Splunk Accelerates Momentum in Industrial Data and Internet of Things

New Product Capabilities, Customer Success and Growth in Partner Ecosystem Fuel Continued Expansion into Growing, New Market

Splunk Inc. (NASDAQ: SPLK), provider of the leading software platform for real-time Operational Intelligence, today announced accelerated momentum in Industrial Data and Internet of Things (IoT). The trend is driven by Splunk’s continued investment in its products and partner ecosystem as well as the creativity of customers and the flexibility to deploy Splunk IoT solutions as software, cloud services or in a hybrid environment. Customers are using Splunk® solutions to collect and correlate data from control systems, sensors, mobile devices and IT systems for a variety of Industrial Data and IoT use cases. These use cases include operational efficiency, predictive maintenance, industrial cybersecurity and asset analytics.

“It has been great to see the success our manufacturing teams are achieving with Splunk solutions,” said Saul Llamas, manufacturing test engineering manager, Zebra Technologies. “Our teams have been able to bring value to their own operations by using Splunk Enterprise and its powerful data collection, analytics and visualization capabilities to improve manufacturing quality, customer experience and ultimately our products.”

New Splunk Enterprise 6.3 features and community and partner apps further expand the applicability of Splunk solutions for Industrial and IoT use cases. New features include the HTTP event collector to collect IoT data at scale, new customer alert actions to trigger custom data-driven actions in third-party applications and the Machine Learning Toolkit and Showcase (preview) for advanced analytics. Splunk also has a wide-ranging ecosystem of partners in the Internet of Things including Bluvision, Carvoyant, Citrix Octoblu, CQCloud, DGLogik, Falkonry, Kepware, N3N, Wizcore and Xively by LogMeIn, all of which are demonstrating technology or solutions at .conf2015.

“From trains, planes and automobiles to manufacturing floors, our customers are leading the way with their innovative use of Splunk solutions for Industrial Data and Internet of Things,” said Snehal Antani, chief technology officer, Splunk. “The Internet of Things transforms the way organizations leverage machine data and gain insights from it. The product investments that we have made along with our growing IoT ecosystem will further expand Splunk’s role in these use cases and accelerate the value realized from Splunk solutions.”

For more information about using Splunk for Industrial Data and the Internet of Things, visit the Internet of Things solution page of the Splunk website.

Sydney’s Splunk User Group

When: Wednesday, 16 September 2015
Time: 5.00pm-7.00pm
Location : Level 1 @ Angel Hotel, 125 Pitt Street, Sydney

The next meet up for the Sydney Splunk User Group is coming up.

Get along to the meet up and hear how a leading ISP uses Splunk to ingest machine data from telco systems and provide business information to various business teams.

Here’s the agenda:

5:00 PM Welcome & Networking
5:30 PM ISP use case
6:00 PM Q & A
6:30 PM Close – Pizza/Beer

Click the link to join the Sydney Splunk User Group, and RSVP to this event:

Looking forward to seeing you there.

Canberra Splunk User Group Meetup

When: Thursday, 17 September 2015
Time: 4.30pm-6.30pm

The next meet up for the Canberra Splunk User Group is coming up.

At this meet up we will hear from Ashley Hartage, Senior Network Security Engineer at Verizon Enterprise Solutions. Ashley will be presenting on using SNMP for polling devices to track signature updates and versions.

Click the link to join the Canberra Splunk User Group, and RSVP to this event:

Looking forward to seeing you there.

Splunk Announces .conf2015: The 6th Annual Splunk Worldwide Users’ Conference

More than 80 Customer Speakers Including Cisco Systems, Ernst & Young, MetLife Inc., PostFinance, Rakuten and The Vancouver Clinic

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announces .conf2015: The 6th Annual Splunk Worldwide Users’ Conference scheduled for Sept. 21 – 24. Thousands of attendees along with Splunk experts are set to fill the MGM Grand in Las Vegas to hear Godfrey Sullivan, chairman and CEO, Splunk, take the stage to unveil new Splunk products and innovations. .conf2015 will also feature 165 speaking sessions, an Internet of Things pavilion featuring an innovative connected car, as well as a Splunk Women in Technology program. Register now for .conf2015.

.conf2015 will feature more than 80 customers speakers from around the world, including:

Steven Carter, architect, Cisco Systems: Carter will demonstrate a system using Splunk solutions and the Cisco Open SDN Controller to actively block threats within large data flows without potential performance issues of firewalls and other devices.

