diff --git a/Packs/Jira/.secrets-ignore b/Packs/Jira/.secrets-ignore
index 85c79e21232c..8b2461885667 100644
--- a/Packs/Jira/.secrets-ignore
+++ b/Packs/Jira/.secrets-ignore
@@ -1,3 +1,5 @@
 docs.atlassian.com
 https://test.atlassian.net
-https://test2.atlassian.net
\ No newline at end of file
+https://test2.atlassian.net
+user@atlassian.com
+newuser@atlassian.com
\ No newline at end of file
diff --git a/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector.py b/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector.py
new file mode 100644
index 000000000000..ce86172a93c7
--- /dev/null
+++ b/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector.py
@@ -0,0 +1,202 @@
+from enum import Enum
+import urllib3
+from CommonServerPython import *
+import demistomock as demisto
+from pydantic import BaseConfig, BaseModel, AnyUrl, Json, Field  # pylint: disable=no-name-in-module
+import requests
+from requests.auth import HTTPBasicAuth
+import dateparser
+from datetime import datetime
+
+urllib3.disable_warnings()
+
+DATETIME_FORMAT = "%Y-%m-%dT%H:%M:%S.%f"
+
+
+class Method(str, Enum):
+    GET = 'GET'
+    POST = 'POST'
+    PUT = 'PUT'
+    HEAD = 'HEAD'
+    PATCH = 'PATCH'
+    DELETE = 'DELETE'
+
+
+class Args(BaseModel):
+    from_day = demisto.params().get('first_fetch', '3 days')
+    default_from_day = datetime.now() - timedelta(days=3)
+    from_: str = Field(
+        datetime.strftime(dateparser.parse(from_day, settings={'TIMEZONE': 'UTC'}) or default_from_day, DATETIME_FORMAT),
+        alias='from'
+    )
+    limit: int = 1000
+    offset: int = 0
+
+
+class ReqParams(BaseModel):
+    from_day = demisto.params().get('first_fetch', '3 days')
+    default_from_day = datetime.now() - timedelta(days=3)
+    from_: str = Field(
+        datetime.strftime(dateparser.parse(from_day, settings={'TIMEZONE': 'UTC'}) or default_from_day, DATETIME_FORMAT),
+        alias='from'
+    )
+    limit: int = 1000
+    offset: int = 0
+
+
+class Request(BaseModel):
+    method: Method = Method.GET
+    url: AnyUrl
+    headers: Union[Json, dict] = {}
+    params: ReqParams
+    insecure: bool = Field(not demisto.params().get('insecure', False), alias='verify')
+    proxy: bool = Field(demisto.params().get('proxy', False), alias='proxies')
+    data: Optional[str]
+    auth: Optional[HTTPBasicAuth] = Field(
+        HTTPBasicAuth(
+            demisto.params().get('credentials', {}).get('identifier'),
+            demisto.params().get('credentials', {}).get('password')
+        )
+    )
+
+    class Config(BaseConfig):
+        arbitrary_types_allowed = True
+
+
+class Client:
+    def __init__(self, request: Request, session=requests.Session()):
+        self.request = request
+        self.session = session
+        self._set_proxy()
+        self._set_cert_verification()
+
+    def __del__(self):
+        try:
+            self.session.close()
+        except AttributeError as err:
+            demisto.debug(f'Ignore exceptions raised due to session not used by the client. {err}')
+
+    def call(self) -> requests.Response:
+        try:
+            response = self.session.request(**self.request.dict(by_alias=True))
+            response.raise_for_status()
+            return response
+        except Exception as exc:
+            msg = f'Something went wrong with the http call {exc}'
+            LOG(msg)
+            raise DemistoException(msg) from exc
+
+    def prepare_next_run(self, offset: int):
+        self.request.params.offset += offset
+
+    def _set_cert_verification(self):
+        if not self.request.insecure:
+            skip_cert_verification()
+
+    def _set_proxy(self):
+        if self.request.proxy:
+            ensure_proxy_has_http_prefix()
+        else:
+            skip_proxy()
+
+
+class GetEvents:
+    def __init__(self, client: Client) -> None:
+        self.client = client
+
+    def call(self) -> list:
+        resp = self.client.call()
+        return resp.json().get('records', [])
+
+    def _iter_events(self):
+        events = self.call()
+
+        while events:
+            yield events
+
+            self.client.prepare_next_run(self.client.request.params.limit)
+            events = self.call()
+
+    def run(self, max_fetch: int = 100) -> List[dict]:
+        stored = []
+        last_run = demisto.getLastRun()
+
+        for logs in self._iter_events():
+            stored.extend(logs)
+
+            if len(stored) > max_fetch:
+                last_run['offset'] = last_run.get('offset', 0) + max_fetch
+                demisto.setLastRun(last_run)
+                return stored[:max_fetch]
+
+        last_run['offset'] = 0
+        demisto.setLastRun(last_run)
+        return stored
+
+    @staticmethod
+    def set_next_run(log: dict) -> dict:
+        """
+            Handles and saves the values required for next fetch.
