Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Jira Integration with Splunk SIEM

Farhan Shaikh
Farhan Shaikh
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
March 10, 2025

Task:

We are attempting to integrate Jira Cloud authentication event logs into our on-premise Splunk instance using heavy forwarders.

 

Blockers:

During my search for technical documentation, I found an article published in March 2020 that explicitly states Jira Cloud logs are not available for integration with Splunk, as they are maintained and monitored by Jira and hosted online. This poses a significant challenge for our security team, as integrating Jira authentication log events into our SIEM platform is crucial for compliance. The specific blockers we are facing are:

  1. Lack of official documentation on Jira.
  2. Absence of an official Splunk Add-on available on the Atlassian Marketplace.

 

Available Solution:

We need to identify a solution or an official workaround to integrate these logs into our SIEM portal, are there any options to do this?

Answer
Watch
Like Be the first to like this
860 views

2 answers

0 votes
Rik de Valk _Brainboss_
Rik de Valk _Brainboss_
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Champions.
Get recognized
December 15, 2025

HI @Farhan Shaikh , 

With Atlassian Guard Premium you get the possibility to send audit log events to your SIEM solution. 

This can be Organisation Admin events but also App Log events. 

You can read more about that here: https://support.atlassian.com/security-and-access-policies/docs/learn-more-about-audit-log-webhooks/ 

And for what logs are available here: https://support.atlassian.com/security-and-access-policies/docs/accessing-audit-log-activities/

Have a nice day. 

Rik 

Reply
0 votes
Vronik
Vronik
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Champions.
Get recognized
March 10, 2025

Hi

Have you seen this information, it may help you?

https://support.atlassian.com/jira-service-management-cloud/docs/integrate-with-splunk/

https://community.splunk.com/t5/Other-Usage/Recommended-way-for-integration-from-Splunk-to-Jira/m-p/675719

https://splunkbase.splunk.com/app/6211

https://community.atlassian.com/forums/Jira-questions/How-to-integrate-with-Splunk/qaq-p/2591482

https://marketplace.atlassian.com/apps/1224409/victorops-for-jira-cloud?hosting=cloud&tab=overview

Regards

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
PREMIUM
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security