Author Archive

Splunk Brings Industrial IoT Data to Life with Splunk Industrial Asset Intelligence

Transform Industrial Operations with Real-Time Monitoring and Predictive Analytics

SAN FRANCISCO – April 10, 2018 – Splunk Inc. (NASDAQ: SPLK), first in delivering “aha” moments from machine data, today announced the limited availability of Splunk Industrial Asset Intelligence (IAI), its first Internet of Things (IoT) solution. Splunk® IAI helps organizations in manufacturing, oil and gas, transportation, energy and utilities monitor and analyze industrial IoT data in real time to create a simple view of complex industrial systems while helping to minimize asset downtime.

Around the world, manufacturers are increasingly looking to their IoT data to better monitor and diagnose operational issues and predict maintenance needs. In fact, by 2025, more than a quarter of data created in the global datasphere will be real time in nature, and real-time IoT data will make up more than 95% of this. 1

With this rapid increase in IoT data, industrial engineers and analysts are often overwhelmed with the sheer volume of machine data that is generated today by disparate industrial control systems and sensors. Splunk IAI offers a packaged set of capabilities that helps customers pivot their operational strategy from reactive to proactive.

“Real-time analytics is an absolute must for manufacturers today, but organizations are struggling to bridge the gap between legacy systems, industrial assets and sensor data,” said Ammar Maraqa, senior vice president, business operations and strategy and general manager of IoT Markets, Splunk. “Splunk IAI provides a single solution that helps ensure industrial systems are running at full capacity, enabling organizations to significantly save resources and money on unplanned downtime.”

“For years, Splunk has provided their customers with valuable answers from their IT and security machine data. Now, the massive growth of IoT data has the industrial world demanding a solution that can help them proactively take action on their data as well,” said Dr. Ulrich Bock, director, rail and industry consulting, ESE GmbH. “As a Splunk partner, we look forward to helping our customers turn IoT data into answers to further fuel their business.”

Built on top of Splunk® Enterprise, Splunk IAI enables capture and correlation of data from Industrial Control Systems (ICS), sensors, SCADA systems and applications, making it easy to monitor and diagnose equipment and operational issues in real time. This data-driven approach to industrial operations enables customers to respond to issues faster without affecting production, where unplanned downtime can equate to millions of dollars in lost revenue.

1IDC White Paper, sponsored by Seagate, Data Age 2025, April 2017

“Working with Splunk Industrial Asset Intelligence has helped us significantly reduce the time spent on troubleshooting equipment issues,” said Ricardo Bicudo, vessel performance manager, Sapura Navegacao Maritima. “This is a key factor for our company strengthening our safety and operational standards.”

“The packaged set of capabilities provided by Splunk Industrial Asset Intelligence easily integrates with our existing Splunk platform,” said Erika Swartz, senior process engineer, fibers division, Shaw Industries. “Access to real-time and predictive insights is critical for identifying and diagnosing issues, as well as improving performance of our manufacturing processes.”

A limited availability release of Splunk IAI will be introduced on April 23, 2018 at leading industrial conference Hannover Messe, with general availability for all Splunk customers this fall. To sign up for the limited availability release of Splunk Industrial Asset Intelligence, visit the Splunk website.

Splunk Closes Acquisition of Phantom

Acquisition of Security Orchestration, Automation and Response Leader Propels Analytics-Driven Security and IT

SAN FRANCISCO – April 9, 2018 – Splunk Inc. (NASDAQ: SPLK), first in delivering “aha” moments from machine data, today announced that it has closed the acquisition of Phantom Cyber Corporation, a leader in Security Orchestration, Automation and Response (SOAR). Phantom’s SOAR platform helps organizations improve the efficiency of their Security Operations Center (SOC) by automating tasks, orchestrating workflows, improving collaboration and enabling incident response at machine speed. For more information, visit the Phantom website to register and download Phantom Community edition for free.

The aggregate purchase price for the transaction was approximately $350 million, excluding working capital and other adjustments, paid in cash and restricted common stock.