+
+            There are 3 values:
+                * from: From which time to fetch
+                * next_run: Time of creation of the last event fetched
+                * offset: The size of the offset (how many events to skip)
+
+            Since the rest API returns the events in desc order (the last event returns first), We need to save the last
+            event time creation in some variable (next_run) for the next fetches, in addition we need to save in another
+            variable (offset) the number of how many events we already fetched to skip them in the next fetch to avoid
+            duplicates, in addition we need to save the time (from) from when to fetch if there is still some incident
+            to fetch with offset
+        """
+        last_run = demisto.getLastRun()
+
+        if not last_run.get('next_time'):
+            last_time = log.get('created', '').removesuffix('+0000')
+            next_time = last_time[:-1] + str(int(last_time[-1]) + 1)
+
+            if last_run.get('offset'):
+                last_run['next_time'] = next_time
+            else:
+                last_run['from'] = next_time
+
+        else:
+            if not last_run.get('offset'):
+                last_run['from'] = last_run.pop('next_time')
+
+        return last_run
+
+
+def main():
+    # Args is always stronger. Get last run even stronger
+    demisto_params = demisto.params() | demisto.args() | demisto.getLastRun()
+
+    demisto_params['params'] = ReqParams.parse_obj(demisto_params)
+
+    request = Request.parse_obj(demisto_params)
+    client = Client(request)
+    get_events = GetEvents(client)
+    command = demisto.command()
+
+    if command == 'test-module':
+        get_events.run(max_fetch=1)
+        demisto.results('ok')
+
+    elif command in ('fetch-events', 'jira-get-events'):
+        events = get_events.run(int(demisto_params.get('max_fetch', 100)))
+        send_events_to_xsiam(events, 'Jira', 'jira')
+
+        if events:
+            demisto.setLastRun(get_events.set_next_run(events[0]))
+            demisto.debug(f'Last run set to {demisto.getLastRun()}')
+            if command == 'jira-get-events':
+                command_results = CommandResults(
+                    readable_output=tableToMarkdown('Jira Audit Records', events, removeNull=True,
+                                                    headerTransform=pascalToSpace),
+                    raw_response=events,
+                )
+                return_results(command_results)
+
+
+if __name__ in ('__main__', '__builtin__', 'builtins'):
+    main()
diff --git a/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector.yml b/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector.yml
new file mode 100644
index 000000000000..e6bb405754eb
--- /dev/null
+++ b/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector.yml
@@ -0,0 +1,64 @@
+category: Analytics & SIEM
+commonfields:
+  id: Jira Event Collector
+  version: -1
+configuration:
+- defaultvalue: https://<your-domain>.atlassian.net/rest/api/3/auditing/record
+  display: Server URL
+  name: url
+  required: true
+  type: 0
+- display: User name
+  additionalinfo: The user name (admin@example.com) and password
+  name: credentials
+  required: true
+  type: 9
+- defaultvalue: 3 days
+  display: First fetch time (<number> <time unit>, e.g., 12 hours, 1 day, 3 months). default is 3 days.
+  name: first_fetch
+  required: true
+  type: 0
+- defaultvalue: 100
+  display: The maximum number of events per fetch. Default is 100.
+  name: max_fetch
+  required: true
+  type: 0
+- display: Trust any certificate (not secure)
+  name: insecure
+  required: false
+  type: 8
+- display: Use system proxy settings
+  name: proxy
+  required: false
+  type: 8
+description: 'Jira logs event collector integration for XSIAM.'
+display: Jira Event Collector
+name: Jira Event Collector
+script:
+  commands:
+  - deprecated: false
+    description: 'Returns a list of audit records'
+    execution: false
+    name: jira-get-events
+    arguments:
+    - description: The maximum number of incidents per fetch. Default is 100.
+      isArray: true
+      name: max_fetch
+      required: false
+      secret: false
+    - description: First fetch time (<number> <time unit>, e.g., 12 hours, 1 day, 3 months). default is 3 days.
+      isArray: true
+      name: first_fetch
+      required: false
+      secret: false
+  runonce: false
+  script: '-'
+  isfetchevents: true
+  type: python
+  subtype: python3
+  dockerimage: demisto/fastapi:1.0.0.29406
+marketplaces:
+- marketplacev2
+fromversion: 6.5.0
+tests:
+- No tests (auto formatted)
diff --git a/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector_description.md b/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector_description.md
new file mode 100644
index 000000000000..e69de29bb2d1
diff --git a/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector_image.png b/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector_image.png
new file mode 100644
index 000000000000..4ac6414e6d65
Binary files /dev/null and b/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector_image.png differ
diff --git a/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector_test.py b/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector_test.py
new file mode 100644
index 000000000000..b7c25bb091d6
--- /dev/null
+++ b/Packs/Jira/Integrations/JiraEventCollector/JiraEventCollector_test.py
@@ -0,0 +1,130 @@
+import json
+import io
+import requests_mock
+from freezegun import freeze_time
+import demistomock as demisto
+
+
+DEMISTO_PARAMS = {
+    'method': 'GET',
+    'url': 'https://your.domain/rest/api/3/auditing/record',
+    'max_fetch': 100,
+    'first_fetch': '3 days',
+    'credentials': {
+        'identifier': 'admin@your.domain',
+        'password': '123456',
+    }
+}
+URL = 'https://your.domain/rest/api/3/auditing/record'
+FIRST_REQUESTS_PARAMS = 'from=2022-04-11T00:00:00.000000&limit=1000&offset=0'
+SECOND_REQUESTS_PARAMS = 'from=2022-04-11T00:00:00.000000&limit=1000&offset=1000'
+
+
+def util_load_json(path):
+    with io.open(path, mode='r', encoding='utf-8') as f:
+        return json.loads(f.read())
+
+
+def calculate_next_run(time):
+    next_time = time.removesuffix('+0000')
+    next_time_with_delta = next_time[:-1] + str(int(next_time[-1]) + 1)
+    return next_time_with_delta
+
+
+@freeze_time('2022-04-14T00:00:00Z')
+def test_fetch_incidents_few_incidents(mocker):
+    """
+    Given
+        - 3 events was created in Jira side in the last 3 days.
+    When
+        - fetch-events is running (with max_fetch set to 100).
+    Then
+        - Verify that all 3 events were created in XSIAM.
+        - Verify last_run was set as expected.
+    """
+
+    mocker.patch.object(demisto, 'params', return_value=DEMISTO_PARAMS)
+    mocker.patch.object(demisto, 'args', return_value={})
+    mocker.patch.object(demisto, 'command', return_value='jira-get-events')
+    last_run = mocker.patch.object(demisto, 'getLastRun', return_value={})
+    results = mocker.patch.object(demisto, 'results')
+    mocker.patch('JiraEventCollector.send_events_to_xsiam')
+
+    with requests_mock.Mocker() as m:
+        m.get(f'{URL}?{FIRST_REQUESTS_PARAMS}', json=util_load_json('test_data/events.json'))
+        m.get(f'{URL}?{SECOND_REQUESTS_PARAMS}', json={})
+
+        from JiraEventCollector import main
+        main()
+
+    events = results.call_args[0][0]['Contents']
+    assert last_run.return_value.get('from') == calculate_next_run(events[0]['created'])
+    assert not last_run.return_value.get('next_time')
+    assert last_run.return_value.get('offset') == 0
+    assert len(events) == 3
+
+
+@freeze_time('2022-04-14T00:00:00Z')
+def test_fetch_events_no_incidents(mocker):
+    """
+    Given
+        - No events was created in Jira side in the last 3 days.