Rob Schlotman, head of design and engineering, Ernst & Young: Schlotman will explain how to get answers to critical questions throughout an entire application lifecycle process with Splunk solutions, enabling everyone from IT executives to DevOps to easily understand the state of the product service and keep it operational, as well as key feature usage.

Mariya Gilyadova, director, MetLife Inc.: Gilyadova will share MetLife’s journey of using Splunk solutions to take the company focus on customer centricity and turn it into a strategic initiative to improve customer experience.

Patrick Hofmann, head of IT infrastructure and deputy CIO, PostFinance: Hofmann will discuss how one of Switzerland’s largest retail banks is using Splunk solutions to connect business and IT to improve cash management, detect fraud and enhance security.

Keisuke Noda, data store platform administrator, Rakuten: Noda will discuss some challenging points for deploying Splunk-as-a-Service, such as best practices for managing clusters and improving operations using the Splunk API and tips for expanding the Splunk platform globally.

David Studer, systems analyst, The Vancouver Clinic: Studer will discuss how Splunk solutions enable the clinic to achieve patient privacy monitoring for a fraction of the cost of the legacy patient monitoring platforms.

“Whether you want to improve customer experience and service delivery, enhance IT performance, ship better code faster, provide timely business insights, reach new levels of security in your organization, or monitor the Internet of Things, .conf2015 has everything you need to achieve your goals,” said Steve Sommer, chief marketing officer, Splunk. “We are excited to learn about our customers’ newest use cases, tips and insights. We also have some surprises in store for attendees, such as what you can discover when you use Splunk software to analyze what Splunkers do on a race track with a Mustang GT. That’s part of what’s great about Splunk software – all you need is a browser and your imagination.”

Splunk University at .conf2015

Splunk University is a hands-on, lab-inspired pre-conference educational program to help Splunk users gain new insights and experience with Splunk’s product suite. Splunk University at .conf2015 offers single-day, two-day and three-day bootcamps from Sept. 19-21. For more information visit To sign up for Splunk University, check the appropriate boxes as you register for .conf2015.

Splunk Security Solutions Front and Center at Black Hat USA 2015

New User Behavior Analytics to Help Defend Against Advanced Threats; Splunk to Announce Winners of $150,000 Splunk Apptitude App Contest

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced it will demonstrate Caspida, the newly acquired behavioral analytics and machine learning software, at Black Hat USA 2015. Splunk security experts will also be demonstrating Splunk’s award winning security solutions, including Splunk® Enterprise, the Splunk App for Enterprise Security, Palo Alto Networks App for Splunk, FireEye App for Splunk and the Cisco Security Suite.

Additionally, Joseph Zadeh, data scientist, Splunk, will present, “From False Positives to Actionable Analysis: Behavioral Intrusion Detection, Machine Learning, and the SOC,” on Thursday, August 6 from 12:10-1:00 p.m. PT in the Mandalay Bay EF at the Mandalay Bay in Las Vegas. Zadeh is formerly of Caspida, which Splunk recently acquired to help customers better detect advanced and insider threats. Visit the Splunk booth (#347) to find out why Splunk was named a Leader in the 2015 Gartner SIEM Magic Quadrant and learn how Splunk’s machine data platform enables organizations to detect, respond to and prevent known, unknown and advanced threats.

“Advanced cyber threats are using valid, compromised credentials to access sensitive data and evade detection from traditional security products, but Splunk customers have the upper hand,” said Haiyan Song, senior vice president of security markets, Splunk. “We are excited to show Black Hat USA 2015 attendees how the combination of Caspida and Splunk software creates the most comprehensive security analytics solution available today.”

Splunk is also the official provider of Operational Intelligence for the Black Hat Network Operations Center (NOC). The Black Hat network is one of the most advanced networks for hostile environments with many constraints for security, operations and protecting user privacy. Splunk’s visibility, analytics and visualizations will help the Black Hat NOC analysts keep their network secure and operational. Keep up to date with Splunk in the NOC:

Splunk Apptitude App Contest

Splunk will also announce the winners of The Splunk Apptitude App Contest at Black Hat USA 2015. The contest, judged by a panel of industry experts, sought new solutions to cover three categories: Fraud/Insider Threats, Social Impact and Innovation. The winners will be awarded cash prizes totaling $150,000. Winners will be announced at the Splunk booth today, Wednesday, August 5 at 1:40 p.m. PT. The winners of the Fraud/Insider Threats category will show a demo of their app on Thursday, August 6 at 1:40 p.m. Splunk engineers, industry and academic experts judged dozens of apps that Splunk community members built and submitted as part of the contest.

