News

Splunk Introduces Splunk IT Service Intelligence

New IT Monitoring and Analytics Solution Delivers Immediate Value to IT with Advanced Analytics and Powerful Visualizations; Available as Software or a Cloud Service

Splunk Inc. (NASDAQ: SPLK), provider of the leading software platform for real-time Operational Intelligence, today announced Splunk IT Service Intelligence (ITSI). Splunk ITSI builds upon Splunk’s deep product expertise and recognized customer value in IT Operations by introducing a solution that provides breakthrough visibility into the health and key performance indicators of IT services. This new solution delivers a central, unified view of critical IT services and leverages advanced analytics driven by machine learning to highlight anomalies, detect root cause and pinpoint areas of impact. Experience the power and innovation of Splunk solutions and try the Splunk ITSI online sandbox today.

“With Splunk ITSI, we wanted to build on how customers were already using the Splunk platform for IT troubleshooting and monitoring and deliver a complete solution for IT professionals,” said Rick Fitz, senior vice president of IT markets, Splunk. “IT teams now have an innovative data-driven approach to more effectively manage the new world of hybrid, cloud and software-defined everything in the data center. Splunk ITSI is in a class of its own because it provides both high-level monitoring and deep-dive troubleshooting and analytics in one solution, available as either software or a cloud service.”

“Traditionally, the end-to-end performance of systems and apps supporting digital strategies is difficult for the business team to monitor against SLAs and KPIs they have established without bolting this view together with a variety of products,” according to Maureen Fleming, vice president of BPM and middleware research, IDC. “Being able to track, monitor and produce a business view of performance from a single offering is critical in today’s world of technology-enabled innovation.”

Splunk Customers Unlock Insights On Business-Critical Services

More than a dozen Splunk customers have run Splunk ITSI over several months in production environments. Splunk ITSI customers report having greater insight into their IT services, less downtime and disruption to their customers, and improved service levels.

“AdvancedMD has more than 13,000 daily global users who initiate claims, and Splunk IT Service Intelligence enables us to both know there is a problem at a high level and also see the depths of all of these interactions and fix issues immediately,” said Tyler Germer, director of information technology, AdvancedMD. “Splunk IT Service Intelligence was delivering insights days after installing, instead of the months it can take with legacy monitoring solutions. Splunk ITSI helps us ensure that the claims service stays up and running at all times.”

“Splunk IT Service Intelligence gives us the actionable insights we need to keep our business-critical services running smoothly and it was up and running in days instead of months,” said Daniel Nye, chief technology officer, Surrey Satellite Technology. “By mapping KPIs to critical service components, we have discovered and resolved problems that we did not know we had. For example, by identifying a previously undetected issue with our document management system, we have significantly sped up the document checkout process, delivering real-time savings to the business.”

“Splunk IT Service Intelligence gives Vodafone a real-time understanding of how our services are performing overall and at the more granular level,” said Andre Casper, solution owner operational analytics, Vodafone. “We have KPIs mapped to critical service components and can provide relevant insights to stakeholders across the business, including management, service owners and the security team. The glass table visualizations in Splunk ITSI make it quick and easy to identify and resolve any issues, preventing any impact on our users. Now we can be much more proactive about our services.”

Read more about Vodafone’s success with Splunk ITSI in the Vodafone case study on the Splunk website.

Empowering IT to Uncover and Act on Data-Driven Intelligence

Splunk ITSI is a patented, enterprise-class monitoring and analytics solution that provides new levels of visibility into the health and key performance indicators of IT services. Built on the powerful Splunk platform, Splunk ITSI scales to collect and index terabytes of real-time and historical events and metrics, across multi-datacenter and cloud-based infrastructures. Splunk IT Service Intelligence:

– Delivers a central, unified view of critical IT services for powerful, data-driven monitoring.
– Maps critical services with KPIs to easily pinpoint what matters most.
– Utilizes advanced analytics powered by machine learning to highlight anomalies, detect root cause and pinpoint areas of impact.
– Supports drill down into the data for rapid issue investigation and resolution.

Learn more about Splunk ITSI or sign up for an online sandbox trial on the Splunk website.

