We'd like to ingest security events from ForcePoint One (formerly Bitglass), but there is no ArcSight Connector that currently supports it. Bitglass does not support syslog forwarding, but does have an API that third-parties can use to pull logs.
According to Bitglass, they claim that they have integrated with ArcSight before (see pg. 2 of CDFY21Q3BitglassTechnologyPartnersandIntegrations.pdf), but I have confirmed with ArcSight support that no such integration currently exists.
We'd like to request a Connector that would be able to pull security events from Bitglass using their API.