Configure Log Shipper SIEM Mappings
Admins can configure SIEM mappings to ingest the events and alerts from a Netskope tenant into their SIEM platform. Admin should configure Netskope and SIEM destination plugin, and also configure a business rule if they plan to ingest only selective alerts and events.
Go to Log Shipper > SIEM Mappings.
Click Add SIEM Mapping.
Select a Source Configuration, Business Rule, and a Destination Configuration.
Click Save.
Now all the incoming alerts and events should be ingested into your destination configuration.