Asana is a project management SaaS platform that enables project and task management, collaboration, and productivity workflows for teams. Panther can collect, normalize, and monitor Asana logs to help you identify any suspicious activity in real time. Your normalized data is then retained to enable future security investigations in a serverless security data lake powered by Snowflake.
Use Cases for Asana Audit Logs
Asana audit logs give visibility into key changes made by admins, critical access events and abnormal user activity. Common security use cases for Asana logs include monitoring for:
- Creation or modification of admin roles or service accounts
- Modifications to password requirements
- New email domains added to an Asana workspace
- Workspace org exports
Onboarding Asana Logs in Panther
Panther’s integration for Asana is easy and quick to configure, allowing you to onboard logs in just a few minutes. Simply select Asana from the list of pre-defined log sources, enter basic Asana credentials, and copy a Service Access Token into the Panther console.
For more details on onboarding Asana logs or for supported log schema, you can view our Asana documentation here.
Parsing, Normalizing, & Analyzing Asana Logs
As Panther ingests Asana audit logs, they are parsed, normalized, and stored in a Snowflake security data lake. This allows your security team to write detections, identify anomalies, and conduct investigations on Asana logs in the context of days, weeks, or months of data.
Panther applies normalization fields to all log records, which standardizes names for attributes and empowers users to correlate data across all log sources - not just Asana. You can use Panther’s various search tools - such as Data Explorer, Indicator Search, and Query Builder - to investigate your normalized logs for suspicious activity or vulnerabilities. For more information on searching log data, check out our documentation on Investigations & Search.
Built-In & Easily Customizable Detections
A number of pre-built detections for Asana are available by default in Panther, offering users immediate value for monitoring common IoCs and threats. You can explore our built-in detection coverage for Asana logs here.
With Panther, your team won’t be confined to rigid detection logic or proprietary languages as seen in many SIEM platforms. Panther is architected around detection-as-code principles, giving you the ability to write Python to define detections and to integrate external systems like version control and CI/CD pipelines into your detection engineering processes. This results in powerful, scalable, and reusable scripting of detection logic for your security team.
Panther generates alerts when your detection rules or policies are triggered, and integrates with a variety of alert destinations to allow for easy access and management of any Asana alerts. Alerts can also be sent to alert context or SOAR platforms for more remediation options.
Alerts are grouped into five different severity levels: Info, Low, Medium, High, and Critical. Security teams have the ability to dynamically assign severity based on specific log event attributes.
If you have any questions about configuring or monitoring Asana logs in Panther, our customer support team is here to help. All customers have access to support via a dedicated Slack channel, email, or in-app messenger.
You can view our documentation on configuring and monitoring Asana logs here, or customers can sign up for the Panther Community to share best practices or custom detections for Asana logs.
Replacing Traditional SIEM for Asana Logs
With Panther, your security team doesn’t have to struggle with rigid detection logic, waste time and resources on operational overhead, or pay excessive costs to keep up with the growth of cloud app data. Panther was founded by a team of veteran security practitioners who struggled with today’s SIEM challenges first-hand, and built an intuitive, cloud-native platform to solve them.
Panther is a cloud-native SIEM built for security operations at scale, offering flexible detection-as-code, intuitive security workflows, and actionable real-time alerts to keep up with the needs of today’s security teams. For a strong, flexible, and scalable SIEM solution for Asana logs, request a demo today.