+    When
+        - fetch-events is running.
+    Then
+        - Make sure no events was created in XSIAM.
+        - Make sure last_run was set as expected.
+    """
+
+    mocker.patch.object(demisto, 'params', return_value=DEMISTO_PARAMS)
+    mocker.patch.object(demisto, 'args', return_value={})
+    mocker.patch.object(demisto, 'command', return_value='jira-get-events')
+    last_run = mocker.patch.object(demisto, 'getLastRun', return_value={})
+    incidents = mocker.patch.object(demisto, 'incidents')
+    mocker.patch('JiraEventCollector.send_events_to_xsiam')
+
+    with requests_mock.Mocker() as m:
+        m.get(f'{URL}?{FIRST_REQUESTS_PARAMS}', json={})
+
+        from JiraEventCollector import main
+        main()
+
+    assert not last_run.return_value.get('from')
+    assert last_run.return_value.get('offset') == 0
+    assert not incidents.call_args
+
+
+@freeze_time('2022-04-14T00:00:00Z')
+def test_fetch_events_max_fetch_set_to_one(mocker):
+    """
+    Given
+        - 3 events was created in Jira side in the last 3 days.
+    When
+        - fetch-events is running (with max_fetch set to 1).
+    Then
+        - Verify that only 1 event were created in XSIAM.
+        - Verify last_run was set as expected.
+    """
+
+    params = DEMISTO_PARAMS
+    params['max_fetch'] = 1
+
+    mocker.patch.object(demisto, 'params', return_value=params)
+    mocker.patch.object(demisto, 'args', return_value={})
+    mocker.patch.object(demisto, 'command', return_value='jira-get-events')
+    last_run = mocker.patch.object(demisto, 'getLastRun', return_value={})
+    results = mocker.patch.object(demisto, 'results')
+    mocker.patch('JiraEventCollector.send_events_to_xsiam')
+
+    with requests_mock.Mocker() as m:
+        m.get(f'{URL}?{FIRST_REQUESTS_PARAMS}', json=util_load_json('test_data/events.json'))
+        m.get(f'{URL}?{SECOND_REQUESTS_PARAMS}', json={})
+
+        from JiraEventCollector import main
+        main()
+
+    events = results.call_args[0][0]['Contents']
+    assert not last_run.return_value.get('from')
+    assert last_run.return_value.get('next_time') == calculate_next_run(events[0]['created'])
+    assert last_run.return_value.get('offset') == 1
+    assert len(events) == 1
diff --git a/Packs/Jira/Integrations/JiraEventCollector/Pipfile b/Packs/Jira/Integrations/JiraEventCollector/Pipfile
new file mode 100644
index 000000000000..3523d3b6b93b
--- /dev/null
+++ b/Packs/Jira/Integrations/JiraEventCollector/Pipfile
@@ -0,0 +1,18 @@
+[[source]]
+name = "pypi"
+url = "https://pypi.org/simple"
+verify_ssl = true
+
+[dev-packages]
+pylint = "*"
+pytest = "==5.0.1"
+pytest-mock = "*"
+requests-mock = "*"
+pytest-asyncio = "*"
+
+[packages]
+pytest = "*"
+requests = "*"
+
+[requires]
+python_version = "3.7"
diff --git a/Packs/Jira/Integrations/JiraEventCollector/Pipfile.lock b/Packs/Jira/Integrations/JiraEventCollector/Pipfile.lock
new file mode 100644
index 000000000000..6bdb9313414e
--- /dev/null
+++ b/Packs/Jira/Integrations/JiraEventCollector/Pipfile.lock
@@ -0,0 +1,369 @@
+{
+    "_meta": {
+        "hash": {
+            "sha256": "278db815bec49c11262633d34305f9b33f09432a223bedd5329a04f758f78b55"
+        },
+        "pipfile-spec": 6,
+        "requires": {
+            "python_version": "3.7"
+        },
+        "sources": [
+            {
+                "name": "pypi",
+                "url": "https://pypi.org/simple",
+                "verify_ssl": true
+            }
+        ]
+    },
+    "default": {
+        "atomicwrites": {
+            "hashes": [
+                "sha256:03472c30eb2c5d1ba9227e4c2ca66ab8287fbfbbda3888aa93dc2e28fc6811b4",
+                "sha256:75a9445bac02d8d058d5e1fe689654ba5a6556a1dfd8ce6ec55a0ed79866cfa6"
+            ],
+            "version": "==1.3.0"
+        },
+        "attrs": {
+            "hashes": [
+                "sha256:69c0dbf2ed392de1cb5ec704444b08a5ef81680a61cb899dc08127123af36a79",
+                "sha256:f0b870f674851ecbfbbbd364d6b5cbdff9dcedbc7f3f5e18a6891057f21fe399"
+            ],
+            "version": "==19.1.0"
+        },
+        "certifi": {
+            "hashes": [
+                "sha256:e4f3620cfea4f83eedc95b24abd9cd56f3c4b146dd0177e83a21b4eb49e21e50",
+                "sha256:fd7c7c74727ddcf00e9acd26bba8da604ffec95bf1c2144e67aff7a8b50e6cef"
+            ],
+            "version": "==2019.9.11"
+        },
+        "chardet": {
+            "hashes": [
+                "sha256:84ab92ed1c4d4f16916e05906b6b75a6c0fb5db821cc65e70cbd64a3e2a5eaae",
+                "sha256:fc323ffcaeaed0e0a02bf4d117757b98aed530d9ed4531e3e15460124c106691"
+            ],
+            "version": "==3.0.4"
+        },
+        "idna": {
+            "hashes": [
+                "sha256:c357b3f628cf53ae2c4c05627ecc484553142ca23264e593d327bcde5e9c3407",
+                "sha256:ea8b7f6188e6fa117537c3df7da9fc686d485087abf6ac197f9c46432f7e4a3c"
+            ],
+            "version": "==2.8"
