Stream logs in OCSF format to your preferred security vendors or data lakes with Observability Pipelines

The Open Cybersecurity Schema Framework (OCSF) is an open-source, vendor-neutral schema designed to standardize event formats for security data. It establishes a common taxonomy, simplifying the correlation of Tactics, Techniques, and Procedures (TTPs) and enabling modular schemas. The OCSF model consists of Data Types, Attributes, and Arrays, Event Categories and Classes, and Profiles and Extensions. Datadog Observability Pipelines enables users to easily remap any log from any vendor or source to OCSF format, standardizing security data and supporting taxonomy requirements and security strategies without vendor lock-in. This feature is available in Observability Pipelines with no subscription to Datadog Log Management or Datadog Cloud SIEM.