“Today marks an exciting new era for Splunk and Phantom customers, partners and employees,” said Doug Merritt, President and CEO, Splunk. “The combination of Splunk’s machine data platform with Phantom’s SOAR technology will accelerate a new age of analytics-driven security and expand Splunk’s vision as the security nerve center for SOCs around the world.”

Automation and orchestration are integral parts of security customers’ SOC strategies to accelerate incident response while addressing the security skills shortage. Phantom’s SOAR platform offers automation capabilities that will also assist IT teams in solving challenges in a widening range of use cases, including Artificial Intelligence for IT Operations (AIOps).

For more information about Splunk and Phantom, visit the Splunk website.

Safe Harbor Statement

This press release contains forward-looking statements that involve risks and uncertainties, including statements regarding the expected benefits of the acquisition of Phantom, the impact of the acquisition on Splunk’s products and services, the capabilities of Phantom’s products and services and the expected benefits of the combined offerings. There are a significant number of factors that could cause actual results to differ materially from statements made in this press release, including: difficulties encountered in integrating the business, technologies, personnel and operations; costs related to the acquisition and integration; market acceptance of the acquisition and resulting products and services; Splunk’s inability to realize value from its significant investments in its business, including product and service innovations; and general market, political, economic and business conditions.

Additional information on potential factors that could affect Splunk’s financial results is included in the company’s Annual Report on Form 10-K for the fiscal year ended January 31, 2018, which is on file with the U.S. Securities and Exchange Commission. Splunk does not assume any obligation to update the forward-looking statements provided to reflect events that occur or circumstances that exist after the date on which they were made.

Splunk Named in the Leaders Category of the IDC MarketScape Asia/Pacific Big Data and Analytics Platform 2017 Vendor Analysis Report

Splunk Recognized for Critical Technology Capabilities and Customer Value in Big Data Analytics Market

SAN FRANCISCO and HONG KONG – March 6, 2018 – Splunk Inc. (NASDAQ: SPLK), first in delivering “aha” ” moments from machine data, today announced it has been named in the “Leaders” category of the IDC MarketScape: Asia Pacific Big Data and Analytics Platform 2017 Vendor Analysis report*. Within the IDC MarketScape methodology, a host of key criteria was considered, including Splunk’s strategy, offerings (including Splunk® Enterprise and Splunk CloudTM), user experience and vision in artificial intelligence and machine learning. Download an excerpt of the IDC MarketScape: Asia Pacific Big Data and Analytics Platform 2017 Vendor Analysis report on the Splunk website.

“Splunk has established its position within the market as an essential partner for businesses performing analysis related to the performance and robustness of the security within the organization,” said Kar Leong Tew, research manager, IDC. “Building on this foundation, Splunk is leveraging its expertise and experience at integrating and handling data from multiple data sources of different granularity and importance, such as API pulls, logs and metrics at providing analytical capabilities to their customers. Splunk helps customers take action based on their analysis of the data, taking into consideration its relative importance within their organization.”

“We are honored to be named by the IDC MarketScape as a leader in Asia Pacific big data analytics platforms,” said Chern-Yue Boey, vice president of APAC, Splunk. “Splunk customers recognize the business value of machine data, and they are using the Splunk platform to turn data into answers in use cases spanning IT operations, security, business analytics and Internet of Things.”

The Splunk platform is available on-premises, as a cloud service or as a hybrid solution. To accelerate time-to-value, many Splunk customers leverage Splunk Enterprise Security (ES), Splunk IT Service Intelligence (ITSI) and Splunk User Behavior Analytics (UBA). These premium solutions are purpose-built offerings that provide comprehensive, end-to-end experiences for specific personas and use cases. Artificial intelligence and machine learning is used to enhance the monitoring, detection and prediction of critical IT, security and business events. Splunk ITSI and Splunk UBA utilize unsupervised machine learning which delivers value to any user, but Splunk also helps operationalize machine learning by enabling custom analytics and a more hands-on experience through the Splunk Machine Learning Toolkit. This toolkit is available for free to any Splunk Enterprise or Splunk Cloud customers, and it allows users to easily create, deploy and manage machine learning models.

