Cloud Security Plus 
Log Management for AWS,
Azure, GCP & Salesforce

Complete visibility into your public cloud infrastructure. Collect, monitor,
and analyze CloudTrail, Azure Activity, GCP Audit, and Salesforce Event
logs from a single console – with predefined reports and customizable
alerts.

Talk to Our Experts

Cloud Security Plus is the cloud monitoring component of ManageEngine Log360 - A unified SIEM with integrated CASB and DLP capabilities. Trusted by enterprises securing AWS, Azure, GCP, and Salesforce environments worldwide.

Is Your Cloud Footprint Monitored, 
or a Compliance Blind Spot?

The Challenge

Each cloud platform has its own logs, its own console, and its own gaps. Without a unified view, security teams chase shadows across AWS, Azure, GCP, and Salesforce.

THE CHALLENGES: Operating Without Cloud Security Plus

Each cloud platform has its own logs, its own console, and its own gaps. Without a unified view, security teams chase shadows across AWS, Azure, GCP, and Salesforce.

Fragmented Cloud Visibility

Multiple cloud logs and consoles create major visibility gaps

Cloud Compliance Gaps

Lack of evidence creates challenges during compliance audits

Disconnected Log Consoles

Separate platforms prevent fast cross-cloud incident investigation

Unnoticed Insider Activity

Suspicious user actions go undetected without behavior monitoring

Hidden Misconfigurations Risk

Misconfigurations remain unnoticed without continuous monitoring and analysis

Delayed Threat Detection

Slow log analysis delays identification of active security threats

The Solution

A unified cloud log management platform — collect, correlate, and report on activity across AWS, Azure, GCP, and Salesforce from a single console.

THE SOLUTION: Cloud Security Plus

A unified cloud log management platform – collect, correlate, and report on activity across AWS, Azure, GCP, and Salesforce from a single console.

Unified Cloud Platform

Centralized solution for managing and monitoring multi-cloud environments

Single Console Visibility

All cloud logs accessible, searchable, and correlated instantly

Prebuilt Cloud Reports

Ready-made reports covering infrastructure, storage, and user activity

Custom Alert Profiles

Tailored alerts notify unusual activities and policy violations

Advanced Log Search

Powerful search filters enable quick and efficient investigations

Real Time Monitoring

Continuously tracks activities to detect threats as they occur

One Console. Total Cloud Visibility.

Cloud Security Plus unifies log collection, security monitoring, compliance reporting, and threat detection
across all four major public cloud platforms.

Monitor

Every Platform

CloudTrail

Activity Logs

Audit Logs

Event Mon.

Track

Every Activity

User Activity

IAM Changes

Network Sec.

Storage Ops

Comply

With Every Standard

GDPR

HIPAA

PCI DSS

ISO 27001

Multi-Cloud Visibility

AWS, Azure, GCP, and Salesforce activity in one searchable, correlated view.

Real-Time Threat Alerts

Web attacks, anomalous trends, unusual activity – caught and notified instantly.

Audit-Ready Reports

Predefined cloud security reports for GDPR, HIPAA, PCI DSS, ISO 27001.

Insider Risk Detection

Unusual logons, bulk exports, suspicious IAM changes – flagged in real time.

A Streamlined Approach to Multi-Cloud Log Management

Cloud Security Plus equips your security and cloud teams with the visibility, alerting, and reporting required to secure AWS, Azure, GCP, and Salesforce – without juggling four separate consoles.

CloudTrail · S3 · ELB Log Analysis

Predefined reports for EC2, S3, RDS, Lambda, VPC, ELB, WAF, Route 53, STS, Elastic IP, ENI, EBS, and Auto Scaling. S3 bucket activity tracking via add-on log management.

Activity & NSG Traffic Logs

Track changes to virtual machines, storage accounts, network security groups, virtual networks, DNS zones, databases, and resource groups across all Azure subscriptions.

Audit Logs via gRPC

User activity, IAM changes, network security, VPC activity, cloud functions, App Engine, Google Storage, and resource management – extensive coverage via gRPC retrieval.

