OTHER SIEM INTEGRATION CASE STUDIES
Pulse Secure integration (Add-on) with SplunkIntegration with LogRhythm
CASB Platform integration (Add-on and App ) with Splunk
DNS Platform integration (App ) with Splunk
Business Risk Intelligence Platform integration ( Add-on) with Splunk
Infrastructure Monitoring Platform integration ( Add-on) with Splunk
Categories
Customer
Customer is a leading CASB Solution Provider.
The CASB solution provider delivers cloud visibility, security and anomaly detection for hybrid enterprises.
Requirement
Customer requested the development of Splunk Add-on and App to integrate with its CASB platform.
Technology Solution
Add-on:
Sacumen developed the Splunk Add-on to ingest the events logs data in Syslog format
Around 20 log events are supported by the add-on.
Support for CIM 4.0
App:
Sacumen developed the Splunk app containing 1 Dashboard which consists of 10 items. Splunk app fires the Splunk Search Query against the indexed data (data ingested into Splunk by the Splunk Add-on) and build the items in the Dashboard.
Both Splunk App and Add-on support Splunk Enterprise (version 7.3)
There are no reviews yet.