Re: What exactly is Bindplane used for?

secopskay · 03-26-2025 05:58 AM

Do you have to use Bindplane if you are migrating to Google Secops.

kentphelps

You don't need it as there are other ways native to SecOps to ingest data but it leverages the Open Telemetry Standard to broaden the sources of data that SecOps can ingest. See for more info: https://cloud.google.com/chronicle/docs/ingestion/use-bindplane-agent

ashnaiku

BindPlane is tightly integrated with Google SecOps and is a primary method for data ingestion.

Included for Google SecOps Customers: All Google SecOps customers have access to BindPlane (Google Edition) . Google SecOps Enterprise Plus customers get BindPlane Enterprise (Google Edition).
Purpose: BindPlane facilitates the collection, processing, and forwarding of security-relevant data to Google SecOps. It acts as a unified telemetry pipeline built on the OpenTelemetry standard.
Key Features for SecOps Integration:
- Standardized Data Collection
- OpenTelemetry Native
- Centralized Management
- Real-time Monitoring
- Alerting and Notifications
- Configuration Management
- Google SecOps Standardization Processor
- Multiple Ingestion Methods

hzmndt

To manage the Bindplance Agent, you will need ot have Bindplance OP, you can use either cloud version or On-prem version .

Note: Bindplane OP Cloud is also available for Google customers. Download the free version and email support@observiq.com to upgrade that to the Google version.