Alibaba Cloud has a security center that admittedly has many log types, but for our case, we can start by mapping the security alert logs, as those are closest to what we've already mapped in AWS, GCP, and Azure.

Resources for log fields: https://www.alibabacloud.com/help/en/security-center/user-guide/log-fields

Extra points for finding a raw log for the alert log.