+        },
+        "importlib-metadata": {
+            "hashes": [
+                "sha256:652234b6ab8f2506ae58e528b6fbcc668831d3cc758e1bc01ef438d328b68cdb",
+                "sha256:6f264986fb88042bc1f0535fa9a557e6a376cfe5679dc77caac7fe8b5d43d05f"
+            ],
+            "markers": "python_version < '3.8'",
+            "version": "==0.22"
+        },
+        "more-itertools": {
+            "hashes": [
+                "sha256:409cd48d4db7052af495b09dec721011634af3753ae1ef92d2b32f73a745f832",
+                "sha256:92b8c4b06dac4f0611c0729b2f2ede52b2e1bac1ab48f089c7ddc12e26bb60c4"
+            ],
+            "version": "==7.2.0"
+        },
+        "packaging": {
+            "hashes": [
+                "sha256:a7ac867b97fdc07ee80a8058fe4435ccd274ecc3b0ed61d852d7d53055528cf9",
+                "sha256:c491ca87294da7cc01902edbe30a5bc6c4c28172b5138ab4e4aa1b9d7bfaeafe"
+            ],
+            "version": "==19.1"
+        },
+        "pluggy": {
+            "hashes": [
+                "sha256:0db4b7601aae1d35b4a033282da476845aa19185c1e6964b25cf324b5e4ec3e6",
+                "sha256:fa5fa1622fa6dd5c030e9cad086fa19ef6a0cf6d7a2d12318e10cb49d6d68f34"
+            ],
+            "version": "==0.13.0"
+        },
+        "py": {
+            "hashes": [
+                "sha256:64f65755aee5b381cea27766a3a147c3f15b9b6b9ac88676de66ba2ae36793fa",
+                "sha256:dc639b046a6e2cff5bbe40194ad65936d6ba360b52b3c3fe1d08a82dd50b5e53"
+            ],
+            "version": "==1.8.0"
+        },
+        "pyparsing": {
+            "hashes": [
+                "sha256:6f98a7b9397e206d78cc01df10131398f1c8b8510a2f4d97d9abd82e1aacdd80",
+                "sha256:d9338df12903bbf5d65a0e4e87c2161968b10d2e489652bb47001d82a9b028b4"
+            ],
+            "version": "==2.4.2"
+        },
+        "pytest": {
+            "hashes": [
+                "sha256:95d13143cc14174ca1a01ec68e84d76ba5d9d493ac02716fd9706c949a505210",
+                "sha256:b78fe2881323bd44fd9bd76e5317173d4316577e7b1cddebae9136a4495ec865"
+            ],
+            "index": "pypi",
+            "version": "==5.1.2"
+        },
+        "requests": {
+            "hashes": [
+                "sha256:11e007a8a2aa0323f5a921e9e6a2d7e4e67d9877e85773fba9ba6419025cbeb4",
+                "sha256:9cf5292fcd0f598c671cfc1e0d7d1a7f13bb8085e9a590f48c010551dc6c4b31"
+            ],
+            "index": "pypi",
+            "version": "==2.22.0"
+        },
+        "six": {
+            "hashes": [
+                "sha256:3350809f0555b11f552448330d0b52d5f24c91a322ea4a15ef22629740f3761c",
+                "sha256:d16a0141ec1a18405cd4ce8b4613101da75da0e9a7aec5bdd4fa804d0e0eba73"
+            ],
+            "version": "==1.12.0"
+        },
+        "urllib3": {
+            "hashes": [
+                "sha256:b246607a25ac80bedac05c6f282e3cdaf3afb65420fd024ac94435cabe6e18d1",
+                "sha256:dbe59173209418ae49d485b87d1681aefa36252ee85884c31346debd19463232"
+            ],
+            "version": "==1.25.3"
+        },
+        "wcwidth": {
+            "hashes": [
+                "sha256:3df37372226d6e63e1b1e1eda15c594bca98a22d33a23832a90998faa96bc65e",
+                "sha256:f4ebe71925af7b40a864553f761ed559b43544f8f71746c2d756c7fe788ade7c"
+            ],
+            "version": "==0.1.7"
+        },
+        "zipp": {
+            "hashes": [
+                "sha256:3718b1cbcd963c7d4c5511a8240812904164b7f381b647143a89d3b98f9bcd8e",
+                "sha256:f06903e9f1f43b12d371004b4ac7b06ab39a44adc747266928ae6debfa7b3335"
+            ],
+            "version": "==0.6.0"
+        }
+    },
+    "develop": {
+        "astroid": {
+            "hashes": [
+                "sha256:6560e1e1749f68c64a4b5dee4e091fce798d2f0d84ebe638cf0e0585a343acf4",
+                "sha256:b65db1bbaac9f9f4d190199bb8680af6f6f84fd3769a5ea883df8a91fe68b4c4"
+            ],
+            "version": "==2.2.5"
+        },
+        "atomicwrites": {
+            "hashes": [
+                "sha256:03472c30eb2c5d1ba9227e4c2ca66ab8287fbfbbda3888aa93dc2e28fc6811b4",
+                "sha256:75a9445bac02d8d058d5e1fe689654ba5a6556a1dfd8ce6ec55a0ed79866cfa6"
+            ],
+            "version": "==1.3.0"
+        },
+        "attrs": {
+            "hashes": [
+                "sha256:69c0dbf2ed392de1cb5ec704444b08a5ef81680a61cb899dc08127123af36a79",
+                "sha256:f0b870f674851ecbfbbbd364d6b5cbdff9dcedbc7f3f5e18a6891057f21fe399"
+            ],
+            "version": "==19.1.0"
+        },
+        "certifi": {
+            "hashes": [
+                "sha256:e4f3620cfea4f83eedc95b24abd9cd56f3c4b146dd0177e83a21b4eb49e21e50",
+                "sha256:fd7c7c74727ddcf00e9acd26bba8da604ffec95bf1c2144e67aff7a8b50e6cef"
+            ],
+            "version": "==2019.9.11"
+        },
+        "chardet": {
+            "hashes": [
+                "sha256:84ab92ed1c4d4f16916e05906b6b75a6c0fb5db821cc65e70cbd64a3e2a5eaae",