Splunk Continues Innovation with Splunk MINT, Splunk Light and Hunk Updates

Splunk Kicks Off Day Two of .conf2015: 6th Annual Splunk Worldwide Users’ Conference with Major Mobile, Cloud and Big Data Enhancements

Splunk Inc. (NASDAQ: SPLK), provider of the leading software platform for real-time Operational Intelligence, today announced updates to several products including Splunk MINT™, Splunk Light™ and Hunk®.

“At .conf2015, we are showcasing innovations across our entire portfolio of software and cloud solutions, and Hunk, Splunk Light and Splunk MINT are important pillars of our customers’ overall data strategy,” said Shay Mowlem, vice president product management and product marketing, Splunk. “Splunk MINT and Hunk help organizations gain value from two of the fastest-growing sources of data, mobile data and historical data in Hadoop. Small IT teams can also now utilize Splunk Light as a cloud service.”

Hunk: Splunk Analytics for Hadoop

Hunk 6.3 is a full-featured, integrated analytics platform used to interactively explore, analyze and visualize big data in Hadoop and Amazon S3. Go to the Hunk page on the Splunk website to download the Hunk sandbox or to sign up for a free trial. Benefits include:

– Drive down total cost of ownership for Splunk users who can archive historical data from Splunk Enterprise to HDFS and Amazon S3 on commodity hardware for low-cost long-term storage and use Hunk to perform analytics on the historical data transferred to Hadoop.
– Splunk users can leverage the advanced analytics and visualization capabilities they know and love in Splunk Enterprise on the data stored in Hadoop without needing to learn a new solution.
– Analyze data transferred from Splunk Enterprise to Hadoop using third-party Hadoop tools such as Hive and Pig without needing to transform or replicate data.

Splunk Light

Splunk Light is now available as a cloud service, starting at just $90 per month, and delivers the power of Splunk to small IT environments. This full-featured log search and analysis solution makes harnessing machine data even more accessible to small IT environments by eliminating the time and expense of server purchasing, setup and maintenance. Try the free trial of Splunk Light as a cloud service. Benefits include:

– Gain real-time log search and analysis for tactical troubleshooting by collecting, indexing, monitoring, searching, alerting and analyzing any log data in real time from one place.
– Priced for small IT environments, with access to global support and a passionate community of users.
– Easily upgrade to the full Splunk Enterprise or Splunk Cloud for seamless transition to the platform for real-time Operational Intelligence.

Splunk MINT

Splunk MINT runs as an application on top of Splunk Enterprise and now, Splunk Cloud, to deliver enhanced Operational Intelligence with mobile data for developers, operations and product management. Splunk MINT delivers Mobile Intelligence to improve the mobile app user experience. Learn more about Splunk MINT on the Splunk website. Benefits include:

– More developer insight with Stacktrace graphs and screen tracking that offers real-time insight into how users are engaging your app and how many users are affected by performance problems.
– Detailed user analytics including events, screen tracking and user flows that provide powerful feedback to Splunk MINT users.
– Additional mobile app support for hybrid mobile applications that integrate HTML5 web browsers with native mobile OS capabilities.

Splunk Accelerates Momentum in Industrial Data and Internet of Things

New Product Capabilities, Customer Success and Growth in Partner Ecosystem Fuel Continued Expansion into Growing, New Market

Splunk Inc. (NASDAQ: SPLK), provider of the leading software platform for real-time Operational Intelligence, today announced accelerated momentum in Industrial Data and Internet of Things (IoT). The trend is driven by Splunk’s continued investment in its products and partner ecosystem as well as the creativity of customers and the flexibility to deploy Splunk IoT solutions as software, cloud services or in a hybrid environment. Customers are using Splunk® solutions to collect and correlate data from control systems, sensors, mobile devices and IT systems for a variety of Industrial Data and IoT use cases. These use cases include operational efficiency, predictive maintenance, industrial cybersecurity and asset analytics.

“It has been great to see the success our manufacturing teams are achieving with Splunk solutions,” said Saul Llamas, manufacturing test engineering manager, Zebra Technologies. “Our teams have been able to bring value to their own operations by using Splunk Enterprise and its powerful data collection, analytics and visualization capabilities to improve manufacturing quality, customer experience and ultimately our products.”

New Splunk Enterprise 6.3 features and community and partner apps further expand the applicability of Splunk solutions for Industrial and IoT use cases. New features include the HTTP event collector to collect IoT data at scale, new customer alert actions to trigger custom data-driven actions in third-party applications and the Machine Learning Toolkit and Showcase (preview) for advanced analytics. Splunk also has a wide-ranging ecosystem of partners in the Internet of Things including Bluvision, Carvoyant, Citrix Octoblu, CQCloud, DGLogik, Falkonry, Kepware, N3N, Wizcore and Xively by LogMeIn, all of which are demonstrating technology or solutions at .conf2015.

“From trains, planes and automobiles to manufacturing floors, our customers are leading the way with their innovative use of Splunk solutions for Industrial Data and Internet of Things,” said Snehal Antani, chief technology officer, Splunk. “The Internet of Things transforms the way organizations leverage machine data and gain insights from it. The product investments that we have made along with our growing IoT ecosystem will further expand Splunk’s role in these use cases and accelerate the value realized from Splunk solutions.”

For more information about using Splunk for Industrial Data and the Internet of Things, visit the Internet of Things solution page of the Splunk website.

Sydney’s Splunk User Group

When: Wednesday, 16 September 2015
Time: 5.00pm-7.00pm
Location : Level 1 @ Angel Hotel, 125 Pitt Street, Sydney

The next meet up for the Sydney Splunk User Group is coming up.

Get along to the meet up and hear how a leading ISP uses Splunk to ingest machine data from telco systems and provide business information to various business teams.

Here’s the agenda:

5:00 PM Welcome & Networking
5:30 PM ISP use case
6:00 PM Q & A
6:30 PM Close – Pizza/Beer

Click the link to join the Sydney Splunk User Group, and RSVP to this event:

http://www.meetup.com/Splunk-Meetups/events/225002318/

Looking forward to seeing you there.

Canberra Splunk User Group Meetup

When: Thursday, 17 September 2015
Time: 4.30pm-6.30pm

The next meet up for the Canberra Splunk User Group is coming up.

At this meet up we will hear from Ashley Hartage, Senior Network Security Engineer at Verizon Enterprise Solutions. Ashley will be presenting on using SNMP for polling devices to track signature updates and versions.

Click the link to join the Canberra Splunk User Group, and RSVP to this event:

https://usergroups.splunk.com/group/canberra-splunk-user-group.html

Looking forward to seeing you there.

Splunk Announces .conf2015: The 6th Annual Splunk Worldwide Users’ Conference

More than 80 Customer Speakers Including Cisco Systems, Ernst & Young, MetLife Inc., PostFinance, Rakuten and The Vancouver Clinic

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announces .conf2015: The 6th Annual Splunk Worldwide Users’ Conference scheduled for Sept. 21 – 24. Thousands of attendees along with Splunk experts are set to fill the MGM Grand in Las Vegas to hear Godfrey Sullivan, chairman and CEO, Splunk, take the stage to unveil new Splunk products and innovations. .conf2015 will also feature 165 speaking sessions, an Internet of Things pavilion featuring an innovative connected car, as well as a Splunk Women in Technology program. Register now for .conf2015.

.conf2015 will feature more than 80 customers speakers from around the world, including:

Steven Carter, architect, Cisco Systems: Carter will demonstrate a system using Splunk solutions and the Cisco Open SDN Controller to actively block threats within large data flows without potential performance issues of firewalls and other devices.

Rob Schlotman, head of design and engineering, Ernst & Young: Schlotman will explain how to get answers to critical questions throughout an entire application lifecycle process with Splunk solutions, enabling everyone from IT executives to DevOps to easily understand the state of the product service and keep it operational, as well as key feature usage.

Mariya Gilyadova, director, MetLife Inc.: Gilyadova will share MetLife’s journey of using Splunk solutions to take the company focus on customer centricity and turn it into a strategic initiative to improve customer experience.

Patrick Hofmann, head of IT infrastructure and deputy CIO, PostFinance: Hofmann will discuss how one of Switzerland’s largest retail banks is using Splunk solutions to connect business and IT to improve cash management, detect fraud and enhance security.

Keisuke Noda, data store platform administrator, Rakuten: Noda will discuss some challenging points for deploying Splunk-as-a-Service, such as best practices for managing clusters and improving operations using the Splunk API and tips for expanding the Splunk platform globally.