Go to the Splunk website to learn more about Splunk security and fraud solutions.

Universities Worldwide Take Splunk to the Classroom

More than 100 Universities Teach or Research with Splunk Solutions to Help Build a Foundation for the Future of Data Analytics

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced that Splunk software is being taught or used for research in more than 100 universities around the world. Using Splunk solutions in the classroom equips students and faculty with analytical skills and concepts that are in high demand in today’s business and public sector environment. Georgetown University, Nanyang Polytechnic (Singapore), Northwestern University, San Jose State University, Sapienza University (Italy), University of Colorado at Boulder and University of Oxford (United Kingdom) are among the campuses teaching students the importance of gaining valuable insights from real-time analysis of machine data using Splunk solutions.

“More than 500 universities and institutions of higher learning are customers of Splunk. Now, we are providing a way for the workforce of the future to learn Splunk skills early and to gain a head start in the job market,” said Rob Reed, worldwide education evangelist, Splunk. “Splunk is excited to be actively supporting these forward-thinking universities that are training the next generation of data scientists and IT, security and business professionals with powerful software that is easy to use. It is thrilling to see college students around the world, from undergrads to Ph.D. candidates, learning in the classroom how to gain insights from machine data with Splunk solutions.”

“Today’s educational institutions can help teach skills and concepts to prepare students for success in the workplace. Hands-on experience with Splunk software can help students understand streaming live data and operational intelligence,” said Dr. Betsy Page Sigman, distinguished teaching professor, McDonough School of Business, Georgetown University.

“At Nanyang Polytechnic, emphasis is placed on ensuring that our students acquire real-world knowledge and skills that are highly relevant in the industry, hence the inclusion of Splunk solutions in our curriculum,” said Win Aung, Information Security professor, Nanyang Polytechnic. “We are pleased to be among the first in Singapore to collaborate with Splunk in professional training since 2011 and will continue to do so as we stay in the forefront of training talents in big data competency.”

“Students need to understand the power of combining unstructured data with the structured data that businesses already collect and manage; integrating Splunk solutions into our curriculum gives them access to a simple-to-use platform that can change the competitive stature of any business,” said Scot Wheeler, lecturer of Digital Analytics, Northwestern University.

“By using Splunk software in our Social Computing class, students learn the concepts and skills they need to identify interesting social media behaviors that are generated during times of mass emergency,” said Leysia Palen, Professor of Computer Science and Chair of Information Science, University of Colorado Boulder. “In my class, students actively engaged in the analysis of Twitter data from the 2013 Colorado Floods and the 2012 Costa Rica Earthquake. Splunk software helped to accelerate students’ analysis and aided in the creation of useful visualizations for their final reports.”

“At the Global Health Network of the University of Oxford we use Splunk Enterprise in our research projects on global health issues,” said Poura Amirian, lecturer and data scientist at The Global Health Network, University of Oxford. “At Oxford University, we use Splunk Enterprise to find insights from very large datasets, and Splunk Enterprise provides us with a good combination of ease of use and big data analytics.”

Splunk has a wealth of resources to help any faculty member get started, including academic licensing, online Splunk eLearning modules (a link to the free courses can be seen in the lower right hand corner), and instructors-only Splunk training materials.

Splunk Enterprise is also available to any not-for-profit university in the United States as an Internet2 NET+ offering via a pre-negotiated contract and subscription pricing.

Splunk Named a Leader in 2015 Gartner Magic Quadrant for SIEM

Splunk Is the Only Company to Improve on Completeness of Vision

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced it has been named a leader in Gartner’s 2015 Magic Quadrant for Security Information and Event Management (SIEM)* for the third straight year. Splunk was the only vendor to improve its completeness of vision from last year’s results. Gartner evaluated the Splunk security portfolio, including Splunk® Enterprise and the Splunk App for Enterprise Security , used by thousands of organizations around the world. To view the report, go to:

According to Gartner report authors Kelly Kavanagh, principal research analyst, and Oliver Rochford, research director, “The greatest area of unmet need is effective targeted attack and breach detection. Organizations are failing at early breach detection, with more than 92 percent of breaches undetected by the breached organization. The situation can be improved with stronger threat intelligence, the addition of behavior profiling and better analytics.”

