ICDx
Symantec’s Integrated Cyber Defense (ICD) Platform unifies products, services and partners to drive down the cost and complexity of cyber security, while protecting enterprises against sophisticated threats. ICD combines information protection, threat protection, identity management, compliance and other advanced services, powered by shared intelligence and automation across endpoints, networks, applications, and clouds.
Documentation
For a list of documentation either check the below Connect Article or Support.
Collectors and Forwarders
There are a number of Collectors that can be configured to retrieve data, you can then Forward this onto your SIEM of choice.
API
The API has a number of endpoints available for collecting data and actioning.
Apps
A number of apps have been developed for Integration with ICDx, these include ServiceNow, Elastic Search, Splunk, to name a few: