Splunk

Published:: Thursday, September 8, 2016
: Briefs, Case Studies, Papers, Reports

Author(s) and Contributors:: Author(s): Jon Allen

Source(s) and Collection(s):: Sources(s): Higher Education Information Security Council (HEISC)

ParentTopics:: Cybersecurity Incident Management and Response Intrusion Detection and Prevention Network Security Security Management Security Risk Management Vulnerability Management

Abstract

Splunk is a log management, search, correlation, and data visualization tool. More institutions are starting to use this type of predictive analytics tool to better understand the large amounts of machine (i.e., log) data being generated across the institution. Better analyzing this data means that more informed business decisions can be made across the institution.

This document briefly explains why information security practitioners might use Splunk at an institution, what resources are needed for deployment, as well as the benefits and risks of using this tool.

Download Resources

Download PDF