Stay connected with your ecosystem

Our cloud-based, next-gen SIEM integrations are built into the Perch platform with no additional fees. We're always adding more – and users can prioritize their most-wanted integrations by voting from within the Perch app.


Cisco integrations

Perch feeds data from all your cloud services and security products into a single data lake monitored by Perch SOC. Create meaningful visualizations in Perch to share with clients and stakeholders.

AMP for Endpoints

Ingest the operational and threat data from AMP for Endpoints into Perch’s data lake (SIEM solution). Perch SOC services provides event correlation, alert review, and custom alert options.

Learn More


With the Cisco Umbrella integration, endpoint and infrastructure DNS data is available in the same single Perch experience allowing for unique insights across all data sources.

Learn more


Correlate Duo Multi-Factor Authentication and endpoint visibility with data from other Perch-connected cloud services like Office 365, Cisco Umbrella, and Cisco AMP.

Learn more
Office 365

Office 365

Perch consumes Office 365 logs so you can defend your company against business email compromise (BEC), account takeovers, and have visibility beyond your network traffic. Make your logs searchable, parsable, cleaner, and reportable. Build alerts that suit your needs to get notified in real-time, then investigate the impact through Perchybana.

Get help with Office 365

Firewall integration

Dynamically block threats on your network traffic via firewalls. Perch is integrated with your favorite firewall providers: Palo Alto, Fortinet, and Firepower.

Get help with dynamic block lists


With the SentinelOne integration, Perch is able to collect log data for activities and threats found on any device with an installed SentinelOne agent.

Get started with SentinelOne integration

AWS Cloudtrail

Ingest critical events from Amazon Web services, including access control via IAM and instance configuration changes with EC2. Any service that reports to CloudTrail is available in Perch.

Get started with AWS Cloudtrail integration

Sophos Central

Collect event and usage data from all of your Sophos products and endpoints with our automatic log collection via Sophos Central.

Get started with Sophos integration


Want a Slack Bot for your Perch setup? Install our Perch Plugin for Slack and configure the integration to be notified of activity within Perch.

Get started with Slack integration

Microsoft Teams

Perch can talk to your Microsoft Teams instance by using configured web hooks to notify you of any activity within your organization.

Get started with Mircosoft Teams integration


Perch can download log data from Webroot such as DNS and Endpoint protection, and Security Awareness Training information.

Get started with Webroot integration
ConnectWise Manage

ConnectWise Manage

Get real-time alert notifications and create tickets directly in ConnectWise Manage™ to document all threats for your customers. Billing is made easy with seamless integration.

Learn more about ConnectWise Manage
ConnectWise Automate

ConnectWise Automate

Respond to Perch incidents with any of your ConnectWise Automate™ scripts. Quarantine machines and more.

Learn more about ConnectWise Automate
Perch API

Perch API

Feeling a bit creative? If you like to do the nitty gritty yourself, you can build your own tools using Perch’s API.