Event Monitoring & Setup Audit Trail

REST API integration captures login activity, report views, content downloads, search patterns, and admin changes – flagging unusual logons and unauthorized data exports.

Out-of-the-Box Cloud Security Reports

Hundreds of ready reports for cloud-side security events, user activity, configuration changes, and compliance posture – no template-building required to get started.

Email Alerts on Anomalies

Customizable alert profiles for unusual activity, web attacks, anomalous trends, and policy violations. Email notifications sent to the right team in real time.

Cross-Cloud Log Search Engine

Smart log search with advanced filtering across all four platforms. Investigate any user, any resource, any timeframe – without switching consoles.

GDPR · HIPAA · PCI DSS · ISO 27001

Audit-ready compliance reports. Pairs natively with ManageEngine Log360 SIEM for unified on-prem + cloud security operations and incident correlation.

Exactly What's Monitored on Each Cloud

Every public cloud has different log sources, different APIs, and different services. Cloud Security Plus speaks all four natively. Here’s exactly what gets monitored on each platform – so you know precisely what visibility you’ll gain on day one.

Amazon Web Services

Source: CloudTrail · S3 · ELB Logs

12+ Services

Full visibility into account-level API activity, network traffic, storage operations, and compute resource changes across every AWS region.

Services Monitored

EC2

S3 + Buckets

RDS

Lambda

VPC

ELB

WAF

Route 53

STS

Elastic IP

ENI

EBS

Auto Scaling

Microsoft Azure

Source: Activity Logs · NSG Traffic

8+ Services

Subscription-wide activity tracking, network security group changes, virtual network modifications, and resource lifecycle events across all Azure tenants.

Services Monitored

Virtual Machines

Storage Accounts

NSG Rules

Virtual Networks

SQL Databases

DNS Zones

Resource Groups

User Activity

Key Vault

Google Cloud Platform

Source: GCP Audit Logs (gRPC)

8+ Services

Detailed insights via extensive gRPC log retrieval – IAM, VPC, Cloud Functions, App Engine, Google Storage, and resource management activity tracked end-to-end.

Services Monitored

IAM Activity

VPC Activity

Cloud Functions

App Engine

Google Storage

Network Security

User Activity

Resource Mgmt

Network Services

Salesforce

Source: Event Monitoring · Setup Audit Trail

5+ Activities

Login activity, report exports, content downloads, search patterns, and admin changes – pulled via REST API to detect insider threats and data exfiltration.

Activities Monitored

Login Activity

Report Views

Bulk Exports

Content Downloads

Search Activity

Setup Audit Trail

Admin Changes

Pricing is per cloud account – monitor 1 platform or all 4, scale at your own pace. AWS S3 bucket logging available as add-on.

See Pricing

Four Pillars of Cloud Security Monitoring.

AWS deep-dive, Azure visibility, GCP insights, Salesforce activity — unified
across your entire cloud estate.

Deep Visibility into AWS Activity

Collect CloudTrail logs, S3 server access logs, and ELB access logs from your AWS accounts. Predefined reports cover EC2, S3, Route 53, Elastic IP, ENI, WAF, RDS, STS, VPC, ELB, Lambda, and Auto Scaling.

S3 bucket activity, network security group changes, and root account usage all surface as ready-to-investigate alerts – not buried in noise.

Complete Azure Activity Insights

Collect, monitor, and analyze Azure Activity logs and NSG Traffic logs from your Azure subscriptions. Reports show user activity, network security group changes, virtual network changes, DNS zones, virtual machines, databases, and storage accounts.

Track who created which resource, who changed which NSG rule, and which storage accounts are being accessed — all from a single console.

Detailed GCP Activity & IAM Insights

Get detailed insights on user activity, IAM, network security, VPC activity, network services, cloud functions, App Engine, Google Storage, and GCP resource management – with extensive log retrieval via gRPC calls.

IAM role assignments, service account changes, and resource creation/deletion all tracked with full attribution and timestamps.

Salesforce User Activity & Incident Detection

Fetch Salesforce Event Monitoring logs and Setup Audit Trails via REST API. Get actionable insights on user activities – unusual logons, unauthorized data distribution, and potential incidents.

Track login activity, report exports, content downloads, and search activity. Catch insider risk before sensitive data leaves your tenant.

Deploy Cloud Security Plus

On-Premises
Deployment

Installed within your on-premises enterprise infrastructure, providing complete data sovereignty, full control over configuration, secure log retention, compliance adherence, and internal security governance across environments.

Application-Based Deployment

Runs as a standalone application on dedicated Windows servers or workstations, enabling simplified installation, centralized administration, intuitive configuration, and efficient day-to-day management for IT and security teams.

Windows Service
Deployment

Operates as a persistent background Windows service, ensuring continuous, uninterrupted cloud log collection, real-time monitoring, automated processing, and reliable enterprise-grade security operations without manual intervention or user dependency.

For better implementation experience, and tailored
solutions that's unique to your business.

Upgrade to a Fully Managed Security Posture

Introducing KIDAN’s Endpoint Management and Security as a Service powered by our 24/7 Swiss-led Technology Operations Center (TOC)

24/7 Proactive Security & Threat Mitigation

Our TOC operates around the clock to monitor your endpoints. We don’t just send you alerts; we actively investigate, validate, and remediate threats before they can impact your operations. This includes vulnerability management, patch deployment, and enforcing security configurations across your entire fleet of devices.

Expert Management & Optimization

Your Endpoint Central platform will be managed and optimized by certified engineers who live and breathe this technology. We handle all software deployments, policy configurations, and routine maintenance, ensuring the tool is always performing at its peak and aligned with the latest security best practices.

Strategic Reporting & Visibility

Move beyond raw data. We provide you with clear, executive-level monthly reports that translate technical activity into business-relevant insights. Understand your security posture, see the threats we’ve neutralized, and demonstrate compliance with ease.

We’ve been redefining IT for enterprises, excellence in every solution.

How KIDAN Works with You

Choose the Model That Fits You Best

We don’t just provide software we partner with you to ensure it delivers real, lasting value. Whether you’re looking for light-touch guidance or full-scale operational support, we offer flexible service models tailored to your needs.

License + Expert Guidance

Start with the right license and unlock full value.

Already have the tool or just getting started? We’ll help you provision the right licenses and guide you to unlock the full potential of your investment. Think of us as your strategic advisor always available, never intrusive.

Get Expert Guidance

Implementation & Onboarding

We’ll help you set up, onboard, and train your team.

We’ll help you set up, onboard, and train your team.Need help getting up and running? We’re with you every step of the way from setup and configuration to onboarding and training. Our experts ensure your team is confident, capable, and ready to go.

Launch with Confidence

Fully Managed Service

We manage everything so you don’t have to.

Prefer to stay hands-off? Let us run the tool for you. We’ll handle everything monitoring, maintenance, updates, and optimization so you can focus on what matters most: your
business.

Let KIDAN Run It

Introducing KIDAN’s Endpoint Management and Security as a Service powered by our 24/7 Swiss-led Technology Operations Center (TOC)

Live Demo

1 Minute Guided Tour of
Cloud Security Plus

Deploy Cloud Security Plus

On-Premises
Deployment

Application-Based Deployment

Windows Service
Deployment

Upgrade to a Fully Managed Security Posture

Introducing KIDAN’s Endpoint Management and Security as a Service powered by our 24/7 Swiss-led Technology Operations Center (TOC)

24/7 Proactive Security & Threat Mitigation

Expert Management & Optimization

Strategic Reporting & Visibility

A Streamlined Approach to Multi-Cloud Log Management

Cloud Security Plus equips your security and cloud teams with the visibility, alerting, and reporting required to secure AWS, Azure, GCP, and Salesforce – without juggling four separate consoles.

