Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Juniper Security Director Cloud Insights Overview

Juniper Security Director Cloud Insights enhances the automation of security operations. This application enables you to proactively respond to security incidents recorded by Juniper Networks and third-party security solutions.

The application presents incidents concerning a specific host or incidents influenced by a known threat source across various security components. These incidents offer immediate insights into the scale of an assault. The application includes a feature that corroborates incidents with the intelligence provided by your chosen threat intelligence service. Once confirmed, you can execute both preventive measures and corrective actions.

Juniper Security Director Cloud Insights Benefits

  • Reduces the number of alerts across disparate security solutions.

  • Quickly reacts to active threats with one-click mitigation.

  • Improves the Security Operations Center (SOC) team's ability to focus on high-priority threats.

Juniper Security Director Cloud Insights Architecture

Figure 1: Juniper Security Director Cloud Insights Architecture Juniper Security Director Cloud Insights Architecture

The Juniper Security Director Cloud Insights collector gathers logs from SRX Series Firewalls as well as logs from third-party solutions. Some functions of Juniper Security Director Cloud leverage these SRX Series Firewalls logs. This helps you monitor and respond to incidents in a way that aligns with your specific network needs.

SRX Series Firewalls logs are transmitted to Juniper Security Director Cloud Insights from Juniper® Secure Edge or Juniper Security Director Cloud-managed SRX Series Firewalls, along with data from logs of various third-party security solutions. The security application log correlation by Juniper Security Director Cloud Insights highlights key security incidents that are crucial to your organization. Juniper Security Director Cloud consolidates all incoming security event data from diverse sources, offering a comprehensive overview of those events.

Juniper Security Director Cloud Insights supports the following log collector types:

  • Cloud collector—Collects SRX Series Firewalls logs from Juniper Secure Edge or Juniper Security Director Cloud-managed SRX Series Firewalls.

  • On-premises collector—Collects logs from third-party sources, such as McAfee. You can redirect the output from third-party solutions to the on-premises collector. The logs are then filtered and sent to Juniper Security Director Cloud.

    To deploy the Juniper Security Director Cloud Insights on-premises collector, see Deploy and Configure Security Director Cloud Insights On-premises Collector.