Digital Resilience Pays Off
Download this e-book to learn about the role of Digital Resilience across enterprises.
Fellow Splunkers,
I am happy to be representing Splunk here in the Alamo City (aka San Antonio, Texas) at the National Collegiate Cyber Defense Competition where Splunk is a Silver Sponsor.
While I won’t have time to visit the Alamo basement on this trip, I do have the opportunity to observe and interact with some of the nation’s most talented security neophytes.
Following this morning’s keynote address, the scenario for this year’s competition was revealed:
The real adversaries in this exercise are a talented group of security professionals that combine to form the ‘Red Team’. The students must take this inherited environment, assess their current service status and defense posture, and then maintain their SLA while defending their networks from nefarious intruders.
Teams can use only approved software (including Splunk, McAfee EPO, and others) on their systems, and have various other restrictions that keep the competition very true to a real life scenario. For example, at a real corporation, the IT team can’t decide to reimage all the web servers during peak business hours; likewise, they can’t scan or probe their attackers.
Two topics that have been mentioned several times this morning bear repeating here:
Splunk is providing each team with a briefing that will get them started using Splunk to manage their logs, find the needle in the haystack, and maintain digital situational awareness.
In addition, the contestants are free to use answers.splunk.com (tag: nccdc) to get help installing, configuring, and using Splunk.
Splunk is also being used in the operations hub for the event to provide operational intelligence:
Finally, Splunk will be sending one of our local Texas cowboys to attend the recruiting mixer tomorrow.
Special thanks go to Dwayne Williams and his staff for this great event. They have done a magnificent job in staging, planning, and logistics, and deserve all the credit in the world.
Splunk is looking forward to being associated with this event for the foreseeable future, and we also look forward to increasing involvement and sponsorship.
-araitz
----------------------------------------------------
Thanks!
Alex Raitz
The Splunk platform removes the barriers between data and action, empowering observability, IT and security teams to ensure their organizations are secure, resilient and innovative.
Founded in 2003, Splunk is a global company — with over 7,500 employees, Splunkers have received over 1,020 patents to date and availability in 21 regions around the world — and offers an open, extensible data platform that supports shared data across any environment so that all teams in an organization can get end-to-end visibility, with context, for every interaction and business process. Build a strong data foundation with Splunk.