Security

Can Splunk be used for Security Event Management ?

SomnathShilimka
Explorer

Hi All,

I would like to know is Splunk right tool for Security Event Management ?

Regards,

Somnath Shilmkar

0 Karma

kristian_kolb
Ultra Champion

Yes. Splunk, with the Enterprise Security app is a SIEM. The ES app is an additional package that is place on top of the core splunk installation. You can read more about it here;

http://www.splunk.com/view/enterprise-security-app/SP-CAAAE8Z
http://apps.splunk.com/app/263
http://docs.splunk.com/Documentation/ES

Hope this helps,

K

Get Updates on the Splunk Community!

Index This | I am a number, but when you add ‘G’ to me, I go away. What number am I?

March 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...

What’s New in Splunk App for PCI Compliance 5.3.1?

The Splunk App for PCI Compliance allows customers to extend the power of their existing Splunk solution with ...

Extending Observability Content to Splunk Cloud

Register to join us !   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to ...