Reflecting the company’s growing momentum, Splunk received additional industry recognition by winning the NetworkWorld Asia Readers’ Choice Product Excellence Awards 2017 in the Big Data and Business Analytics category for the third consecutive year. The awards recognize technology providers in Asia Pacific that have contributed to the innovative application of technology by end-user enterprises as they seek to help customers with their digital transformation.

Splunk and New Relic Power Digital Business Success

New Integration Unifies Machine Data Analytics and Performance Monitoring to Power Digital Transformation and Business

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, and New Relic Inc., the digital intelligence leader, today announced a strategic alliance and a new integration to help enterprises improve customer experiences and drive revenues. The Splunk App for New Relic, available today as a preview release on Splunkbase, gives developers and IT operations teams a comprehensive view into both application performance and infrastructure health with seamless sharing of data across both Splunk® and New Relic platforms.

The Splunk Platform collects, analyses and visualises machine data from all levels of the IT stack, including applications, infrastructure and wire data on the network so organisations can make business critical decisions tied to troubleshooting, reliability and planning. New Relic’s Digital Intelligence platform collects and traces data from agents inside application code and infrastructure so organisations can make decisions on customer experience, application dependencies and code performance. Both solutions support cloud, hybrid and on-premises data center architectures.

Unifying machine data analytics with application tracing and performance metrics enables IT and business stakeholders to experience a faster time-to-value through visualising data across both platforms. The Splunk App for New Relic integration enables developers and IT operations teams to quickly identify issues, reduce mean-time-to-resolution (MTTR) and proactively improve customer experiences. The result is improved revenues and expanded resources for engineering teams to drive a faster pace of innovation for their end users.

“Machine data is the fuel for digital transformation and those organisations capitalising on the opportunity are leading the way in IT by monitoring and troubleshooting application performance, often with both Splunk and New Relic,” said Rick Fitz, senior vice president of IT Markets, Splunk. “The partnership enables our joint customers to gain value faster, whether their applications run on-premises or on the cloud. The integration breaks down silos within IT teams to be able to fully leverage both data and workflow insights across the platforms to gain deeper insights with fewer steps.”

“New Relic’s agent data provides visibility into the dependencies across customer experience to application code to infrastructure. When combined with machine data from Splunk, our joint customers will be able to troubleshoot and innovate faster,” said Jim Gochee, chief product officer, New Relic. “We have heard from many customers that they want to standardise the tools and streamline the processes they use to run digital businesses, and today we’re making it possible with an all-in-one integration between two market-leading platforms.”

Melillo Consulting, an experienced technology solutions integrator, works with Splunk and New Relic customers. “Organisations embracing digital business strategies require unified data analysis across all levels of their IT stack, including applications and infrastructure, to ensure they can make informed, business-critical decisions,” said Dan Sytsma, vice president and general manager, Melillo Consulting. “One of the most frequent requests we receive from our customers stems from the desire to seamlessly integrate data across both Splunk and New Relic platforms. The Splunk App for New Relic gives our customers detailed application performance insight to complement machine data analytics insight across the technology stack, without the manual integrations previously required.”

To download the Splunk App for New Relic, click here.

Splunk Recognised as a Leader in Security Analytics by Independent Research Firm

Splunk Enterprise Security Receives Highest Possible Score for Real-Time Monitoring, Scalability and Detection Technologies

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced its position as a Leader in The Forrester Wave™: Security Analytics Platforms, Q1 2017 report. The report evaluates the most significant security analytics (SA) providers based on current offering, strategy and market presence. To view the complete report, visit the Splunk website.