“Splunk is the only security provider to improve on completeness of vision in the Gartner 2015 SIEM Magic Quadrant which we believe serves as the latest evidence that Splunk remains at the forefront of solving advanced and emerging SIEM use cases,” said Haiyan Song, senior vice president of security markets, Splunk. “Splunk is growing well beyond the SIEM market rate, as an increasing number of companies recognize the value of taking an analytics-driven approach to security with Splunk as the nerve center. And with our recent acquisition of Caspida, Splunk is adding machine learning-based user behavioral analytics and extending our analytics-enabled SIEM to better detect advanced and insider threats.”

To protect against advanced threats, a growing number of organizations are using Splunk security analytics to augment, replace and go beyond their legacy SIEM deployments. Splunk security solutions help organizations improve the detection, response and recovery from advanced threats by providing them with broad security intelligence from data that is collected across IT, the business and the cloud.
To view the report, go to:

Register now for .conf2015, the 6th Annual Splunk Worldwide Users’ Conference, featuring more than 150 sessions by 4,000 plus Splunk customers, partners, experts and employees. .conf2015 is being held September 21-24, 2015 at MGM Grand in Las Vegas.

Gartner, Magic Quadrant for Security Information and Event Management, Kelly Kavanagh, Oliver Rochford, July 20, 2015. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose .

Splunk Acquires Caspida

Extends Security Analytics Leadership by Adding Behavioral Analytics to Better Detect Advanced and Insider Threats

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced it has acquired Caspida, Inc., a leading innovator in machine learning and behavioral analytics. Under the terms of the agreement, Splunk has acquired all of the outstanding stock of Caspida for an aggregate purchase price of approximately $190 million, including approximately $127 million in cash and $63 million in restricted Splunk securities.


The combination of Splunk® and Caspida™ technology revolutionizes the security market by unifying world-class breach response with breach detection. Recent high-profile breaches show virtually all attacks happen with compromised credentials, and automated detection leveraging machine learning is the future for detecting known and unknown threats from insider and external attackers. Splunk customers now have out-of-the-box user behavioral analytics to help detect, respond to and mitigate these threats. This combination of Splunk’s leading machine data platform with Caspida software provides the most comprehensive security analytics solution available today.

“Splunk built its reputation in security by enabling customers to more effectively respond to breaches. With this acquisition, our customers can now also better detect advanced threats – the breaches that are becoming more complex and severe with each passing day,” said Haiyan Song, senior vice president of security markets, Splunk. “With Caspida, Splunk accelerates its focus on solving advanced threats – both external and from insiders – by shining a light on those who are wrongfully using valid credentials to freely and unpredictably exploit systems they have accessed. By addressing the entire lifecycle of known and unknown advanced threats, and by providing a platform to detect, respond to, and automate actions, Splunk has further reinforced its position as the security nerve center.”

Attacks with trusted access are often not detected by existing security approaches. Whether gaining access through compromised accounts/systems or leveraging existing privileges to conduct malicious activities, attackers often do not need to deploy additional malware. These activities are dynamic and attackers will find ways to evade traditional security technologies. Even if detected, security analysts must find supporting evidence, often using a kill chain methodology to identify the progression of activities from intrusion to lateral movement to exfiltration. Caspida has innovated the use of data science and machine-learning algorithms to detect advanced threats and malicious insiders – presenting the most meaningful set of threats for SOC analysts and incident responders.

“We founded Caspida with a vision of applying data science to help solve the most pressing cybersecurity challenges – advanced threats and insider threats,” said Muddu Sudhakar, CEO, Caspida. “By analyzing machine data and using data science to detect meaningful anomalous behavior of users, devices and entities, Caspida has solved a problem that previously required significant manpower and expensive, do-it-yourself toolsets. We are very excited to join the Splunk family and deliver new detection capabilities to customers.”

Key capabilities of the combination of the Splunk and Caspida solutions include the ability to:

Detect Advanced, Hidden and Insider Threats Out-of-the-Box Using Data Science
– Continuous threat and anomaly detection that applies multi-domain analysis using machine learning.
– Uncovers hidden breaches and new attacks out-of-the-box without extensive customization.

Improve Threat Detection with Targeted Incident Response
– Provides threat activities relative to the kill chain with supporting evidence to enable targeted remediation.
– Detects multi-domain (user, device and traffic applications) anomalies and streamlines threat review and incident resolution.