David Studer, systems analyst, The Vancouver Clinic: Studer will discuss how Splunk solutions enable the clinic to achieve patient privacy monitoring for a fraction of the cost of the legacy patient monitoring platforms.

“Whether you want to improve customer experience and service delivery, enhance IT performance, ship better code faster, provide timely business insights, reach new levels of security in your organization, or monitor the Internet of Things, .conf2015 has everything you need to achieve your goals,” said Steve Sommer, chief marketing officer, Splunk. “We are excited to learn about our customers’ newest use cases, tips and insights. We also have some surprises in store for attendees, such as what you can discover when you use Splunk software to analyze what Splunkers do on a race track with a Mustang GT. That’s part of what’s great about Splunk software – all you need is a browser and your imagination.”

Splunk University at .conf2015

Splunk University is a hands-on, lab-inspired pre-conference educational program to help Splunk users gain new insights and experience with Splunk’s product suite. Splunk University at .conf2015 offers single-day, two-day and three-day bootcamps from Sept. 19-21. For more information visit conf.splunk.com. To sign up for Splunk University, check the appropriate boxes as you register for .conf2015.

Splunk Security Solutions Front and Center at Black Hat USA 2015

New User Behavior Analytics to Help Defend Against Advanced Threats; Splunk to Announce Winners of $150,000 Splunk Apptitude App Contest

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced it will demonstrate Caspida, the newly acquired behavioral analytics and machine learning software, at Black Hat USA 2015. Splunk security experts will also be demonstrating Splunk’s award winning security solutions, including Splunk® Enterprise, the Splunk App for Enterprise Security, Palo Alto Networks App for Splunk, FireEye App for Splunk and the Cisco Security Suite.

Additionally, Joseph Zadeh, data scientist, Splunk, will present, “From False Positives to Actionable Analysis: Behavioral Intrusion Detection, Machine Learning, and the SOC,” on Thursday, August 6 from 12:10-1:00 p.m. PT in the Mandalay Bay EF at the Mandalay Bay in Las Vegas. Zadeh is formerly of Caspida, which Splunk recently acquired to help customers better detect advanced and insider threats. Visit the Splunk booth (#347) to find out why Splunk was named a Leader in the 2015 Gartner SIEM Magic Quadrant and learn how Splunk’s machine data platform enables organizations to detect, respond to and prevent known, unknown and advanced threats.

“Advanced cyber threats are using valid, compromised credentials to access sensitive data and evade detection from traditional security products, but Splunk customers have the upper hand,” said Haiyan Song, senior vice president of security markets, Splunk. “We are excited to show Black Hat USA 2015 attendees how the combination of Caspida and Splunk software creates the most comprehensive security analytics solution available today.”

Splunk is also the official provider of Operational Intelligence for the Black Hat Network Operations Center (NOC). The Black Hat network is one of the most advanced networks for hostile environments with many constraints for security, operations and protecting user privacy. Splunk’s visibility, analytics and visualizations will help the Black Hat NOC analysts keep their network secure and operational. Keep up to date with Splunk in the NOC:

Splunk Apptitude App Contest

Splunk will also announce the winners of The Splunk Apptitude App Contest at Black Hat USA 2015. The contest, judged by a panel of industry experts, sought new solutions to cover three categories: Fraud/Insider Threats, Social Impact and Innovation. The winners will be awarded cash prizes totaling $150,000. Winners will be announced at the Splunk booth today, Wednesday, August 5 at 1:40 p.m. PT. The winners of the Fraud/Insider Threats category will show a demo of their app on Thursday, August 6 at 1:40 p.m. Splunk engineers, industry and academic experts judged dozens of apps that Splunk community members built and submitted as part of the contest.

Go to the Splunk website to learn more about Splunk security and fraud solutions.

Universities Worldwide Take Splunk to the Classroom

More than 100 Universities Teach or Research with Splunk Solutions to Help Build a Foundation for the Future of Data Analytics

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced that Splunk software is being taught or used for research in more than 100 universities around the world. Using Splunk solutions in the classroom equips students and faculty with analytical skills and concepts that are in high demand in today’s business and public sector environment. Georgetown University, Nanyang Polytechnic (Singapore), Northwestern University, San Jose State University, Sapienza University (Italy), University of Colorado at Boulder and University of Oxford (United Kingdom) are among the campuses teaching students the importance of gaining valuable insights from real-time analysis of machine data using Splunk solutions.

