Jamf Compliance Reporter is a security monitoring tool for macOS. Compliance Reporter collects and continually streams the data IT security teams need, to the logging and SIEM tools they already use. The purpose of this add-on is to add additional value and sorting to Compliance Reporter's macOS security, audit, and operational logs. This is done by making the logs CIM compliant, adding tagging for Enterprise Security data models, and other knowledge objects to make searching and visualizing this data easy. Additional Information about Compliance Reporter https://docs.jamf.com/compliance-reporter/documentation/index.html Compliance Reporter (agent) supports macOS Versions: 10.13+ *Note:* All screenshots are Compliance Reporter's data in Splunk's InfoSec application to demonstrate CIM compliance. InfoSec application available here: https://splunkbase.splunk.com/app/4240/ Collected and parsed data types include: - OpenBSM audit logs - Apple Unified Logs - macOS configuration changes - Hardware add/remove events - Network connections - Gatekeeper and XProtect logs - File event monitoring