Tines

Strong security and effective monitoring are critical for maintaining trust, minimizing risk, and ensuring reliable operations in Tines. This guide outlines key best practices for audit logging and alerting, helping teams stay proactive and secure in their automation flows.

If applicable, forward all of your <a href="https://www.tines.com/api/audit-logs/" rel="nofollow noopener noreferrer" target="_blank">audit logs</a> to your SIEM tool. We recommend using your SIEM tool to generate appropriate alerts and pipe alerts back to Tines to take action on.

Sending audit logs to your SIEM centralizes visibility and allows your security team to detect and respond to activity in real time. It also supports compliance requirements and enables historical investigation when needed.

<b>Note:</b> Need some inspiration? Here are a few templates from our story library to help you get started!

- <a href="https://www.tines.com/library/stories/1251311/?name=ingest-tines-audit-logs-into-datadog" rel="nofollow noopener noreferrer" target="_blank">Ingest Tines audit logs into Datadog</a>
- <a href="https://www.tines.com/library/stories/1286491/?name=ingest-tines-audit-logs-into-snowflake" rel="nofollow noopener noreferrer" target="_blank">Ingest Tines audit logs into Snowflake</a>
- <a href="https://www.tines.com/library/stories/1111551/?name=ingest-tines-audit-logs-into-splunk" rel="nofollow noopener noreferrer" target="_blank">Ingest Tines audit logs in Splunk</a>

Send <a href="https://explained.tines.com/en/articles/7733319-how-can-i-monitor-actions-in-tines">action/story monitoring alerts</a> to a Tines story that alerts builders on failures in their stories. Monitoring alerts help teams quickly identify and fix issues in their stories. Routing those alerts into a Tines story keeps the response automated and ensures failures don’t go unnoticed.

We recommend building a <a href="https://www.tines.com/docs/stories/" rel="nofollow noopener noreferrer" target="_blank">story</a> to monitor audit logs for unusual activity. This adds an extra layer of automated threat detection, especially useful for large teams or high-security environments. It helps spot potential misuse early, even if it slips past manual review.

<a href="https://www.tines.com/blog/optimizing-tines-building-efficiently/" rel="nofollow noopener noreferrer" target="_blank">Optimizing Tines Stories - Tips and Tricks for Building Efficiently</a>

<a href="https://www.tines.com/blog/how-to-optimize-tines-stories-managing-stories/" rel="nofollow noopener noreferrer" target="_blank">How to Optimize Tines Stories - Tips and Tricks for Managing Stories Efficiently</a>

<a href="https://www.tines.com/tines-security-best-practices/" rel="nofollow noopener noreferrer" target="_blank">Tines security best practices</a>

- <a href="https://www.tines.com/blog/optimizing-tines-building-efficiently/" rel="nofollow noopener noreferrer" target="_blank">Optimizing Tines Stories - Tips and Tricks for Building Efficiently</a>
- <a href="https://www.tines.com/blog/how-to-optimize-tines-stories-managing-stories/" rel="nofollow noopener noreferrer" target="_blank">How to Optimize Tines Stories - Tips and Tricks for Managing Stories Efficiently</a>
- <a href="https://www.tines.com/tines-security-best-practices/" rel="nofollow noopener noreferrer" target="_blank">Tines security best practices</a>

Identify common best practices for securing your Tines tenant.

Best practices for security and monitoring

University

Story Library

What's New

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Best practices for security and monitoring

Overview

Best practices

Utilize SIEM

Set up monitoring alerts

Monitor user activity

Additional resources