have been prepared for the following SIEM systems:
All the solutions provide continuous delivery of audit log files from buckets to the SIEM system and also contain correlation rules, dashboards, and preset queries to search for important security events. The Yandex Cloud team supports and regularly updates all the solutions.