Enterprise Integrations

Enterprise tier subscribers have access to advanced integrations for cloud security posture management (CSPM), software bill of materials (SBOM), compliance frameworks, and SIEM platforms.

Cloud Security (CSPM)

AWS Inspector

Import findings from AWS Inspector to track cloud security posture.

Supported Format: JSON export from AWS Inspector

How to Import:

Export findings from AWS Inspector console as JSON
Navigate to Findings in NEURO
Click Import → AWS Inspector
Upload the JSON file
Review and filter findings in the preview
Click Import to add findings to your project

Mapped Fields:

AWS Inspector	NEURO
severity	severity
title	title
description	description
recommendation	remediation
resourceId	affected_asset
cvss.baseScore	cvss_score

Azure Security Center

Import security alerts from Microsoft Azure Security Center.

Supported Format: JSON export from Azure Security Center

How to Import:

Export alerts from Azure Security Center
Navigate to Findings → Import → Azure Security Center
Upload the JSON file
Review findings and apply filters
Import selected findings

Severity Mapping:

Azure Severity	NEURO Severity
High	High
Medium	Medium
Low	Low
Informational	Info

GCP Security Command Center

Import findings from Google Cloud Security Command Center.

Supported Format: JSON export from GCP SCC

How to Import:

Export findings from GCP Security Command Center
Navigate to Findings → Import → GCP Security Command Center
Upload the exported JSON
Preview and filter findings
Import to your project

SBOM Analysis

CycloneDX

Import Software Bill of Materials in CycloneDX format to track component vulnerabilities.

Supported Formats:

CycloneDX JSON (v1.4, v1.5)
CycloneDX XML

How to Import:

Generate SBOM using tools like syft, cdxgen, or from your CI/CD pipeline
Navigate to Findings → Import → CycloneDX SBOM
Upload the JSON or XML file
Review extracted vulnerabilities with package information
Import findings with component tracking

Extracted Data:

Component name and version
Vulnerability ID (CVE)
Severity and CVSS score
Affected package path
Remediation (upgrade version)

Compliance

DISA STIG (CKLB/CKL)

Import DISA Security Technical Implementation Guide checklists for compliance tracking.

Supported Formats:

CKLB (Checklist Binary)
CKL (Checklist XML)

How to Import:

Export checklist from STIG Viewer or SCAP tool
Navigate to Findings → Import → DISA STIG
Upload the CKLB or CKL file
Review extracted findings with status
Import compliance findings

Status Mapping:

STIG Status	NEURO Status
Open	Open
Not A Finding	Closed
Not Applicable	False Positive
Not Reviewed	Open

SIEM Integrations

Splunk

Export findings to Splunk for centralized security monitoring.

Requirements:

Splunk HTTP Event Collector (HEC) token
Splunk instance URL

Configuration:

Go to Settings → Integrations → SIEM
Enter your Splunk HEC URL and token
Test the connection
Configure index name (default: neuro_findings)

Features:

Export findings to Splunk indexes
Search Splunk from within NEURO
Create custom indexes for projects
Real-time event streaming

Elasticsearch

Export findings to Elasticsearch clusters for integration with your SIEM workflow.

Requirements:

Elasticsearch cluster URL
Authentication credentials (if required)

Configuration:

Go to Settings → Integrations → SIEM
Enter your Elasticsearch cluster URL
Configure authentication (API key or basic auth)
Test the connection

Features:

Export findings to Elasticsearch indexes
Create indexes with proper mappings
Search across indexed findings
Kibana dashboard integration

Feature Gating

Enterprise features are automatically hidden from non-enterprise tenants. The Import dropdown only shows enterprise integrations when:

Your tenant has an Enterprise subscription
The specific feature is enabled in your tenant settings

To check your current plan, look at the plan badge in the Dashboard hero section.

Next: API Reference