Integrations

Vault doesn’t replace your stack. It feeds it.

The platform integrates with the tools you already use — SIEM, ticketing, paging, IdP, CI/CD. We don’t make you replatform; we surface signal in the systems your team is already in.

Browse integrations API + Terraform

200+ pre-built integrations · REST + GraphQL APIs · Terraform + Pulumi providers · webhooks + Kafka

Live · 24/7 SOC

99.99% uptime, 12mo trailing

Clouds

The clouds we run posture + detection on

AWS, Azure, GCP, Oracle Cloud, plus their gov-isolated counterparts. Single console across all of them; same posture model, same compliance mapping.

AWS

Cloud

Azure

Cloud

GCP

Cloud

Oracle Cloud

Cloud

AWS GovCloud

Cloud · Gov

Azure Gov

Cloud · Gov

SIEM

Pipe Vault findings into your existing SIEM

We don’t replace your SIEM — we feed it better signal. Pre-built integrations stream findings + correlated incidents into the destinations your team already lives in.

Splunk

SIEM

Datadog

SIEM

Elastic

SIEM

Sumo Logic

SIEM

Microsoft Sentinel

SIEM

Chronicle

SIEM

Ticketing + paging

Findings show up in the queues your team works

Jira

Ticketing

ServiceNow

Ticketing

Linear

Ticketing

PagerDuty

Paging

Opsgenie

Paging

Slack

Chat

Identity providers

SSO + SCIM across all the major IdPs

Okta

IdP

Azure AD

IdP

OneLogin

IdP

JumpCloud

IdP

Google Workspace

IdP

Ping Identity

IdP

CI/CD

Shift-left scanning in your existing pipelines

Vault runs in your existing pipelines. PR comments, build-failures on policy violations, SBOM + reachable-vulnerability scanning during build.

GitHub Actions

CI/CD

GitLab CI

CI/CD

CircleCI

CI/CD

Jenkins

CI/CD

Buildkite

CI/CD

ArgoCD

API + IaC

If we don’t have a pre-built integration, the APIs cover it.

Most customers use the pre-built integrations + the Terraform provider. For everything else, the REST + GraphQL APIs are how customers extend the platform.

REST + GraphQL APIs
Every Vault control + finding is available via REST + GraphQL. SDKs for Python, Go, TypeScript, Java.
Terraform + Pulumi providers
Manage policies, integrations, and platform configuration as code. Drift detection against your IaC repo.
Webhooks + event streams
Real-time event streams via webhooks or Kafka topics. Stream findings into your SIEM, your data warehouse, your incident response system.

Engineer working with the Vault API + Terraform

Stream findings into your data warehouse

Real-time webhooks → Kafka → Snowflake

Customers run security analytics inside their data warehouse. Vault webhooks plus a 10-line Kafka consumer feed Snowflake / BigQuery / Databricks in near-real-time.

vault-webhook-handler.ts

// Vault webhook handler · Node + Kafka producer
import { Kafka } from "kafkajs";

const kafka = new Kafka({ clientId: "vault-stream", brokers: ["kafka:9092"] });
const producer = kafka.producer();
await producer.connect();

app.post("/webhooks/vault", async (req, res) => {
  const { signature, body } = req;

  if (!verifySignature(signature, body)) {
    return res.status(401).send("invalid signature");
  }

  await producer.send({
    topic: "security.findings",
    messages: [{ key: body.findingId, value: JSON.stringify(body) }],
  });

  res.status(204).end();
});