User Community Feedback

Submitted ideas will be evaluated by our product teams for upcoming releases and will be responded to so you know where things stand. For product support, please use the community forums or contact TAC.

NOTE: All Cisco employees & Channel Partners must enter Ideas through this Ideas Portal.

Data Loss Prevention (DLP) Enhancement Requirements

Currently our DLP Team mines our Skype chats for keyword detections. A database query is run every 5 minutes to gather all chat messages sent during the period. Pattern matching is run on the queried data and the conversations/messages that match are sent to Qradar. QRadar reports are generated daily for review.

The content of the chat messages we review includes:

Sender

Recipient(s)

Message

TimeDate

We need a mechanism to extract chat messages from webex and run keywords or pattern matching against them automatically without user intervention. Matches need to be able to be fed into a SIEM for reporting purposes.

  • Jan-Ronald Agay
  • Sep 3 2021
  • Already exists
Control Hub & Administration: Compliance

Related ideas

 
Terms of Service Privacy Policy Cookie Policy Trademarks Feedback

©2020 Cisco and/or its affiliates. All rights reserved.