DSM for Qradar
The DSM will enable the IBM Qradar SIEM to parse logs from the Sophos UTM.
Hi Peter, a DSM is provided with Sophos Astaro Security Gateway as you probably know. All you need is to write an extension LSX to normalize the unknown UTM events from the SG. Maybe I gonna write one if I can find some time :-)