Having more robust trigger/email features for the Huntress SIEM product would be amazing. The logs and query functionality is there, but right now only Account Admins can schedule queries and the email only goes to them. As one of our Technical Account Managers (with Security Admin Huntress role), I'd like to be able to make custom SIEM monitors/triggers for our clients that can send a custom email message to the email of our choosing (i.e., service desk team). Sometimes these alerts are non-security-related but need some action item taken. As far as a SIEM, Huntress currently has the Security Information half and it would be super beneficial to add more to the Event Management!

I would also like to create custom alerts for non-intrusion related items. One of our clients requested alerting off of some syslog data we've been seeing, and sadly we're unable to assist until a change like this occurs.