Amazon Security Lake Plugin for Log Shipper

Amazon Security Lake Plugin for Log Shipper

This document explains how to configure the AWS Security Lake v1.1.0 integration with the Cloud Log Shipper module of the Netskope Cloud Exchange platform.


  • Netskope Tenant (or multiple, for example, production and development/test instances)
  • A Netskope Cloud Exchange tenant with the Log Shipper module already configured.
  • A Netskope Cloud Exchange tenant with the Netskope CLS and Netskope WebTX plugins already configured. Links for the configuration guides are:
  • Amazon S3 bucket permissions for the IAM user.
    • ListBucket
    • CreateBucket
    • ListAllMyBuckets
    • GetBucketPolicy
    • GetBucketPublicAccessBlock
    • PutEncryptionConfiguration
    • PutBucketPublicAccessBlock
    • PutBucketPolicy
  • An Amazon Security Lake enabled AWS account. References: and
  • AWS Lambda configured as mentioned here.
Plugin Flow
Amazon Security Lake Plugin Support

Event Support


Alert Support


WebTx Support


All Netskope events, alert logs, and web transaction logs will be shared.


Netskope CE: v4.1.0 and v4.2.0

Performance Matrix

This performance reading is for a Large Stack CE with the below mentioned VM specifications.

Stack Size


RAM: 32 GB

Core: 16


~ 6 MBps


~ 6 MBps


  1. Configure AWS.
  2. Configure the AWS Security Lake plugin.
  3. Configure the Log Shipper Business Rules for AWS Security Lake.
  4. Configure the Log Shipper SIEM Mappings for AWS Security Lake.
  5. Validate the AWS Security Lake plugin.

Click play to watch a video.

Share this Doc
In this topic ...