According to the report, “Enterprises widely deploy Splunk as a log management and search tool for infrastructure and operations use cases in addition to security use cases … Enterprises with advanced security teams and complex logging requirements should consider Splunk.” The report also states, “Security analytics platforms give [security and risk] pros the ability to detect, investigate, and respond to cyber security threats. Speeding detection and hastening the investigation process enables faster response, lessening the impact of cyber attacks.”

For this report, Forrester evaluated Splunk Enterprise 6.5 and Splunk Enterprise Security (ES) 4.5. As a leader, Splunk received a 5.0 out of 5.0 in 17 criteria, including real-time monitoring, infrastructure, log management, scalability, and dashboard and reporting.

“Splunk introduced security analytics to the market several years ago directly in response to customer feedback and market dynamics, which have increasingly been centred on making data actionable. We’re proud to help customers around the world make sense of their data and embrace an analytics-driven approach to security,” said Haiyan Song, senior vice president of Security Markets, Splunk. “As organisations seek out solutions to help them detect, respond and hunt for threats faster than ever, many organisations have chosen Splunk to act as their nerve centre for security operations. We believe that Forrester has recognised the value Splunk brings to our customers. In our view, this report further validates how imperative it is to have analytics-powered technologies like Splunk at the heart of the Security Operations Center.”

Splunk customers use a platform-oriented approach to gain a wide range of analytics capabilities through Splunk Enterprise, Splunk ES, the machine learning toolkit and Splunk User Behavior Analytics (UBA). This provides users with insight into machine-generated data, including network, endpoint, access, anti-malware, vulnerability and identity information. Ultimately, this gives users the necessary analytics, flexibility and customization in their SOCs to manage and hunt security threats in real-time.

In Forrester’s 36-criteria evaluation of security analytics vendors, the research firm identified what they deem the 11 most significant providers in the category and researched, analysed and scored them. The Forrester Wave: Security Analytics Platforms report assesses the state of the security analytics market, and details findings about how well each vendor fulfils the criteria and where each fits in relation to each other.

To learn more about analytics-driven security and Splunk ES, download the report at the Splunk website.

Forrester Research, Inc., The Forrester Wave™: Security Analytics, by Joseph Blankenship with Stephanie Balaouras, Bill Barringham and Peter Harrison; March 6, 2017

Splunk Takes Home Excellence Award for Best Enterprise Security Solution at SC Awards 2017

Splunk Earns Recognition from SC Magazine for Sixth Consecutive Year

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, announced today that Splunk® Enterprise Security (Splunk ES) won the Excellence Award for Best Enterprise Security Solution at the SC Awards 2017.

“We are honored that Splunk ES earned this prestigious recognition as the Best Enterprise Security Solution by SC Media. The award is further testament that organisations around the world are hungry for analytics-driven security solutions that can detect and respond to threats while enabling real-time decision-making across security operations,” said Haiyan Song, senior vice president of security markets, Splunk. “As advanced cyber adversaries find new avenues to penetrate valuable data, it’s crucial that businesses can visualise and respond to threats faster than ever – which is why so many organisations rely on Splunk to help protect their data.”

Winners in the Excellence Award category of the SC Awards were selected by a panel of IT security experts from both the private and public sector. During the judging process, each finalist went through a rigorous evaluation that included in-depth analysis, analyst reports and/or product reviews. After a thorough and comprehensive analysis of each finalist’s strengths, Splunk’s Enterprise Security Solution was chosen as the winner of an Excellence Award in the Best Enterprise Security Solution category.

Splunk customers use ES as their security nerve centre, combining Splunk’s core security and information event management (SIEM) functionality with Splunk User Behavior Analytics (UBA). With Splunk ES, security analysts get insight into machine data generated from security technologies such as network, endpoint, access, malware, vulnerability and identity information, which arms teams with deep investigative and rapid response capabilities. This combined platform provides security analysts with a comprehensive solution that sits at the heart of the Security Operations Center (SOC) to improve threat detection and reduce time to resolution.