+                "sha256:fc323ffcaeaed0e0a02bf4d117757b98aed530d9ed4531e3e15460124c106691"
+            ],
+            "version": "==3.0.4"
+        },
+        "idna": {
+            "hashes": [
+                "sha256:c357b3f628cf53ae2c4c05627ecc484553142ca23264e593d327bcde5e9c3407",
+                "sha256:ea8b7f6188e6fa117537c3df7da9fc686d485087abf6ac197f9c46432f7e4a3c"
+            ],
+            "version": "==2.8"
+        },
+        "importlib-metadata": {
+            "hashes": [
+                "sha256:652234b6ab8f2506ae58e528b6fbcc668831d3cc758e1bc01ef438d328b68cdb",
+                "sha256:6f264986fb88042bc1f0535fa9a557e6a376cfe5679dc77caac7fe8b5d43d05f"
+            ],
+            "markers": "python_version < '3.8'",
+            "version": "==0.22"
+        },
+        "isort": {
+            "hashes": [
+                "sha256:54da7e92468955c4fceacd0c86bd0ec997b0e1ee80d97f67c35a78b719dccab1",
+                "sha256:6e811fcb295968434526407adb8796944f1988c5b65e8139058f2014cbe100fd"
+            ],
+            "version": "==4.3.21"
+        },
+        "lazy-object-proxy": {
+            "hashes": [
+                "sha256:02b260c8deb80db09325b99edf62ae344ce9bc64d68b7a634410b8e9a568edbf",
+                "sha256:18f9c401083a4ba6e162355873f906315332ea7035803d0fd8166051e3d402e3",
+                "sha256:1f2c6209a8917c525c1e2b55a716135ca4658a3042b5122d4e3413a4030c26ce",
+                "sha256:2f06d97f0ca0f414f6b707c974aaf8829c2292c1c497642f63824119d770226f",
+                "sha256:616c94f8176808f4018b39f9638080ed86f96b55370b5a9463b2ee5c926f6c5f",
+                "sha256:63b91e30ef47ef68a30f0c3c278fbfe9822319c15f34b7538a829515b84ca2a0",
+                "sha256:77b454f03860b844f758c5d5c6e5f18d27de899a3db367f4af06bec2e6013a8e",
+                "sha256:83fe27ba321e4cfac466178606147d3c0aa18e8087507caec78ed5a966a64905",
+                "sha256:84742532d39f72df959d237912344d8a1764c2d03fe58beba96a87bfa11a76d8",
+                "sha256:874ebf3caaf55a020aeb08acead813baf5a305927a71ce88c9377970fe7ad3c2",
+                "sha256:9f5caf2c7436d44f3cec97c2fa7791f8a675170badbfa86e1992ca1b84c37009",
+                "sha256:a0c8758d01fcdfe7ae8e4b4017b13552efa7f1197dd7358dc9da0576f9d0328a",
+                "sha256:a4def978d9d28cda2d960c279318d46b327632686d82b4917516c36d4c274512",
+                "sha256:ad4f4be843dace866af5fc142509e9b9817ca0c59342fdb176ab6ad552c927f5",
+                "sha256:ae33dd198f772f714420c5ab698ff05ff900150486c648d29951e9c70694338e",
+                "sha256:b4a2b782b8a8c5522ad35c93e04d60e2ba7f7dcb9271ec8e8c3e08239be6c7b4",
+                "sha256:c462eb33f6abca3b34cdedbe84d761f31a60b814e173b98ede3c81bb48967c4f",
+                "sha256:fd135b8d35dfdcdb984828c84d695937e58cc5f49e1c854eb311c4d6aa03f4f1"
+            ],
+            "version": "==1.4.2"
+        },
+        "mccabe": {
+            "hashes": [
+                "sha256:ab8a6258860da4b6677da4bd2fe5dc2c659cff31b3ee4f7f5d64e79735b80d42",
+                "sha256:dd8d182285a0fe56bace7f45b5e7d1a6ebcbf524e8f3bd87eb0f125271b8831f"
+            ],
+            "version": "==0.6.1"
+        },
+        "more-itertools": {
+            "hashes": [
+                "sha256:409cd48d4db7052af495b09dec721011634af3753ae1ef92d2b32f73a745f832",
+                "sha256:92b8c4b06dac4f0611c0729b2f2ede52b2e1bac1ab48f089c7ddc12e26bb60c4"
+            ],
+            "version": "==7.2.0"
+        },
+        "packaging": {
+            "hashes": [
+                "sha256:a7ac867b97fdc07ee80a8058fe4435ccd274ecc3b0ed61d852d7d53055528cf9",
+                "sha256:c491ca87294da7cc01902edbe30a5bc6c4c28172b5138ab4e4aa1b9d7bfaeafe"
+            ],
+            "version": "==19.1"
+        },
+        "pluggy": {
+            "hashes": [
+                "sha256:0db4b7601aae1d35b4a033282da476845aa19185c1e6964b25cf324b5e4ec3e6",
+                "sha256:fa5fa1622fa6dd5c030e9cad086fa19ef6a0cf6d7a2d12318e10cb49d6d68f34"
+            ],
+            "version": "==0.13.0"
+        },
+        "py": {
+            "hashes": [
+                "sha256:64f65755aee5b381cea27766a3a147c3f15b9b6b9ac88676de66ba2ae36793fa",
+                "sha256:dc639b046a6e2cff5bbe40194ad65936d6ba360b52b3c3fe1d08a82dd50b5e53"
+            ],
+            "version": "==1.8.0"
+        },
+        "pylint": {
+            "hashes": [
+                "sha256:5d77031694a5fb97ea95e828c8d10fc770a1df6eb3906067aaed42201a8a6a09",
+                "sha256:723e3db49555abaf9bf79dc474c6b9e2935ad82230b10c1138a71ea41ac0fff1"
+            ],
+            "index": "pypi",
+            "version": "==2.3.1"
+        },
+        "pyparsing": {
+            "hashes": [
+                "sha256:6f98a7b9397e206d78cc01df10131398f1c8b8510a2f4d97d9abd82e1aacdd80",
+                "sha256:d9338df12903bbf5d65a0e4e87c2161968b10d2e489652bb47001d82a9b028b4"
+            ],