CloudTrail · S3 · ELB Log Analysis

Predefined reports for EC2, S3, RDS, Lambda, VPC, ELB, WAF, Route 53, STS, Elastic IP, ENI, EBS, and Auto Scaling. S3 bucket activity tracking via add-on log management.

Activity & NSG Traffic Logs

Track changes to virtual machines, storage accounts, network security groups, virtual networks, DNS zones, databases, and resource groups across all Azure subscriptions.

Audit Logs via gRPC

User activity, IAM changes, network security, VPC activity, cloud functions, App Engine, Google Storage, and resource management – extensive coverage via gRPC retrieval.

Event Monitoring & Setup Audit Trail

REST API integration captures login activity, report views, content downloads, search patterns, and admin changes – flagging unusual logons and unauthorized data exports.

Out-of-the-Box Cloud Security Reports

Hundreds of ready reports for cloud-side security events, user activity, configuration changes, and compliance posture – no template-building required to get started.

Email Alerts on Anomalies

Customizable alert profiles for unusual activity, web attacks, anomalous trends, and policy violations. Email notifications sent to the right team in real time.

Cross-Cloud Log Search Engine

Smart log search with advanced filtering across all four platforms. Investigate any user, any resource, any timeframe – without switching consoles.

GDPR · HIPAA · PCI DSS · ISO 27001

Audit-ready compliance reports. Pairs natively with ManageEngine Log360 SIEM for unified on-prem + cloud security operations and incident correlation.

Exactly What's Monitored on Each Cloud

Amazon Web Services

Source: CloudTrail · S3 · ELB Logs

12+ Services

Full visibility into account-level API activity, network traffic, storage operations, and compute resource changes across every AWS region.

Services Monitored

EC2

S3 + Buckets

RDS

Lambda

VPC

ELB

WAF

Route 53

STS

Elastic IP

ENI

EBS

Auto Scaling

Microsoft Azure

Source: Activity Logs · NSG Traffic

8+ Services

Subscription-wide activity tracking, network security group changes, virtual network modifications, and resource lifecycle events across all Azure tenants.

Services Monitored

Virtual Machines

Storage Accounts

NSG Rules

Virtual Networks

SQL Databases

DNS Zones

Resource Groups

User Activity

Key Vault

Google Cloud Platform

Source: GCP Audit Logs (gRPC)

8+ Services

Detailed insights via extensive gRPC log retrieval – IAM, VPC, Cloud Functions, App Engine, Google Storage, and resource management activity tracked end-to-end.

Services Monitored

IAM Activity

VPC Activity

Cloud Functions

App Engine

Google Storage

Network Security

User Activity

Resource Mgmt

Network Services

Salesforce

Source: Event Monitoring · Setup Audit Trail

5+ Activities

Login activity, report exports, content downloads, search patterns, and admin changes – pulled via REST API to detect insider threats and data exfiltration.

Activities Monitored

Login Activity

Report Views

Bulk Exports

Content Downloads

Search Activity

Setup Audit Trail

Admin Changes

Pricing is per cloud account – monitor 1 platform or all 4, scale at your own pace. AWS S3 bucket logging available as add-on.

See Pricing

Four Pillars of Cloud Security Monitoring.

AWS deep-dive, Azure visibility, GCP insights, Salesforce activity — unified
across your entire cloud estate.

Deep Visibility into AWS Activity

S3 bucket activity, network security group changes, and root account usage all surface as ready-to-investigate alerts – not buried in noise.

Complete Azure Activity Insights

Track who created which resource, who changed which NSG rule, and which storage accounts are being accessed — all from a single console.

Detailed GCP Activity & IAM Insights

IAM role assignments, service account changes, and resource creation/deletion all tracked with full attribution and timestamps.

Salesforce User Activity & Incident Detection

Fetch Salesforce Event Monitoring logs and Setup Audit Trails via REST API. Get actionable insights on user activities – unusual logons, unauthorized data distribution, and potential incidents.

Track login activity, report exports, content downloads, and search activity. Catch insider risk before sensitive data leaves your tenant.

