splunk es Archives

Splunk Assets and Identities

June 18, 2020July 28, 2020Bill Ouellette

Speed and Accuracy are key to Enterprise Security. In this video, you’ll see how Splunk’s Assets and Identities capabilities help make your security investigations faster and better.…Learn MoreSplunk Assets and Identities

What Makes a Sourcetype?

June 9, 2020December 1, 2020Anthony Fecondo

Do you have a custom data source you’d like to import into Splunk? Welcome to the world of sourcetypes.
In this blog, we help you navigate the process of creating sourcetypes, from assessment to configuration.…Learn MoreWhat Makes a Sourcetype?

Splunk Attack Range Setup Guide

May 4, 2020September 21, 2020Bill Ouellette

Splunk Attack Range allows you to create vulnerable local or cloud environments, to simulate attacks and collect the data Into Splunk. In this on-demand video Bill Ouellette (Principal Splunk Security Engineer) will provide a Step by Step Guide on setting up the “Attack Range Framework” within your Splunk test instance. …Learn MoreSplunk Attack Range Setup Guide

Hardening Your Splunk Environment

March 19, 2020July 28, 2020Anthony Fecondo

According to the Ponemon Institute the average cost of data breach for a company is $3.8 million dollars. Regardless of whether you are operating in the cloud or on-premise taking steps to harden your operating system is an absolute must to limit potential security weaknesses.…Learn MoreHardening Your Splunk Environment

CIM, What… Why… How…

February 3, 2020November 4, 2020Shawn Al-Atroshi

During your SIEM journey there will be many terms thrown your way, understanding those terms is absolutely essential when it comes to your security environment. In this article, we will bring clarity to one of the more important terms in SIEM, CIM (Common Information Model) Lets Start with the Basics! …Learn MoreCIM, What… Why… How…

Splunk 2020 Predictions

January 15, 2020July 28, 2020Aditum Marketing

In a this rapidly changing digitized world, data is at the root of everything, and essential to solving every problem. From basic business decisions to global crises, a panel of technology experts at Splunk has assembled more than a dozen predictions about how technology will transform business and daily life.…Learn MoreSplunk 2020 Predictions

What is SOAR Technology?

November 26, 2019July 28, 2020Aditum Marketing

There’s currently a major adoption occurring around SOAR products Security Orchestration, Automation and Response. What is SOAR? SOAR is next-generation security software products that are designed to automate the common, and fairly remedial tasks that Security Analysts face.…Learn MoreWhat is SOAR Technology?

Caught Red Handed…. Using Splunk to Catch Retail Theft Rings

November 4, 2019July 8, 2020Nic Haag

According to The National Retail Federation, retail theft costs U.S. companies $30 Billion a year, with “professional/habitual shoplifters” responsible for 10% ($3b) of all retail theft. And the problem is only getting worse, with losses increasing at 7% year per year. How can you defend yourself against these losses?…Learn MoreCaught Red Handed…. Using Splunk to Catch Retail Theft Rings

The Art of Tuning Correlation Searches within Enterprise Security

July 12, 2019July 29, 2020Bill Ouellette

One major question I get when tuning searches onsite with customers is: “How do we make sure that we are not overrun with notables within our Splunk Enterprise Security (ES) SIEM?”…Learn MoreThe Art of Tuning Correlation Searches within Enterprise Security

Splunk Health Monitoring Best Practices

June 24, 2019October 21, 2020Nic Haag

Did you know that Splunk already has built-in health checks that can tell you if something important was misconfigured and alert you to important system or data outages? If you did, you are actually in the minority of users!…Learn MoreSplunk Health Monitoring Best Practices