+            "version": "==2.4.2"
+        },
+        "pytest": {
+            "hashes": [
+                "sha256:95d13143cc14174ca1a01ec68e84d76ba5d9d493ac02716fd9706c949a505210",
+                "sha256:b78fe2881323bd44fd9bd76e5317173d4316577e7b1cddebae9136a4495ec865"
+            ],
+            "index": "pypi",
+            "version": "==5.1.2"
+        },
+        "pytest-asyncio": {
+            "hashes": [
+                "sha256:9fac5100fd716cbecf6ef89233e8590a4ad61d729d1732e0a96b84182df1daaf",
+                "sha256:d734718e25cfc32d2bf78d346e99d33724deeba774cc4afdf491530c6184b63b"
+            ],
+            "index": "pypi",
+            "version": "==0.10.0"
+        },
+        "pytest-mock": {
+            "hashes": [
+                "sha256:43ce4e9dd5074993e7c021bb1c22cbb5363e612a2b5a76bc6d956775b10758b7",
+                "sha256:5bf5771b1db93beac965a7347dc81c675ec4090cb841e49d9d34637a25c30568"
+            ],
+            "index": "pypi",
+            "version": "==1.10.4"
+        },
+        "requests": {
+            "hashes": [
+                "sha256:11e007a8a2aa0323f5a921e9e6a2d7e4e67d9877e85773fba9ba6419025cbeb4",
+                "sha256:9cf5292fcd0f598c671cfc1e0d7d1a7f13bb8085e9a590f48c010551dc6c4b31"
+            ],
+            "index": "pypi",
+            "version": "==2.22.0"
+        },
+        "requests-mock": {
+            "hashes": [
+                "sha256:510df890afe08d36eca5bb16b4aa6308a6f85e3159ad3013bac8b9de7bd5a010",
+                "sha256:88d3402dd8b3c69a9e4f9d3a73ad11b15920c6efd36bc27bf1f701cf4a8e4646"
+            ],
+            "index": "pypi",
+            "version": "==1.7.0"
+        },
+        "six": {
+            "hashes": [
+                "sha256:3350809f0555b11f552448330d0b52d5f24c91a322ea4a15ef22629740f3761c",
+                "sha256:d16a0141ec1a18405cd4ce8b4613101da75da0e9a7aec5bdd4fa804d0e0eba73"
+            ],
+            "version": "==1.12.0"
+        },
+        "typed-ast": {
+            "hashes": [
+                "sha256:18511a0b3e7922276346bcb47e2ef9f38fb90fd31cb9223eed42c85d1312344e",
+                "sha256:262c247a82d005e43b5b7f69aff746370538e176131c32dda9cb0f324d27141e",
+                "sha256:2b907eb046d049bcd9892e3076c7a6456c93a25bebfe554e931620c90e6a25b0",
+                "sha256:354c16e5babd09f5cb0ee000d54cfa38401d8b8891eefa878ac772f827181a3c",
+                "sha256:4e0b70c6fc4d010f8107726af5fd37921b666f5b31d9331f0bd24ad9a088e631",
+                "sha256:630968c5cdee51a11c05a30453f8cd65e0cc1d2ad0d9192819df9978984529f4",
+                "sha256:66480f95b8167c9c5c5c87f32cf437d585937970f3fc24386f313a4c97b44e34",
+                "sha256:71211d26ffd12d63a83e079ff258ac9d56a1376a25bc80b1cdcdf601b855b90b",
+                "sha256:95bd11af7eafc16e829af2d3df510cecfd4387f6453355188342c3e79a2ec87a",
+                "sha256:bc6c7d3fa1325a0c6613512a093bc2a2a15aeec350451cbdf9e1d4bffe3e3233",
+                "sha256:cc34a6f5b426748a507dd5d1de4c1978f2eb5626d51326e43280941206c209e1",
+                "sha256:d755f03c1e4a51e9b24d899561fec4ccaf51f210d52abdf8c07ee2849b212a36",
+                "sha256:d7c45933b1bdfaf9f36c579671fec15d25b06c8398f113dab64c18ed1adda01d",
+                "sha256:d896919306dd0aa22d0132f62a1b78d11aaf4c9fc5b3410d3c666b818191630a",
+                "sha256:ffde2fbfad571af120fcbfbbc61c72469e72f550d676c3342492a9dfdefb8f12"
+            ],
+            "markers": "implementation_name == 'cpython'",
+            "version": "==1.4.0"
+        },
+        "urllib3": {
+            "hashes": [
+                "sha256:b246607a25ac80bedac05c6f282e3cdaf3afb65420fd024ac94435cabe6e18d1",
+                "sha256:dbe59173209418ae49d485b87d1681aefa36252ee85884c31346debd19463232"
+            ],
+            "version": "==1.25.3"
+        },
+        "wcwidth": {
+            "hashes": [
+                "sha256:3df37372226d6e63e1b1e1eda15c594bca98a22d33a23832a90998faa96bc65e",
+                "sha256:f4ebe71925af7b40a864553f761ed559b43544f8f71746c2d756c7fe788ade7c"
+            ],
+            "version": "==0.1.7"
+        },
+        "wrapt": {
+            "hashes": [
+                "sha256:565a021fd19419476b9362b05eeaa094178de64f8361e44468f9e9d7843901e1"
+            ],
+            "version": "==1.11.2"
+        },
+        "zipp": {
+            "hashes": [
+                "sha256:3718b1cbcd963c7d4c5511a8240812904164b7f381b647143a89d3b98f9bcd8e",
+                "sha256:f06903e9f1f43b12d371004b4ac7b06ab39a44adc747266928ae6debfa7b3335"
+            ],
+            "version": "==0.6.0"
+        }
+    }
+}
diff --git a/Packs/Jira/Integrations/JiraEventCollector/README.md b/Packs/Jira/Integrations/JiraEventCollector/README.md
new file mode 100644
index 000000000000..8566a8a8c29e
--- /dev/null
+++ b/Packs/Jira/Integrations/JiraEventCollector/README.md
@@ -0,0 +1,106 @@
+This integration was integrated and tested with version 3 of Jira Event Collector rest API.
