• ESET PROTECT, including its Detection and Response capabilities, integrates seamlessly with Splunk SIEM.
• This integration empowers security admins to benefit from endpoint protection data correlated with other security insights in Splunk, facilitating rapid investigation and automated workflows.
• Easier aggregation of ESET detection events with broader security telemetry within Splunk ensures holistic insight and a way for security teams to do more with fewer tools and less manual work.

BRATISLAVA — April 28, 2025 — ESET, a global leader in cybersecurity solutions, today announced a new major integration of its ESET Endpoint Management Platform (ESET PROTECT) with Splunk, a leading security information and event management (SIEM) platform.

Security professionals often find themselves stretched thin due to a general lack of resources, including talent. This presents opportunities for incomplete visibility and delayed response, which can be devastating in an era of burgeoning cyber-attacks. Thus, there is a demand for simpler workflows and enhanced efficiencies. This though requires a different approach, which is why integrations have become critical.

At ESET, we’ve already integrated our ESET PROTECT Platform or its modules with multiple solutions such as Microsoft Sentinel, Stellar Cyber, or IBM QRadar, and we are continuing this journey with the Splunk SIEM.

Splunk is widely used for IT operations, security, and business analytics, helping organizations gain valuable insights from their data. It is designed for searching, monitoring, and analyzing machine-generated big data via a web-style interface. It captures, indexes, and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards, and visualizations. It supports a wide range of data sources and provides tools for data ingestion, processing, and visualization, making it a versatile solution for managing and interpreting large volumes of data efficiently.

The ESET PROTECT Platform, including its Detection and Response capabilities (ESET Inspect), integrates seamlessly with Splunk SIEM, enabling organizations to consolidate security alerts and telemetry into a single pane of glass by:

• Streaming ESET endpoint alerts directly to Splunk in real-time, allowing for immediate correlation with firewall logs, IDS/IPS data, and user activities.
• Splunk can also query ESET for deeper endpoint insights and response actions. ESET can leverage Splunk’s advanced analytics and customized detection rules.
• Splunk’s alerting and workflow capabilities can automatically trigger containment and remediation actions.

To achieve all this, ESET is supporting two approaches to data sharing:

• Syslog-based integration – ESET PROTECT can export syslog-format events to Splunk.
• API-based integration – ESET provides REST APIs allowing Splunk to query and pull relevant security events and telemetry directly.

Thanks to our varied data sharing methods, we can cater to diverse client architectures, leaving no one behind when it comes to their security needs or wants. Businesses of any size can benefit here, achieving a prevention-first security posture with a streamlined approach to threat response.

“At ESET, we are committed to improving our customers’ experience. This integration can augment their existing security toolset, supplying ESET threat data with network and user activity logs, enabling faster threat detection without the need to hop between multiple consoles,” said Pavol Šalátek, Director of Global Business Partnerships and Alliances at ESET. “This is also a boon for MSPs, which can integrate ESET data into their existing Splunk environments, offering advanced detection and response services for their diverse clientele,” he added.

Security analysts, incident responders or IT admins will find that by harnessing the award-winning power of the ESET PROTECT Platform, with its low impact on performance and capability to offer deep insight into devices, can enhance any existing setup, leading to risk reduction, satisfying business leadership and regulatory compliance.

Learn more about the way we approach integrations on our dedicated ESET integrations webpage.

Discover more about the ESET PROTECT Platform’s comprehensive power.

Find out how Splunk enhances threat response.

• ESET launches a new integration of its ESET Endpoint product with the Kaseya VSA X remote monitoring and management (RMM) solution.
• MSP admins will find their workloads simpler, due to less time spent managing multiple solutions, giving them more space for their daily tasks.

BRATISLAVA — April 16, 2025 — ESET, a global leader in cybersecurity solutions, today announced the launch of another major integration, this time, with the Kaseya VSA X remote monitoring and management (RMM) software.

ESET has worked with MSPs for a long time, creating successful programs such as the ESET MSP Program, with subscription flexibility (pay only for what’s in use, no flat rates, no long-term commitment), co-management (independent seat count adjustment and subscription management), or  tier-based volume pricing (the more licenses sold, the better the unit price), among others.

