Skip to main content
Tier4 connects to your existing security tools to provide automated threat detection, investigation, and response. Our integrations are designed to work together; combining detection sources with user and host information, ticketing systems, and communication platforms to enable a fully automated MDR experience.
Just starting with Tier4? Start by connecting your first security tool and witness our automation in action.

How Integrations Work

  1. Ingest Alerts - Tier4 automatically retrieves alerts from your security tools via API
  2. Enriches and Triages - Each alert is automatically enriched with third-party threat intelligence, aggregated with historical alerts, analyzed by specialized agents, and decisioned by our AI Analyst
  3. Takes Response Action - Based on your environment configurations, Tier4 can autonomously take response actions to contain threats immediately
Tier4 requests only necessary permissions and connects to tools using secure OAuth or API tokens. We never store credentials in plain text.

Source System Updating

When an alert is decisioned in the platform, Tier4 will send both verdict and status updates back to the source system via API. This source system updating allows your source systems to stay in sync with the Tier4 platform at all times.

Detection Sources

Crowdstrike

Endpoint Detection Platform

SentinelOne

Endpoint Detection Platform

Microsoft

Defender for Endpoint, Entra ID, and more

Watchguard

Endpoint Detection Platform

TrendAI

Endpoint Detection Platform

ArcticWolf Aurora

Endpoint Detection Platform

Sublime Security

Email Security Platform

Mimecast

Email Security Platform