Integrating Sekoia SOC with Delinea Platform

Third-party vendors create and maintain this integration. Delinea does not guarantee that the integration will work properly or that it respects Delinea product limitations. Delinea has not reviewed this integration and Delinea Support staff can only assist with the Delinea side of setup.

The integration between Sekoia SOC and the Delinea Platform enables the ingestion and normalization of audit events generated by the Delinea Platform into the Sekoia SOC environment. This integration collects privileged access activity, configuration changes, administrative operations, and system events. Once ingested, Delinea audit events are parsed into structured fields, allowing security teams to correlate user behavior, detect suspicious operations, and create detection rules or threat-hunting queries within the Sekoia platform. To learn more abou Delinea Platform Audit Logs, go to the Sekoia documentation.

This integration is built using open-source components maintained by Sekoia.io and available in its public GitHub repositories:

Parser (log format and normalization): https://github.com/SEKOIA-IO/intake-formats/tree/main/Delinea
Connector (automation and data ingestion logic): https://github.com/SEKOIA-IO/automation-library/tree/main/Delinea

These repositories provide full transparency into how Delinea audit logs are collected and processed, and they allow customers to review, customize, or extend the integration as needed.