Dramatically Increase SOC Efficiency
– Scores and highlights the most important threats and anomalies to minimize alert fatigue.
– Detects and provides insights on threats and suspicious activities to complement and extend threat intelligence.

Learn More:

Operational Intelligence Plays Key Role in Managing Increasing IT Complexity

Quocirca Report Finds Top IT Concerns for European Businesses; Identifies Complacent Approach to Security

Splunk Inc., provider of the leading software platform for real-time Operational Intelligence, today announced the results of new research in a report titled Masters of Machines II, from analyst firm Quocirca. Findings show that European organisations with the strongest Operational Intelligence capability are most likely to conquer the complexity of the fastest growing IT concerns. These concerns include security threats (up 25 per cent since 2013), data chaos (up 22 per cent) and poor customer experience (up 21 per cent), all of which contribute to an increasingly complex landscape for IT managers.

“A post-financial crisis easing of budgetary constraints means IT departments are refocusing on delivering value to the business, including delivering better customer experience as interaction becomes reliant on multiple channels,” said Bob Tarzey, analyst, Quocirca. “Supporting this cross-channel experience results in growing IT complexity and greater volumes of machine data, which, if unmanaged, increases data chaos. However, if this data is collected and analysed it can provide better insight through improved operational intelligence, enabling those with the capability to reap the benefits: better security awareness, higher system uptime and improved customer service levels.”

The report identifies three areas in which Operational Intelligence can help conquer complexity:

IT infrastructure complexity: The increasing use of cloud services adds to IT infrastructure complexity as systems are becoming more hybridised and organisations struggle to get equal insight into both on-premise and cloud-based infrastructure. As organisations move to more heterogeneous and complex IT platforms, they are turning to Operational Intelligence to provide the necessary management insight.

The cross-channel customer experience: With 68 per cent of organisations having a ‘high’ or ‘medium’ reliance on the cross channel experience, businesses have to deal with increased volumes of data from these channels including mobile apps, social media and sensor-based devices. Organisations that are reliant on the cross-channel experience are more likely to rely on Operational Intelligence to provide hard-to-gain insight into user behaviour.

Security: The biggest and fastest growing IT management concern in both 2013 and 2015 was security threats through compromise of IT systems. While Operational Intelligence helps conquer complexity, it also leads to greater concerns about IT security as those with insight into the threats they face are less complacent than those who lack such insight.

“Splunk customers gain real value in many areas of their business by harnessing machine data for real-time operational insights,” said Adam Bangle, vice president, EMEA, Splunk. “It is no surprise that organisations with the strongest operational intelligence capability are best equipped to deal with the complexities of the modern IT landscape.”

Splunk Enterprise Wins 2015 SC Award for Best Fraud Prevention Solution

SAN FRANCISCO – April 23, 2015 – Splunk Inc. (NASDAQ: SPLK), provider of the leading software platform for real-time Operational Intelligence, today announced Splunk® Enterprise was selected as the Best Fraud Prevention Solution in the U.S. 2015 SC Awards. This is the fourth consecutive year that Splunk has been recognized by SC Magazine – with Splunk Enterprise winning awards in both the U.S. and Europe. Splunk Enterprise was chosen by a cross-section of SC Magazine readers that selected the finalists and winners in the Reader Trust Award categories. Learn more about Splunk Enterprise and the Splunk App for Enterprise Security on the Splunk website.

“The answer to fraud, theft, and abuse detection and prevention lies within machine-generated big data, which is why so many companies, universities and government agencies now rely on Splunk Enterprise and security solutions on-premises or in the cloud to discover and protect against malicious exploits by external and internal attackers,” said Haiyan Song, senior vice president of security markets, Splunk. “In close collaboration with our customers, we continue to innovate rapidly with the security and fraud solutions that give them the upper hand in protecting their organizations and their own customers. We are honored that SC Magazine’s readers have once again recognized Splunk as a security leader.”

“The Reader Trust Award is unique because it represents the voice of the people who are using these products and services every day,” said Illena Armstrong, vice president, editorial, SC Magazine. “Splunk Enterprise was chosen as the Best Fraud Prevention Solution winner for its ability to meet and exceed the needs of its customers.”

The SC Awards, now in its 18th year, is lauded as one of the most prestigious awards for IT security professionals and products. The awards recognize the best solutions, services and professionals that work around the clock to defend against the constantly shifting threat landscape in today’s marketplace. For more information and a detailed list of categories and winners, please visit