+
+## Configure Jira Event Collector on Cortex XSIAM
+
+1. Navigate to **Settings** > **Configurations** > **Data Collection** > **Automations & Feed Integrations**.
+2. Search for Jira Event Collector.
+3. Click **Add instance** to create and configure a new integration instance.
+
+    | **Parameter** | **Description** | **Required** |
+    | --- | --- | --- |
+    | Server URL |  | True |
+    | User name | The user name. For example, `admin@example.com` | True |
+    | Password |  | True |
+    | First fetch time |(&lt;number&gt; &lt;time unit&gt;. For example, 12 hours, 1 day, 3 months). Default is 3 days. |  | True |
+    | The maximum number of incidents per fetch. | Default is 100 maximum is 1000. |  | True |
+    | Trust any certificate (not secure) |  | False |
+    | Use system proxy settings |  | False |
+
+4. Click **Test** to validate the URLs, token, and connection.
+
+## Commands
+
+You can execute these commands from the War Room, as part of an automation, or in a playbook.
+After you successfully execute a command, a DBot message appears in the War Room with the command details.
+
+### jira-get-events
+
+***
+
+#### Base Command
+
+`jira-get-events`
+
+#### Input
+
+| **Argument Name** | **Description**                                                                                          | **Required** |
+|-------------------|----------------------------------------------------------------------------------------------------------|--------------|
+| max_fetch         | The maximum number of events per fetch. Default is 100 maximum is 1000.                                  | Optional     | 
+| first_fetch       | First fetch time (&lt;number&gt; &lt;time unit&gt;, e.g., 12 hours, 1 day, 3 months). default is 3 days. | Optional     | 
+
+#### Command example
+
+```!jira-get-events max_fetch=2```
+
+#### Context Example
+
+```json
+{
+    "Jira": {
+        "Records": [
+            {
+                "associatedItems": [
+                    {
+                        "id": "ug:123456-123456-123456",
+                        "name": "ug:123456-123456-123456",
+                        "parentId": "111",
+                        "parentName": "com.atlassian.crowd.directory.example",
+                        "typeName": "USER"
+                    }
+                ],
+                "category": "group management",
+                "created": "2022-04-24T16:28:53.146+0000",
+                "eventSource": "",
+                "id": 1111,
+                "objectItem": {
+                    "name": "jira-servicemanagement-users",
+                    "parentId": "111",
+                    "parentName": "com.atlassian.crowd.directory.example",
+                    "typeName": "GROUP"
+                },
+                "summary": "User added to group"
+            },
+            {
+                "associatedItems": [
+                    {
+                        "id": "ug:123456-123456-123457",
+                        "name": "ug:123456-123456-123457",
+                        "parentId": "111",
+                        "parentName": "com.atlassian.crowd.directory.example",
+                        "typeName": "USER"
+                    }
+                ],
+                "category": "group management",
+                "created": "2022-04-24T16:28:53.098+0000",
+                "eventSource": "",
+                "id": 1110,
+                "objectItem": {
+                    "name": "jira-software-users",
+                    "parentId": "111",
+                    "parentName": "com.atlassian.crowd.directory.example",
+                    "typeName": "GROUP"
+                },
+                "summary": "User added to group"
+            }
+        ]
+    }
+}
+```
+
+#### Human Readable Output
+
+>### Jira records
+>|Associated Items|Category|Created| Id   | Object Item                                                                                                                    |Summary|
+>|---|---|------|--------------------------------------------------------------------------------------------------------------------------------|---|---|
+>| {'id': 'ug:123456-123456-123456', 'name': 'ug:123456-123456-123456', 'typeName': 'USER', 'parentId': '111', 'parentName': 'com.atlassian.crowd.directory.example'} | group management | 2022-04-24T16:28:53.146+0000 | 1111 | name: jira-servicemanagement-users<br/>typeName: GROUP<br/>parentId: 111<br/>parentName: com.atlassian.crowd.directory.example | User added to group |
+>| {'id': 'ug:123456-123456-123457', 'name': 'ug:123456-123456-123457', 'typeName': 'USER', 'parentId': '111', 'parentName': 'com.atlassian.crowd.directory.example'} | group management | 2022-04-24T16:28:53.098+0000 | 1110 | name: jira-software-users<br/>typeName: GROUP<br/>parentId: 111<br/>parentName: com.atlassian.crowd.directory.example          | User added to group |
diff --git a/Packs/Jira/Integrations/JiraEventCollector/command_examples b/Packs/Jira/Integrations/JiraEventCollector/command_examples
new file mode 100644
index 000000000000..663882575ecc
--- /dev/null
+++ b/Packs/Jira/Integrations/JiraEventCollector/command_examples
@@ -0,0 +1 @@
+!jira-get-events max_fetch=2
\ No newline at end of file
diff --git a/Packs/Jira/Integrations/JiraEventCollector/test_data/events.json b/Packs/Jira/Integrations/JiraEventCollector/test_data/events.json
new file mode 100644
index 000000000000..b605d8aeede8
--- /dev/null
+++ b/Packs/Jira/Integrations/JiraEventCollector/test_data/events.json
@@ -0,0 +1,109 @@
+{
+    "offset": 0,
+    "limit": 1000,
+    "total": 3,
+    "records": [
+        {
+            "id": 3,
+            "summary": "User Changed",
+            "remoteAddress": "192.168.1.1",
+            "authorKey": "administrator",
+            "authorAccountId": "5ab8f18d741e9c2c7e9d4538",
+            "created": "2022-04-12T18:45:42.967+0000",
+            "category": "user management",
+            "eventSource": "Jira Connect Plugin",
+            "description": "Optional description",
+            "objectItem": {
+                "id": "user",
+                "name": "user",
+                "typeName": "USER",
+                "parentId": "1",
+                "parentName": "Jira Internal Directory"
+            },
