diff --git a/tools/sigma/backends/cim.py b/tools/sigma/backends/cim.py
index d939f92e3c0..203d555e5e2 100644
--- a/tools/sigma/backends/cim.py
+++ b/tools/sigma/backends/cim.py
@@ -43,7 +43,7 @@
                     "process_hash": ["Hashes"],
                     "process_id": ["ProcessId"],
                     "process_guid": ["ProcessGuid"],
-                    "process_integrity_level": [],
+                    "process_integrity_level": ["IntegrityLevel"],
                     "process_name": [],
                     "process_path": ["Image"],
                     "tag": [],