DataSense® Features

Complete data pipeline management solution designed to transform how you collect, process, enrich, and deliver security data.

Collect
Process
Enrich
Deliver

How DataSense Works

DataSense uses a simple two-component architecture: Exporters define where data goes, and Pipelines define how data is processed. Configure both in minutes for immediate data flow.

Exporters

Define destinations for your data (Elasticsearch, Splunk, AWS S3, etc.)

Pipelines

Process, filter, and enrich data before sending to exporters

Collect

Universal data collection from any source

Web-Based Login with MFA

Access securely via browser

Secure access to DataSense through a web browser with multi-factor authentication for enhanced security in critical environments.

Security Features
  • Multi-factor authentication
  • Browser-based access
  • Secure session management

Multi-Destination Support

Route logs from a pipeline to multiple exporters

Route processed data to multiple destinations simultaneously, supporting various SIEM platforms, cloud storage, and custom endpoints from a single pipeline.

Supported Destinations
Elasticsearch Splunk Amazon S3 Custom APIs

Process

Advanced data processing and optimisation

Field Redaction & Removal

Mask or drop fields before export

Remove or mask sensitive fields from log data before export to reduce costs and improve security. Configure field-level redaction and removal to ensure only necessary data is processed and stored.

Key Benefits
  • Field-level redaction and removal
  • Sensitive data protection
  • Data pipeline management
  • Compliance support

Regex & Predicate Filtering

Filter and process data efficiently

Filter and process telemetry data efficiently using regex patterns and predicate-based filtering. Keep only relevant data while discarding unnecessary information before routing to your chosen destinations.

Key Benefits
  • Regex pattern matching
  • Predicate-based filtering
  • Significant cost reduction
  • Improved data quality

Enrich

Advanced threat intelligence and data enrichment

Threat Intelligence Enrichment

Highlight suspicious domains, IPs, and hashes

Enhance security events with threat intelligence data to highlight suspicious domains, IPs, and hashes. Add contextual information to improve data quality and analysis capabilities.

Enrichment Capabilities
Suspicious Domains Malicious IPs File Hashes Threat Indicators
Key Benefits
  • Enhanced data quality
  • Contextual intelligence
  • Improved analysis accuracy

Advanced Capabilities

Core features that make DataSense powerful and easy to use

Visual Pipeline Builder

Create and manage pipelines via a web UI

Build and configure data pipelines through an intuitive web interface. Drag-and-drop functionality makes it easy to create complex data processing workflows without coding.

Key Features
  • Drag-and-drop interface
  • Real-time pipeline monitoring
  • Visual workflow design

Flexible Exporters

Send logs to SIEMs, cloud storage, or custom endpoints

Route processed data to multiple destinations including SIEM platforms, cloud storage, and custom endpoints. Configure exporters to match your specific requirements and infrastructure.

Supported Destinations
Elasticsearch Splunk AWS S3 Custom APIs

Replay Support

Reprocess recent logs when needed

Reprocess recent logs when needed to test new configurations or recover from processing issues.

Planned Capabilities
  • Log reprocessing
  • Configuration testing
  • Data recovery

System Metrics

Monitor CPU, memory, disk usage

Monitor system performance and resource utilisation through comprehensive metrics. Track CPU, memory, and disk usage to ensure optimal system health and performance.

Key Metrics
  • CPU utilisation
  • Memory usage
  • Disk space monitoring

Dataset Monitoring

View success/failure counts, pipeline stats

Monitor dataset processing performance with detailed success and failure counts. Track pipeline statistics to ensure data integrity and identify processing issues.

Monitoring Features
  • Success/failure counts
  • Pipeline statistics
  • Data integrity tracking

Technical Terms

Redaction

The process of removing or masking sensitive information from log data to protect privacy and reduce storage costs.

Enrichment

Adding contextual information to log data, such as IP geolocation or threat intelligence, to improve analysis capabilities.

Replay

The ability to reprocess historical log data through updated pipeline configurations for testing or recovery purposes.

Exporter

A component that defines where processed data is sent, such as to SIEM platforms, cloud storage, or custom APIs.

ALM-SIEM

Assuria's trusted SIEM platform used in defence and government. The core technology that powers ALM also forms the foundation of DataSense — particularly in secure log ingestion and data integrity. However, DataSense is an independent platform, with its own pipeline logic, enrichment, and export layers.

Pipeline

A sequence of processing steps that transform, filter, and route log data from sources to destinations.

Why These Features Matter

Cost Reduction

Efficiently manage and process telemetry data through intelligent optimisation and routing.

Performance

Process high volumes of logs with forensic integrity and accurate log handling.

Security

Complete data ownership with data sanitisation, redaction, and compliance features.

Ready to Transform Your Data Pipeline?

Experience the power of DataSense and see how our features can revolutionise your security operations.

Contact Us Today Learn More About Assuria