Gem

Gem is a Alert Source integration. The Dropzone platform creates Investigations based on alerts from Alert Sources.

Gem is a SIEM focusing on Cloud Detection and Response (CDR).

Create an API Key

Dropzone requires a Gem Client ID and Client Secret.

To obtain these, follow the instructions available on Gem's documentation site for creating a Client ID and Client Secret.

Enable Gem

To enable the Alert Source integration, do the following:

  • Navigate to your Dropzone AI tenant home page e.g. https://mycompany.dropzone.app

  • In the bottom left hand corner, click Settings > Integrations

Integrations Dropdown
  • Click "Available"

Click Available
  • In the Search bar, search Gem, then click "Configure"

The Gem Alert Tile
  • Input your Gem server domain (e.g. app.gem.security, eu-west-1.app.gem.security)

  • Input the Client ID and Client Secret you created in the Gem interface

  • Click "Comment Investigation Results to ticket" if you want Dropzone to push investigation results back to Gem

  • Click "Test & Save"

The Gem Alert Source Configuration

If you have any errors or questions, engage your Dropzone AI support representative.

Last updated

Was this helpful?