Hi
at first see Splunk Security Essentials ( https://splunkbase.splunk.com/app/3435/ ).
Than you can choose apps related to the security infrastructure you have (Cisco, Check Point, ...).
The best solution is obviously Enterprise Security!
Bye.
Giuseppe