“More than 500 universities and institutions of higher learning are customers of Splunk. Now, we are providing a way for the workforce of the future to learn Splunk skills early and to gain a head start in the job market,” said Rob Reed, worldwide education evangelist, Splunk. “Splunk is excited to be actively supporting these forward-thinking universities that are training the next generation of data scientists and IT, security and business professionals with powerful software that is easy to use. It is thrilling to see college students around the world, from undergrads to Ph.D. candidates, learning in the classroom how to gain insights from machine data with Splunk solutions.”

“Today’s educational institutions can help teach skills and concepts to prepare students for success in the workplace. Hands-on experience with Splunk software can help students understand streaming live data and operational intelligence,” said Dr. Betsy Page Sigman, distinguished teaching professor, McDonough School of Business, Georgetown University.

“At Nanyang Polytechnic, emphasis is placed on ensuring that our students acquire real-world knowledge and skills that are highly relevant in the industry, hence the inclusion of Splunk solutions in our curriculum,” said Win Aung, Information Security professor, Nanyang Polytechnic. “We are pleased to be among the first in Singapore to collaborate with Splunk in professional training since 2011 and will continue to do so as we stay in the forefront of training talents in big data competency.”

“Students need to understand the power of combining unstructured data with the structured data that businesses already collect and manage; integrating Splunk solutions into our curriculum gives them access to a simple-to-use platform that can change the competitive stature of any business,” said Scot Wheeler, lecturer of Digital Analytics, Northwestern University.

“By using Splunk software in our Social Computing class, students learn the concepts and skills they need to identify interesting social media behaviors that are generated during times of mass emergency,” said Leysia Palen, Professor of Computer Science and Chair of Information Science, University of Colorado Boulder. “In my class, students actively engaged in the analysis of Twitter data from the 2013 Colorado Floods and the 2012 Costa Rica Earthquake. Splunk software helped to accelerate students’ analysis and aided in the creation of useful visualizations for their final reports.”

“At the Global Health Network of the University of Oxford we use Splunk Enterprise in our research projects on global health issues,” said Poura Amirian, lecturer and data scientist at The Global Health Network, University of Oxford. “At Oxford University, we use Splunk Enterprise to find insights from very large datasets, and Splunk Enterprise provides us with a good combination of ease of use and big data analytics.”

Splunk has a wealth of resources to help any faculty member get started, including academic licensing, online Splunk eLearning modules (a link to the free courses can be seen in the lower right hand corner), and instructors-only Splunk training materials.

Splunk Enterprise is also available to any not-for-profit university in the United States as an Internet2 NET+ offering via a pre-negotiated contract and subscription pricing.

Splunk Named a Leader in 2015 Gartner Magic Quadrant for SIEM

Splunk Is the Only Company to Improve on Completeness of Vision

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced it has been named a leader in Gartner’s 2015 Magic Quadrant for Security Information and Event Management (SIEM)* for the third straight year. Splunk was the only vendor to improve its completeness of vision from last year’s results. Gartner evaluated the Splunk security portfolio, including Splunk® Enterprise and the Splunk App for Enterprise Security , used by thousands of organizations around the world. To view the report, go to: http://www.splunk.com/goto/SIEM_MQ.

According to Gartner report authors Kelly Kavanagh, principal research analyst, and Oliver Rochford, research director, “The greatest area of unmet need is effective targeted attack and breach detection. Organizations are failing at early breach detection, with more than 92 percent of breaches undetected by the breached organization. The situation can be improved with stronger threat intelligence, the addition of behavior profiling and better analytics.”

“Splunk is the only security provider to improve on completeness of vision in the Gartner 2015 SIEM Magic Quadrant which we believe serves as the latest evidence that Splunk remains at the forefront of solving advanced and emerging SIEM use cases,” said Haiyan Song, senior vice president of security markets, Splunk. “Splunk is growing well beyond the SIEM market rate, as an increasing number of companies recognize the value of taking an analytics-driven approach to security with Splunk as the nerve center. And with our recent acquisition of Caspida, Splunk is adding machine learning-based user behavioral analytics and extending our analytics-enabled SIEM to better detect advanced and insider threats.”

