Splunk is a log management, search, correlation, and data visualization tool. More institutions are starting to use this type of predictive analytics tool to better understand the large amounts of machine (i.e., log) data being generated across the institution. Better analyzing this data means that more informed business decisions can be made across the institution.

 This document briefly explains why information security practitioners might use Splunk at an institution, what resources are needed for deployment, as well as the benefits and risks of using this tool.

Download Resources