--- slug: /cse title: Cloud SIEM keywords: - cloud siem - cse canonical: https://www.sumologic.com/help/docs/cse/ --- import useBaseUrl from '@docusaurus/useBaseUrl'; Cloud SIEM is a cloud-based security information and event management (SIEM) system that provides the following functionality: * Collection of log and event data from your infrastructure and applications, on-premise and in-cloud. * Correlation of the collected data to reduce the volume of info you need to sift through to investigate issues. * A rich interface that analysts and admins can use to investigate security issues and administer Cloud SIEM itself. * Integration with the Sumo Logic core platform. :::training Sumo Logic Academy import SumoAcademy from '../reuse/sumo-logic-academy.md'; * **Self-paced**: * [Essential Cloud SIEM Skills for SOC Analysts](https://learn.sumologic.com/path/sumo-security/essential-cloud-siem-skills-for-soc-analysts) * [Cloud SIEM Training Self-Paced](https://learn.sumologic.com/path/sumo-security/cloud-siem-training-self-paced) * **Instructor-led virtual classes**: * [Workshops: Essential Cloud SIEM Skills for SOC Analysts](https://www.sumologic.com/learn/training?_workshops=essential-cloud-siem-skills-for-soc-analysts#section-2) * [Certifications: Cloud SIEM](https://www.sumologic.com/learn/training?_certifications=cloud-siem#section-2) * [Workshops: Automation Workshop](https://www.sumologic.com/learn/training?_workshops=automation-workshop#section-2) ::: This section contains the following topics:

Shield on a cloud icon

Get Started with Cloud SIEM

Learn how to start using Cloud SIEM for threat hunting.

Shield on a cloud icon

Records, Signals, Entities, and Insights

Learn about Insight generation, working with Entities, and how to query Cloud SIEM Records.

Shield on a cloud icon

Ingestion

Learn how to configure ingestion for supported products and services.

Shield on a cloud icon

Rules

Learn how to write rules, rules syntax, and Cloud SIEM built-in rules.

Shield on a cloud icon

Schema

Learn about Cloud SIEM Schema v3, schema attributes, and the Record processing pipeline.

Shield on a cloud icon

Sensors

Cloud SIEM Sensors collect log and event data from your infrastructure and applications.

Shield on a cloud icon

Integrations

Cloud SIEM integration with Sumo Logic and threat intel sources, and leveraging the Cloud SIEM Insight Enrichment Server.

Shield on a cloud icon

Match Lists and Suppressed Lists

Learn about creating a Match list and their usage in rules.

Shield on a cloud icon

Automation

Learn how to configure automations to create notifications and enrichments in Cloud SIEM.

Shield on a cloud icon

Administration

Learn how to set up user accounts and roles, Actions, Network Blocks, custom Insight status and sub-resolutions, and more.

Shield on a cloud icon

Troubleshoot

Learn how to troubleshoot problems with Cloud SIEM.