To protect against advanced threats, a growing number of organizations are using Splunk security analytics to augment, replace and go beyond their legacy SIEM deployments. Splunk security solutions help organizations improve the detection, response and recovery from advanced threats by providing them with broad security intelligence from data that is collected across IT, the business and the cloud.
To view the report, go to: http://www.splunk.com/goto/SIEM_MQ.

Register now for .conf2015, the 6th Annual Splunk Worldwide Users’ Conference, featuring more than 150 sessions by 4,000 plus Splunk customers, partners, experts and employees. .conf2015 is being held September 21-24, 2015 at MGM Grand in Las Vegas.

Gartner, Magic Quadrant for Security Information and Event Management, Kelly Kavanagh, Oliver Rochford, July 20, 2015. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose .

Splunk Acquires Caspida

Extends Security Analytics Leadership by Adding Behavioral Analytics to Better Detect Advanced and Insider Threats

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced it has acquired Caspida, Inc., a leading innovator in machine learning and behavioral analytics. Under the terms of the agreement, Splunk has acquired all of the outstanding stock of Caspida for an aggregate purchase price of approximately $190 million, including approximately $127 million in cash and $63 million in restricted Splunk securities.

imgres

The combination of Splunk® and Caspida™ technology revolutionizes the security market by unifying world-class breach response with breach detection. Recent high-profile breaches show virtually all attacks happen with compromised credentials, and automated detection leveraging machine learning is the future for detecting known and unknown threats from insider and external attackers. Splunk customers now have out-of-the-box user behavioral analytics to help detect, respond to and mitigate these threats. This combination of Splunk’s leading machine data platform with Caspida software provides the most comprehensive security analytics solution available today.

“Splunk built its reputation in security by enabling customers to more effectively respond to breaches. With this acquisition, our customers can now also better detect advanced threats – the breaches that are becoming more complex and severe with each passing day,” said Haiyan Song, senior vice president of security markets, Splunk. “With Caspida, Splunk accelerates its focus on solving advanced threats – both external and from insiders – by shining a light on those who are wrongfully using valid credentials to freely and unpredictably exploit systems they have accessed. By addressing the entire lifecycle of known and unknown advanced threats, and by providing a platform to detect, respond to, and automate actions, Splunk has further reinforced its position as the security nerve center.”

Attacks with trusted access are often not detected by existing security approaches. Whether gaining access through compromised accounts/systems or leveraging existing privileges to conduct malicious activities, attackers often do not need to deploy additional malware. These activities are dynamic and attackers will find ways to evade traditional security technologies. Even if detected, security analysts must find supporting evidence, often using a kill chain methodology to identify the progression of activities from intrusion to lateral movement to exfiltration. Caspida has innovated the use of data science and machine-learning algorithms to detect advanced threats and malicious insiders – presenting the most meaningful set of threats for SOC analysts and incident responders.

“We founded Caspida with a vision of applying data science to help solve the most pressing cybersecurity challenges – advanced threats and insider threats,” said Muddu Sudhakar, CEO, Caspida. “By analyzing machine data and using data science to detect meaningful anomalous behavior of users, devices and entities, Caspida has solved a problem that previously required significant manpower and expensive, do-it-yourself toolsets. We are very excited to join the Splunk family and deliver new detection capabilities to customers.”

Key capabilities of the combination of the Splunk and Caspida solutions include the ability to:

Detect Advanced, Hidden and Insider Threats Out-of-the-Box Using Data Science
– Continuous threat and anomaly detection that applies multi-domain analysis using machine learning.
– Uncovers hidden breaches and new attacks out-of-the-box without extensive customization.

Improve Threat Detection with Targeted Incident Response
– Provides threat activities relative to the kill chain with supporting evidence to enable targeted remediation.
– Detects multi-domain (user, device and traffic applications) anomalies and streamlines threat review and incident resolution.

Dramatically Increase SOC Efficiency
– Scores and highlights the most important threats and anomalies to minimize alert fatigue.
– Detects and provides insights on threats and suspicious activities to complement and extend threat intelligence.

Learn More: http://www.splunk.com/en_us/investor-relations/acquisitions/caspida.html