“Winning an Excellence Award represents hours, weeks and months of hard work, problem solving and dedication,” said Illena Armstrong, VP, editorial, SC Media. “We are proud to recognise Splunk for its outstanding contribution to the IT security landscape.”

Splunk ES was also a SC Awards Finalist for Best SIEM and Splunk UBA was a Finalist for Best Behavior Analytics/Enterprise Threat Detection. This caps a year of strong industry recognition for Splunk, with Splunk ES being named a leader in the 2016 Gartner Magic Quadrant for Security Information and Event Management (SIEM) for the fourth consecutive year.

The SC Awards are recognised throughout the cyber security industry and are a crowning achievement for IT security professionals and products. Each year, hundreds of applications are reviewed and narrowed down to a select group of finalists that represent the best solutions, services and professionals working around the clock to protect today’s businesses from an ever-changing landscape of security threats. For more information and a detailed list of categories, finalists and winners, please visit http://www.scmagazine.com/awards.

Splunk Customers Find Threats Faster with Adaptive Response

Splunk and Partners to Demonstrate New Capabilities at RSA Conference 2017

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced five new members of the Splunk Adaptive Response Initiative. The growing program, initially announced last year, is a best-of-breed security initiative helping organisations better analyse, assess and respond to advanced attacks within their Security Operations Center (SOC). New members integrate security policy management, incident response and endpoint security capabilities and include AlgoSec, Demisto, RedSeal, Resolve Systems and Symantec (Advanced Threat Protection).

Increasingly sophisticated cyber threats like ransomware and attacks on the Internet of Things (IoT) security are disrupting and negatively impacting businesses across the globe. To detect and respond to these threats, businesses often rely upon point security solutions when a communicative multi-vendor environment is required to gain end-to-end threat visibility. The Adaptive Response framework provided by Splunk Enterprise Security (Splunk ES) orchestrates a wide range of security capabilities, enabling point solutions to work better together. One example of this is through ForeScout, a Splunk partner and Adaptive Response member that gives joint customers such as Brown-Forman visibility and control of devices connecting to its network in order to detect threats and execute a response faster than ever before.

“Leveraging the ForeScout Extended Module for Splunk via Adaptive Response, we can increase our holistic data defence and security to minimise the impact of malware and data breaches,” said Clayton Colwell, associate security engineer, Brown-Forman Corporation. “With these bi-directional communications, we anticipate even higher real-time visibility. This will enable us to minimise the time and resources needed to respond to emerging threats.”

Since its launch in 2016, the Adaptive Response Initiative has brought together over 20 industry leading security domains covering a wide range of security technologies, including next-generation firewall (NGFW), endpoint security, threat intelligence, identity management, incident response and more. By working together through Splunk ES, the initiative enables customers to analyse and correlate a wide range of data across their multi-vendor environments. By leveraging Splunk’s Adaptive Response framework, these customers and partners gain insights into all relevant data, helping security analysts discover new ways to gain end-to-end context and improve security posture.

“Digital transformation is forcing organisations to strengthen their security posture through security analytics. While thousands of organisations rely on Splunk to analyse, assess and respond to threats, we cannot fight them alone,” said Haiyan Song, senior vice president of security markets, Splunk. “Security is a team sport. It is more important than ever for industry-leading technologies in our Adaptive Response Initiative to work together and help organisations detect and defend themselves from growing cyber threats. We welcome our new Adaptive Response members and look forward to working with them to satisfy this critical market requirement.”

For more information, visit the Splunk website for a complete list of security technologies involved in the Adaptive Response Initiative.

Splunk Ranked #1 in Worldwide IT Operations Analytics Software Market Share

Second Year in a Row

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced it has been ranked number one in worldwide IT Operations Analytics (ITOA) software market share for 2015 by IDC, a leading provider of global IT research and advice. The IDC report* states that Splunk® software and cloud services claimed the top market share with 28.5 percent. This is IDC’s second study of vendor revenues and market shares in the rapidly growing ITOA software market. For the second year in a row, Splunk holds the greatest share of the market.