+            "changedValues": [
+                {
+                    "fieldName": "email",
+                    "changedFrom": "user@atlassian.com",
+                    "changedTo": "newuser@atlassian.com"
+                }
+            ],
+            "associatedItems": [
+                {
+                    "id": "jira-software-users",
+                    "name": "jira-software-users",
+                    "typeName": "GROUP",
+                    "parentId": "1",
+                    "parentName": "Jira Internal Directory"
+                }
+            ]
+        },
+        {
+            "id": 2,
+            "summary": "User created",
+            "remoteAddress": "192.168.1.1",
+            "authorKey": "administrator",
+            "authorAccountId": "5ab8f18d741e9c2c7e9d4538",
+            "created": "2022-04-12T18:41:42.967+0000",
+            "category": "user management",
+            "eventSource": "Jira Connect Plugin",
+            "description": "Optional description",
+            "objectItem": {
+                "id": "user",
+                "name": "user",
+                "typeName": "USER",
+                "parentId": "1",
+                "parentName": "Jira Internal Directory"
+            },
+            "changedValues": [
+                {
+                    "fieldName": "email",
+                    "changedFrom": "user@atlassian.com",
+                    "changedTo": "newuser@atlassian.com"
+                }
+            ],
+            "associatedItems": [
+                {
+                    "id": "jira-software-users",
+                    "name": "jira-software-users",
+                    "typeName": "GROUP",
+                    "parentId": "1",
+                    "parentName": "Jira Internal Directory"
+                }
+            ]
+        },
+        {
+            "id": 1,
+            "summary": "User created",
+            "remoteAddress": "192.168.1.1",
+            "authorKey": "administrator",
+            "authorAccountId": "5ab8f18d741e9c2c7e9d4538",
+            "created": "2022-04-12T18:40:42.967+0000",
+            "category": "user management",
+            "eventSource": "Jira Connect Plugin",
+            "description": "Optional description",
+            "objectItem": {
+                "id": "user",
+                "name": "user",
+                "typeName": "USER",
+                "parentId": "1",
+                "parentName": "Jira Internal Directory"
+            },
+            "changedValues": [
+                {
+                    "fieldName": "email",
+                    "changedFrom": "user@atlassian.com",
+                    "changedTo": "newuser@atlassian.com"
+                }
+            ],
+            "associatedItems": [
+                {
+                    "id": "jira-software-users",
+                    "name": "jira-software-users",
+                    "typeName": "GROUP",
+                    "parentId": "1",
+                    "parentName": "Jira Internal Directory"
+                }
+            ]
+        }
+    ]
+}
\ No newline at end of file
diff --git a/Packs/Jira/Integrations/JiraEventCollector/test_data/no_events.json b/Packs/Jira/Integrations/JiraEventCollector/test_data/no_events.json
new file mode 100644
index 000000000000..281b252c3090
--- /dev/null
+++ b/Packs/Jira/Integrations/JiraEventCollector/test_data/no_events.json
@@ -0,0 +1,6 @@
+{
+    "offset": 0,
+    "limit": 1000,
+    "total": 0,
+    "records": []
+}
\ No newline at end of file
diff --git a/Packs/Jira/ModelingRules/JiraEventCollector/JiraEventCollector.xif b/Packs/Jira/ModelingRules/JiraEventCollector/JiraEventCollector.xif
new file mode 100644
index 000000000000..ae7048d29269
--- /dev/null
+++ b/Packs/Jira/ModelingRules/JiraEventCollector/JiraEventCollector.xif
@@ -0,0 +1,10 @@
+[MODEL: dataset=jira_jira_raw, model=Audit, content_id=***, version=***]
| alter XDM.Audit.operation = json_extract_scalar(_raw_log, "$.summary")
+XDM.Audit.TriggeredBy.ipv4 = json_extract_scalar(_raw_log, "$.remoteAddress")
+XDM.Audit.TriggeredBy.identity.name = json_extract_scalar(_raw_log, "$.authorKey")
+XDM.Audit.TriggeredBy.identity.uuid = json_extract_scalar(_raw_log, "$.authorAccountId")
+XDM.Audit.operation_type = json_extract_scalar(_raw_log, "$.category")
+XDM.Audit.project = json_extract_scalar(_raw_log, "$.eventSource")
+XDM.Audit.identity.uuid = json_extract_scalar(_raw_log, "$.objectItem.id")
+XDM.Audit.identity.name = json_extract_scalar(_raw_log, "$.objectItem.name")
+XDM.Audit.identity.type = json_extract_scalar(_raw_log, "$.objectItem.typeName")
+XDM.Audit.outcome = json_extract_scalar(_raw_log, "$.changedValues.changedTo");
diff --git a/Packs/Jira/ModelingRules/JiraEventCollector/JiraEventCollector.yml b/Packs/Jira/ModelingRules/JiraEventCollector/JiraEventCollector.yml
new file mode 100644
index 000000000000..19c70fd24005
--- /dev/null
+++ b/Packs/Jira/ModelingRules/JiraEventCollector/JiraEventCollector.yml
@@ -0,0 +1,4 @@
+name: JiraEventCollector
+id: JiraEventCollector
+fromversion: 3.3.0
+rules: ''
\ No newline at end of file
diff --git a/Packs/Jira/ReleaseNotes/2_0_0.md b/Packs/Jira/ReleaseNotes/2_0_0.md
new file mode 100644
index 000000000000..c2d1e8175990
--- /dev/null
+++ b/Packs/Jira/ReleaseNotes/2_0_0.md
@@ -0,0 +1,8 @@
+
+#### Integrations
+##### New: Jira Event Collector
+- Added the new integration to fetch Audit Records from Jira (Available in Cortex XSIAM).
+
+#### Modeling Rules
+##### New: JiraEventCollector
+- Added the modeling rules.
diff --git a/Packs/Jira/pack_metadata.json b/Packs/Jira/pack_metadata.json
index 3629fbbbc491..3160947b0368 100644
--- a/Packs/Jira/pack_metadata.json
+++ b/Packs/Jira/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "Atlassian Jira",
     "description": "Use the Jira integration to manage issues and create Cortex XSOAR incidents from Jira projects.",
     "support": "xsoar",
-    "currentVersion": "1.4.12",
+    "currentVersion": "2.0.0",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",
diff --git a/Tests/known_words.txt b/Tests/known_words.txt
index 0b65b339090a..2339d941d540 100644
--- a/Tests/known_words.txt
+++ b/Tests/known_words.txt
@@ -165,6 +165,7 @@ integrationReliability
 Mapper
 Mappers
 EDL
+XSIAM
 TLD
 Wildcards
 CIDRs