Shade SIEM Documentation

Integrating Shade with external security providers for comprehensive documentation and auditing

Overview

Security Information and Event Management (SIEM) systems aggregate and analyze security logs from across an organization's infrastructure to detect threats and maintain compliance. Shade provides comprehensive logging capabilities that can be integrated with your organization's SIEM platform for enterprise-level customers.

Log Export Capabilities

Our audit logging system supports CSV export, allowing you to integrate Shade activity logs with your SIEM solution. Once audit logging is enabled for your workspace, you can export logs from the Enterprise portal and import them into your SIEM platform for centralized security monitoring and analysis. For audit logging support, please contact the Shade team and we would be more than happy to assist setting it up for your workspace.

Available Log Types

Audit Logs

Comprehensive tracking of user activities within your workspace, including:

File and folder operations (create, modify, delete, share)
Permission and access changes
User management actions
Workspace configuration changes

Each audit log entry includes the actor, action, affected resources, timestamp, and IP address.

For more information on audit logging, please refer here Audit Logging

Security Events

Monitoring and logging of security-relevant events, including:

Access attempts (successful and denied)
Authentication events
Permission violations
Unusual activity patterns

System Logs

Infrastructure and application-level logging covering:

Network activity and traffic patterns
System performance and health metrics
Automated alerts and notifications
DDoS protection events

Log Protection & Retention

All logs are protected against tampering and unauthorized access
Logs are retained according to our data management policy and your enterprise agreement
Automated alerting is configured for critical security events
Regular access reviews are conducted and documented

Integration Process

Enable audit logging for your workspace (contact your account representative)
Access the Enterprise portal to view and export logs
Export logs as CSV for the desired time period
Import into your SIEM following your platform's ingestion procedures

Monitoring & Alerting

Shade maintains real-time monitoring through integrated tools including Datadog and PagerDuty, which can be easily integrated into your workspace. While these internal monitoring systems provide immediate incident response for our infrastructure, the exported audit logs allow your security team to incorporate Shade activity into your organization's broader security monitoring strategy.

For questions about SIEM integration or to enable audit logging, please contact your account manager or enterprise support.

PreviousWinFSP is showing an "Already Installed Error"NextAudit Logging

Last updated 1 minute ago

Good afternoon

hashtagOverview

hashtagLog Export Capabilities

hashtagAvailable Log Types

hashtagAudit Logs

hashtagSecurity Events

hashtagSystem Logs

hashtagLog Protection & Retention

hashtagIntegration Process

hashtagMonitoring & Alerting