Single Platform for Automated Compliance
Hundreds of customers use Splunk® as a single platform to automate compliance for a wide range of government and industry regulations, governance frameworks and internal requirements, including PCI, HIPAA, FISMA, GLBA, NERC, SOX, EU Data Directive, ISO, COBIT and the 20 Critical Security Controls. Splunk enables customers to create correlation rules and reports to identify threats to sensitive data or key employees and to automatically demonstrate compliance or identify areas of non-compliance in regards to technical controls.With Splunk, security and compliance teams can meet key compliance needs including:
- Comply with requirements for a SIEM, or the centralized collection/logging, continuous monitoring, and retention of security events
- Quickly search through massive amounts of security events and machine data going back days, weeks or months to accelerate incident investigations or satisfy ad hoc requests from auditors
- Create reports and dashboards to show the state of compliance with any required technical control
- Enable real-time, known and unknown threat detection via correlation rules, anomaly detection or risk scoring
Splunk App for PCI Compliance
The Splunk App for PCI Compliance provides continuous monitoring of all relevant PCI DSS requirements, efficient workflows for audit trails and incident reviews, reports to measure the overall effectiveness and status of PCI technical controls, and enables the quick resolution of auditor data requests.