by Angela Guess
A recent announcement out of Splunk states, “Our customers use Splunk Enterprise Security (ES) as an analytics-driven SIEM to quickly detect threats, respond to attacks, ransomware, to accelerate responses across their cloud and on-premises deployments. The latest version of Splunk ES, version 4.7 introduces key enhancement to improve investigation efficiency and provides insight from common SaaS apps: (1) Expands visibility and insight you can gain from common SaaS apps such as Salesforce.com, Office365, AWS, Box, Okta and more. (2) Improves Investigation Efficiency and Incident Response. (3) Enhances collaboration and user experience with persona centric navigation and workflow improvements.”
The announcement continues, “Customers continue to adopt SaaS apps and the trend of workloads and data moving to the Cloud continues to grow. Office 365 is the most popular SaaS app, with Salesforce, Box, AWS rounding out top 4 list {Source: Businesses at Work, 2017 Okta} Gartner has indicated that by 2018, 60% of enterprises that implement cloud visibility and control tools will experience one-third fewer security failures. {Source: Is the Cloud Secure? Gartner Research 2017} The continued adoption of Cloud/SaaS services expands the threat vectors and Enterprises now need to monitor user activity, application access from not only Cloud/SaaS services but from on-premises services as well to determine the full scope of potential threats and attacks. However, the visibility provided by SaaS tool vendors is limited, tends to be expensive and presents a siloed view.”
Read more at Splunk.com.
Photo credit: Splunk