Thus, we understand the needs of our partners as well as their clients. Among these is an interest in running efficient workloads, cutting down on time spent in “swivel chair” operations, and simplifying their use of multiple products, while not sacrificing on their security postures.

Such results are only achievable through integrations, which ESET identifies as a key contemporary trend. As a partner- and channel-focused cybersecurity vendor, we understand this, and we develop and maintain support for all the most prevalent RMM and PSA tools out there, now joined by Kaseya VSA X, a leading RMM product.

Thanks to this new integration, users of Kaseya VSA X can now also serve organizations that use ESET. In essence, it enables MSPs to deploy and manage ESET Endpoint products directly from within the Kaseya VSA X interface, so they can perform their necessary management actions without having to log in to a separate console.

With support for additional workflows, MSPs can set up automatic actions for common scenarios. For instance, a workflow can be used to automatically deploy ESET to a freshly provisioned machine, or a workflow could be configured to provide a notification in case a threat is detected on an endpoint.

Some other key features are:

• “One Click” or automated deployment of ESET Endpoint products
• Monitoring of endpoint health (product, version, protection status)
• On-demand tasks such as scanning and activation

“We’ve been working with MSPs for a very long time, and ESET is a favorite vendor among thousands of MSPs across the world,” said Rob Jones, Global Channel Business Developer at ESET. “With the features provided through our new integration with Kaseya VSA X software, MSP administrators will unlock extensive benefits, such as simpler workflows, easier monitoring, as well as enhanced time savings. We know what MSPs need, and with this integration, we are directly addressing multiple pain points to make their businesses more efficient.”

Version 1.0 of this integration will support Windows endpoints that are running ESET Endpoint Antivirus, Endpoint Security, or Server Security.

ESET will be continuing its integration journey, so stay tuned for more updates in the future. In the meantime, feel free to check out our ESET integrations webpage to see the list of our existing partners and connections.

• This integration provides seamless ingestion of ESET PROTECT, ESET Inspect, and ESET Cloud Office Security data into Wazuh’s security platform.
• Wazuh’s open-source security platform is easy to deploy, and it offers cost-effective benefits, which the integration of ESET’s solutions boosts to further heights, benefiting our mutual customers.
• The integration between ESET’s solutions and Wazuh helps SMBs and enterprises meet most of their security needs, irrespective of their maturity levels.

BRATISLAVA, Slovakia — April 14, 2025 — ESET, a global leader in cybersecurity solutions, is continuing to increase its number of integrations, this time, by connecting with Wazuh, a popular open-source security platform.

Cybersecurity is becoming more complex and difficult. B2B organizations might find obstacles in adjusting to this new reality. Therefore, interoperability has become crucial, which is also why ESET has adopted an API-first approach. As a result, the provision of strong security is easier than ever, as those organizations that need to correlate vast amounts of data from multiple sources, across several vendors, can create more efficient security workflows.
The ESET Endpoint Management Platform (ESET PROTECT), including its Detection and Response capabilities (ESET Inspect), as well as ESET Cloud Office Security, integrates seamlessly with Wazuh, enabling organizations to consolidate security alerts, telemetry, and incidents in a single pane of glass. The integration works by using API-based integration – ESET provides REST APIs, allowing Wazuh to query and pull relevant security events, incidents, and telemetry directly.

Consequentially, this integration should empower any security-conscious organization or professional with cost-effective, open-source security monitoring and compliance solutions. For example, security analysts or incident responders can use Wazuh’s dashboards to correlate ESET’s endpoint detection events with other logs, perform threat hunting, and develop comprehensive incident response playbooks. In the same vein, IT administrators can utilize Wazuh to generate summary reports, do compliance checks, and monitor operational metrics across their entire security stacks, including ESET-supplied data. Effectively, with this integration, security teams can do more with fewer tools and less manual work.

“ESET provides security solutions that can protect one’s tomorrow today. With our integrations, we aim to lessen security burdens, and empower security operators with tools that create natural efficiencies, relieving many of their workflows. With data from ESET PROTECT, ESET Inspect, and ESET Cloud Office Security in Wazuh, they can cover the needs of an entire business environment from a single pane of glass,” said Michal Hájovský, Global Sales Lead at ESET.

Visit our ESET integrations page for more information.

Find out more about Wazuh’s open-source security platform.

Discover more about the power of comprehensive security on the ESET PROTECT Platform page.