Three Ways Machine Data Makes Your SIEM Better at Security
All data is security relevant is a mantra that security practitioners should get used to saying. But knowing what sources you need to tap into to improve your security posture can seem like a daunting task. It doesn’t need to be.
Data sources are a way companies solve the security issues causing them pain or issues that may cause harm. So what exactly is a data source? It can be almost anything from the machine data being generated by your existing firewall to online web logs. Just what data sources you tap into depends on your security use case.
There are already companies that have found unique ways to leverage machine data to work for their specific needs – whether …
The Splunk 12 Days Of Christmas
Ho Ho Ho! I hope you’re all ready for Christmas and the holiday season. From (Yule) log files to ERP (Enhanced Reindeer Planning) systems to wood burning fire-walls and NOCs (Noel Operations Centre), a lot of organisations have done some amazing things with their machine data this year. In the spirit of sharing gifts, I give you the Splunk 12 Days Of Christmas featuring some of those customers who’ve improved their operations using Splunk as a machine data fabric. Have a great festive season and enjoy the stories below:
As always, thanks for reading
SplunkLive! 2016: South Bay Edition
Over 600 Splunk enthusiasts gathered last month at the Hyatt Regency Santa Clara for the 2nd annual SplunkLive! Santa Clara. Splunk experts, including customers, got to show off some cool, new content that fed the appetites of both Splunk n00bs and veterans.
- Opening keynote from Monzy Merza, Head of Security Research, who talked about how the Enterprise Machine Data Fabric (EMDF) is enabled by the Splunk platform, solutions and an open ecosystem. A data fabric, understands where data sits, understands data flows and provides the analytics and visualizations to help technologists make sense of data at any scale.
- Customer presentations from Symantec, SAP/SuccessFactors and Marketo [I would link to these if posted)
- Three Hands-on Sessions where attendees could
Head in the Cloud? Maximize your Operational Intelligence with Even Deeper Integration Between Splunk and AWS
Even more exciting news from re:invent!
In case you weren’t watching the live-stream of the event, you may have missed the keynote announcement this morning about the new service called AWS Personal Health.
Splunk’s integration with AWS Personal Health allows AWS customers to proactively monitor over 70 services and quickly act on personal service interruptions informing their users of things like reserved instance retirement, network issues, even instance failures. Before, if there was a network issue, your only way of knowing was based on regional or availability zone messaging. This integration brings an even more personalized experience to using Splunk for monitoring and managing your mission critical workloads in AWS.
The AWS Health API delivers critical data on AWS service quality and …
Nick Bleech from Travis Perkins wins 2016 Ventana Research Leadership Award for his work with Splunk!
It’s always awesome to see our customers succeeding with Splunk. It’s even more pleasing when our customers are recognized for that success as Nick Bleech, CISO at UK builders’ merchant Travis Perkins has been. Nick has received the Ventana Research Technology Leadership Award for CyberSecurity as a result of the organization’s work with Splunk. Congratulations Nick!
These awards, organized by leading analyst firm Ventana Research: “identify business and IT leaders who are using technologies and applying best practices to create the best possible outcomes in productivity, performance and support of an organization’s goals and objectives.”
Nick Bleech presented the organization’s journey with Splunk at .conf2016, detailing how Travis Perkins has moved to a lean cloud based SOC model …
Gatwick Airport lands passenger experience & operational efficiency with IoT, analytics and Splunk Cloud.
95% of passengers through security in 5 mins or less.
We’ve all been there, stuck at an airport, flight delayed, watching the departures board, trying to find somewhere to sit down and wanting to set off to where you’re going or just get home. Gatwick Airport, the busiest single runway airport in the world, processing up to 945 flights per day is striving to make this situation a thing of the past. I’m delighted to announce that they are using data from the Internet of Things and Splunk Cloud to improve the passenger experience and enhance operational efficiencies across the airport. Gatwick are using their machine data to deliver historic, real-time and predictive analytics to ensure a faster journey through the …
Black Friday. How Machine Data and Real-Time Analytics Underpins Online Retail
Black Friday and Cyber Monday are nearly upon us with reports stating that up to 4bn pounds could be spent over the course of the week, with 42% of purchases made online. So far, the sheer number of sensor enabled, Bluetooth connected toothbrushes on offer risks redefining IoT as the “Internet of Teeth”. I guess a lot of those toothbrushes will be “filling” Christmas stockings (sorry). On a more serious note, machine data, real-time analytics and Operational Intelligence are going to play an important part in Black Friday and Cyber Monday in four main ways:
- Underpinning the IT infrastructure that makes up an online retailers digital services
- Securing consumers and organisations from fraud, breaches and insider threats
- Ensuring the
ING Bank at Gartner Symposium. Delivering business value from operational insights.
Last week was EMEA’s Gartner Symposium and it was a pretty busy week. Thousands of CIOs, senior IT leaders and IT companies converged on a very windy Barcelona. We were lucky enough to have ING Bank speaking about how it uses Splunk to deliver business value from IT and ensure its customers are happy. ING Bank Slaski in Poland has over four million customers monitored by Splunk. ING’s IT goal is to make sure they are listening to the voice of the customer “to stay a step ahead in life and business” by:
- Making it clear and easy to use ING’s banking services
- Allowing customers access to those services anytime and anywhere
- Empowering users to self serve and make use
Analytics, SIEM, Nerve Center, Lean SOC to Headline Security Day at AWS re:Invent 2016
Learn all about Splunk at AWS re:Invent 2016.
It is a special time of the year for the Splunk Security Team as we are few weeks away from AWS re:Invent 2016. It will be an electrifying few days and we look forward to interacting with the AWS community, Splunk customers, security practitioners, and partners. Furthermore, we are excited to learn about their use cases, workloads and innovative ways in which they use Cloud, Splunk Cloud and Splunk security solutions.
Join us on December 1st in the Splunk booth #206 to learn about key security themes and solution that will help accelerate your journey to the Cloud.
The Splunk theater session will have presentations throughout the day …
Countdown to AWS re:Invent – Security Requires Visibility
Learn all about Splunk at AWS re:Invent 2016.
I first heard the phrase ‘Security Requires Visibility’ during the Introduction to AWS Security session at the 2015 AWS SF Summit. I must say, it immediately resonated.
Over the past 3 years at Splunk, I’ve spoken with customers such as Adobe, Autodesk, FamilySearch, FINRA and more about how they leverage Splunk visibility to help ensure security and compliance on AWS. The reason is simple and was best said by AWS themselves – ‘Security Requires Visibility’.
Given this simple axiom, I’m thrilled that at this year’s re:Invent, Adobe will be speaking on how they use Splunk to achieve AWS Security Monitoring and Compliance Validation on AWS. The title of …