Posts

Enhancing Security Operations: The Native Integration of Splunk ES and SOAR

Integrating Splunk Enterprise Security (ES) with Splunk Security Orchestration, Automation and Response (SOAR) can significantly enhance your organization’s security operations. By automating alert handling and response processes, this integration streamlines security incident management and enables faster, more effective threat mitigation. Splunk SOAR empowers security teams to automate actions based on Splunk ES detections using assigned playbooks, enabling seamless incident resolution.

Read more

Splunk 6.6 New Features – Part IV – Trellis Layout Visualization

In this post, we will walk through some use cases and data formats to configure the new Trellis Layout Visualization in Splunk 6.6. Read more