Deploy Cloud Security Plus

On-Premises
Deployment

Application-Based Deployment

Windows Service
Deployment

For better implementation experience, and tailored
solutions that's unique to your business.

Upgrade to a Fully Managed Security Posture

Introducing KIDAN’s Endpoint Management and Security as a Service powered by our 24/7 Swiss-led Technology Operations Center (TOC)

24/7 Proactive Security & Threat Mitigation

Expert Management & Optimization

Strategic Reporting & Visibility

We’ve been redefining IT for enterprises, excellence in every solution.

Pricing Plans Tailored to Fit Your Business

Cloud Security Plus - non-binding prices

Fill up the form to get a personalized Quote, that best suits your requirements

Fill in your details, and our experts will send you a custom quote designed to fit your business needs and budget.

Request a Quote

Deploy Cloud Security Plus

On-Premises
Deployment

Application-Based Deployment

Windows Service
Deployment

For better implementation experience, and tailored
solutions that's unique to your business.

Datasheet

Cloud Security Plus Datasheet

Download PDF

Architecture

Cloud Security Plus Architecture

Download PDF

Man IT

Supports mobile Sales Workforce with

corporate-owned devices

1500 +

Employee-owned device

0 +

To Serve Customers Securely Across

Cities

Branches

Request a live demo

Your Questions, Answered with Clarity.

Direct answers to the most common strategic, technical, and commercial questions about Cloud Security Plus

Which cloud platforms are supported?

Cloud Security Plus supports four major public cloud platforms: Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), and Salesforce. Logs are pulled from CloudTrail, Azure Activity logs, GCP Audit logs (via gRPC), and Salesforce Event Monitoring (via REST API).

How is pricing calculated?

Pricing is per cloud account monitored – one AWS account, Azure subscription, GCP project, or Salesforce org each counts as one account. Standard Edition starts at $595 per cloud account per year. AWS S3 bucket log management is available as an add-on starting at $145.

How is it different from Log360?

Cloud Security Plus is the cloud monitoring component within ManageEngine Log360. Log360 is the full unified SIEM that adds on-premises log management, CASB, DLP, UEBA, and incident response across the entire enterprise. Choose Cloud Security Plus if cloud is your primary need; choose Log360 if you need unified hybrid visibility.

What AWS services are covered?

Predefined AWS reports cover Amazon EC2, S3 (with optional bucket-level add-on), RDS, Lambda, VPC, ELB, WAF, Route 53, STS, Elastic IP, ENI, EBS, and Auto Scaling. Logs are pulled from CloudTrail, S3 server access logs, and ELB access logs.

Does it help with compliance?

Yes. Out-of-the-box compliance reports support GDPR, HIPAA, PCI DSS, and ISO 27001. Reports document cloud-side controls, access patterns, and configuration changes — exactly what auditors expect for cloud workloads. KIDAN can also build custom templates for FINMA and other Swiss-specific frameworks.

What support does KIDAN provide as a local partner?

As the exclusive ManageEngine partner in Switzerland, KIDAN provides pre-sales consulting, cloud account sizing recommendations, end-to-end onboarding (CloudTrail/IAM, Azure service principals, GCP service accounts & gRPC, Salesforce Event Monitoring), alert tuning, SIEM/Log360 integration, and managed service options including 24/7 cloud security operations.

As a Service

Partner Program

IAM

Cloud

UEM

MSP

Security

...........

Help Desk

Networks

.....

....

IT Analytics

AlarmsOne

ManageEngine

IAM

AD360

Access Manager Plus

ADManager Plus

ADSelfService Plus

Access Manager Plus

Key Manager Plus

Identity 360

PAM360

Password Manager Pro

Recovery Manager Plus

IAM

UEM

Security

Networks

Cloud

MSP

Help Desk

IT Analytics

ColorTokens

Cloudflare

SentinelOne

Microsoft

Horizon3

Zoho

Xink

Sangfor

390+

115+

1'300+