DataDog · maycmlee · Mar 31, 2025 · Mar 31, 2025 · Apr 1, 2025 · Apr 7, 2025
@@ -5523,10 +5523,10 @@ menu:
       parent: observability_pipelines_destinations
       identifier: observability_pipelines_elasticsearch
       weight: 906
-    - name: Google Chronicle
-      url: observability_pipelines/destinations/google_chronicle
+    - name: Google SecOps
+      url: observability_pipelines/destinations/google_secops/
       parent: observability_pipelines_destinations
-      identifier: observability_pipelines_google_chronicle
+      identifier: observability_pipelines_google_secops
       weight: 907
     - name: Google Cloud Storage
       identifier: observability_pipelines_google_cloud_storage

@@ -28,7 +28,7 @@ Select and set up your destinations when you [set up a pipeline][1]. This is ste
     {{< nextlink href="observability_pipelines/destinations/crowdstrike_ng_siem" >}}CrowdStrike Next-Gen SIEM{{< /nextlink >}}
     {{< nextlink href="observability_pipelines/destinations/datadog_logs" >}}Datadog Logs{{< /nextlink >}}
     {{< nextlink href="observability_pipelines/destinations/elasticsearch" >}}Elasticsearch{{< /nextlink >}}
-    {{< nextlink href="observability_pipelines/destinations/google_chronicle" >}}Google Chronicle{{< /nextlink >}}
+    {{< nextlink href="observability_pipelines/destinations/google_secops" >}}Google SecOps{{< /nextlink >}}
     {{< nextlink href="observability_pipelines/destinations/google_cloud_storage" >}}Google Cloud Storage{{< /nextlink >}}
     {{< nextlink href="observability_pipelines/destinations/new_relic" >}}New Relic{{< /nextlink >}}
     {{< nextlink href="observability_pipelines/destinations/microsoft_sentinel" >}}Microsoft Sentinel{{< /nextlink >}}
@@ -53,7 +53,7 @@ The following table lists the destinations and fields that support template synt
 | Amazon S3         | Prefix                              | The Worker creates a folder named `OP_UNRESOLVED_TEMPLATE_LOGS/` and writes the logs there.                                |
 | Azure Blob        | Prefix                              | The Worker creates a folder named `OP_UNRESOLVED_TEMPLATE_LOGS/` and writes the logs there.                                |
 | Elasticsearch     | Source type                         | The Worker writes logs to the `datadog-op` index.                                                                          |
-| Google Chronicle  | Log type                            | Defaults to `DATADOG` log type.                                                                                            |
+| Google SecOps  | Log type                            | Defaults to `DATADOG` log type.                                                                                            |
 | Google Cloud      | Prefix                              | The Worker creates a folder named `OP_UNRESOLVED_TEMPLATE_LOGS/` and writes the logs there.                                |
 | Opensearch        | Index                               | The Worker writes logs to the `datadog-op` index.                                                                          |
 | Splunk HEC        | Index<br>Source type                | The Worker sends the logs to the default index configured in Splunk.<br>The Worker defaults to the `httpevent` sourcetype. |

@@ -1,20 +1,20 @@
 ---
-title: Google Chronicle Destination
+title: Google SecOps Destination
 disable_toc: false
 ---
-Use Observability Pipelines' Google Chronicle destination to send logs to Google Chronicle.
+Use Observability Pipelines' Google SecOps destination to send logs to Google SecOps.
 
 ## Setup
 
-Set up the Google Chronicle destination and its environment variables when you [set up a pipeline][1]. The information below is configured in the pipelines UI.
+Set up the Google SecOps destination and its environment variables when you [set up a pipeline][1]. The information below is configured in the pipelines UI.
 
 ### Set up the destination
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 ### Set the environment variables
 
-{{% observability_pipelines/configure_existing_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/configure_existing_pipelines/destination_env_vars/google_secops %}}
 
 ### How the destination works
 

@@ -99,9 +99,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -304,9 +304,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -98,9 +98,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -303,9 +303,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -102,9 +102,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -306,9 +306,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -103,9 +103,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -309,9 +309,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -100,9 +100,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -304,9 +304,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -101,9 +101,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -307,9 +307,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -98,9 +98,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -303,9 +303,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -99,9 +99,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -307,9 +307,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -99,9 +99,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -304,9 +304,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -101,9 +101,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -306,9 +306,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -101,9 +101,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -306,9 +306,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -101,9 +101,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -306,9 +306,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -102,9 +102,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -308,9 +308,9 @@ Follow the instructions for the cloud provider you are using to archive your log
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}

@@ -50,9 +50,9 @@ Enter the following information based on your selected logs destinations.
 {{% observability_pipelines/destination_settings/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_settings/chronicle %}}
+{{% observability_pipelines/destination_settings/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}
@@ -257,9 +257,9 @@ To set up the destination, follow the instructions for the cloud provider you ar
 {{% observability_pipelines/destination_env_vars/amazon_security_lake %}}
 
 {{% /tab %}} -->
-{{% tab "Chronicle" %}}
+{{% tab "Google SecOps" %}}
 
-{{% observability_pipelines/destination_env_vars/chronicle %}}
+{{% observability_pipelines/destination_env_vars/google_secops %}}
 
 {{% /tab %}}
 {{% tab "CrowdStrike NG-SIEM" %}}