According to the company, many companies face difficulties in security operations, such as not only not recognizing security issues quickly, but also not being able to react quickly and correct them. Splunk’s enhanced Mission Control application enables security operations centers (SOCs) to detect, investigate, and respond to threats from a modern, integrated work surface. Mission Control integrates Splunk’s security capabilities, including Splunk Enterprise Security (Splunk Enterprise Security), automation and orchestration (Splunk SOAR), and threat intelligence capabilities, allowing customers to control the detection process , investigation and response, the company said.
Additionally, Splunk Mission Control provides a streamlined security workflow by codifying business processes into response templates. The application allows security teams to focus on critical objectives and operate a proactive and agile security system. Any Splunk ES customer can use Splunk Mission Control based on their technical and regional requirements.
Additionally, as businesses modernize their infrastructure, they face increased complexity and a wider range of challenges when troubleshooting. IT operations and DevOps teams need to have more visibility into the environment and manually analyze interrelationships to determine the root cause of incidents. New innovations in the Splunk Observability Cloud enable faster issue resolution through better visibility and a more integrated approach to incident response, the company said.
Additionally, Splunk Incident Intelligence increases the efficiency of on-call teams to diagnose, repair, and restore services before customers are directly impacted. New auto-discovery features in Splunk Application Performance Monitoring (APM) use machine learning to reduce manual effort and improve alert accuracy, while IM Network Explorer allows teams to easily monitor and assess network health cloud and solve problems faster. These and other innovations in the Splunk Observability Cloud are available to all users starting today.
Available as a full version, the Splunk Edge Processor gives Splunk Cloud customers enhanced visibility and control, allowing them to quickly get real-time processing data from their network. Customers can leverage Splunk Edge processors to easily classify, modify, and route data, and enable more efficient data transformation with the next-generation Splunk Search Processing Language (SPL2), which simplifies data retrieval and preparation. data.
“Organizations need to focus solely on digital transformation and creating value for customers, but they constantly face cybersecurity threats, IT system stressors and other challenges,” Tom said. Casey, senior vice president of Splunk Products and Technology. “Plunk’s unified security and observability platform helps security operations, IT operations, and DevOps teams work together smarter and more efficiently to achieve digital transformation and build digital resilience.”
editor@itworld.co.kr
