Gem

Last updated 3 days ago

Was this helpful?

Gem is a Alert Source integration. The Dropzone platform creates Investigations based on alerts from Alert Sources.

Gem is a SIEM focusing on Cloud Detection and Response (CDR).

Create an API Key

Dropzone requires a Gem Client ID and Client Secret.

To obtain these, follow the instructions available on Gem's for creating a Client ID and Client Secret.

To enable the Alert Source integration, do the following:

Navigate to your Dropzone AI tenant home page e.g. https://mycompany.dropzone.app
In the bottom left hand corner, click Settings > Integrations

Input your Gem server domain (e.g. app.gem.security, eu-west-1.app.gem.security)
Input the Client ID and Client Secret you created in the Gem interface
Click "Comment Investigation Results to ticket" if you want Dropzone to push investigation results back to Gem
Click "Test & Save"

If you have any errors or questions, engage your Dropzone AI support representative.

Last updated 3 days ago

Was this helpful?