Tego was designed to enhance SIEM platforms like Splunk Cloud, Splunk Enterprise, and Elastic by leveraging the data already being collected by the SIEM and applying threat correlation and hunting capabilities to the data collected. By keeping SecOps inside the same SIEM environment they monitor round-the-clock in, there's no wasted time or duplication of costly data ingest for a separate platform.
By augmenting your SIEM with Tego, you're pouring rocket fuel into your SIEM by enhancing its functionality and adding threat correlation and hunting capabilities to your existing data.
