OTHER SECURITY RATINGS CASE STUDY
Customer is a leading Security Rating provider.
It rates Cybersecurity postures of corporate entities through the scored analysis of cyber threat intelligence signals for the purposes of third party management and IT risk management.
Customer requested for the development of the Certified Splunk Add-on to integrate its rating platform with Splunk.
Sacumen developed the Certified Splunk Add-on that performs the following:
Fetch the Overall/Factors/Issues/ Issue findings data
Application set-up (API key, Polling interval, Different flags to poll and filter data as per customer needs)
The Add-on was built using Splunk Add-on builder and modular input in python language was written
The Add-on supports Splunk version 7.x and 8.0
Complex logic to manage the data logic was implemented. This ensured that the data loss did not happen
Add-on supported Retry mechanism, It supported setting logging level and proxy support
Add-on supported CIM 4.x