According to the IDC report authored by Tim Grieser and Mary Johnston Turner: “The company [Splunk] achieved rapid growth driven by expansion in log management and analysis capabilities. The number of data sources, data volumes, and use cases continued to expand driving increased customer adoption. Splunk has invested in solutions for Hadoop, mobile, real-time wire, and security. Splunk supports pre-packaged content and visualisation for a variety of use cases including IT operations and APM. This is making Splunk-based analytics available to an increasing variety of IT and business users.”

“We have seen rapid adoption of Splunk IT Service Intelligence (ITSI), which helped cement Splunk’s position as the number one market share leader for 2015 in the emerging ITOA market,” said Rick Fitz, senior vice president of IT markets, Splunk. “The latest IDC report is a strong proof point for the success our customers and partners experience with an analytics-driven approach to understanding and responding to complex enterprise environments.”

Splunk Enterprise and Splunk Cloud enable organisations to consolidate silos of machine data and use analytics to improve IT service health, reduce costs, resolve problems faster and drive critical business decisions. Splunk IT Service Intelligence, built on the powerful Splunk platform, is a machine learning-powered monitoring solution that employs analytics to help organisations find root cause faster and lower mean-time-to-resolution by providing unified service visibility, detecting emerging problems, and simplifying incident investigations and workflows.

Visit the Splunk website to learn how customers like Cox Automotive, Cardinal Health, and Surrey Satellite Technology (SSTL) use analytics from Splunk ITSI to gain real-time insights and increase IT operational efficiencies. Learn more about IT Operations Analytics with Splunk Enterprise and Splunk Cloud by visiting the Splunk website.

* IDC, Worldwide IT Operations Analytics Software Market Shares, 2015: Special Report (doc #US41663816 August 2016)

Personal Use Dev/Test Licenses for Splunk Enterprise and Splunk Cloud Customers

Given customers the freedom to explore with Splunk 6.5

Want to experiment with new data sources and start new projects? Splunk will soon provide paying customers with individual Development/Test (Dev/Test) licenses of Splunk Enterprise for non-production use.

Splunk will provide paying customers with personalised 50GB, 6-month term Dev/Test licenses for non-production use. These licenses will enable individual users within the organisation to experiment with new data sources, as well as encourage other users in the organisation to try out Splunk in a frictionless manner.

These are personalised licenses that are specific to an individual user within each paid customer account. Each user can only have one active Dev/Test license at a time.

Customers can acquire these licenses starting in early November 2016. The Dev/Test license is not stackable and has certain feature limitations.

Customers should pre-register their interest with Rivium by contacting your Rivium Account Manager and we can provide you with pre-registration details.

Splunk Removes Metered Enforcement in Splunk Enterprise

To optimize customer experience and satisfaction, Splunk Enterprise will no longer shut off search when a customer goes over their licensed data ingestion capacity.

This does not change a customers agreement with Splunk. All aspects of Splunks licensing remain the same: customers will still get license overage warnings and Splunk are retaining the Right to Audit language in the end user license agreement.

In order to enable this functionality, customers will need Splunk Enterprise 6.5 inclusive of a license key with this feature. All new, upgrade, or expansion orders booked on or after September 26, 2016 will receive keys with enforcement turned off. Existing customers can receive this same benefit by upgrading to Enterprise 6.5 and requesting a “no enforcement” key from their Splunk Rep or Splunk Authorized Partner after September 26, 2016.

The disabled enforcement applies to all traditional commercial, MSP, EDU, and Non-Profit licenses. Cloud behavior will not change with this announcement. Hard software enforcement (where we shut down search capabilities) remains on Dev/Test, Free, Developer, Trial and NFR licenses.

Splunk is passionate about customer satisfaction and this will ensure Splunk is available during a customers’ most critical times of need.

For assistance with upgrading your current environment to Splunk 6.5 and to obtain a “no enforcement” key, please contact your Rivium Account Manager.