Splunk to Discuss IT Search at SANS 2007

Splunk Users Find Success Applying IT Search to Security Investigation Challenges

San Francisco - April 2, 2007 - Splunk, the leader in IT Search, will be hosting a hands-on discussion on the challenges of analyzing IT data and the emergence of IT Search at SANS 2007, the largest training event focused on best practices and hands-on skills in auditing, legal, management, operations, and security. Christina Noren, Splunk VP of Product and Support will discuss using IT Search for security investigations using real world customer examples and best practices.

Splunk customers regularly apply Splunk's IT search solution to solve security issues and conduct security investigations. The flexible nature of search allows IT to easily locate and report on security problems within their enterprise.

"With Splunk it's much easier to find, correlate and report possible network intrusions and anomalies for investigation," said Kim Halavakoski, Network Manager at Crosskey Banking Solutions, Security and Architecture. "Splunk gives us a network wide looking glass that makes finding ANY discrepancy a lot easier than before! The "show events by time" feature is really good for correlating events across time!"

Kevin Graham, Director of Networks, Security and Storage at ValueClick, also uses Splunk in his environment. Graham said, "Splunk has proved invaluable in providing a level of confidence when we're working on hardening machines. Before we had the visibility into our environment that Splunk provides, implementing additional security measures took a very long time, as it was very difficult to ensure that they wouldn't impact normal activity. Splunk has allowed us to confirm that our good ideas really are good ideas and to identify what level of coordination is needed before pulling the trigger on wide-scale changes."

WHAT: A hands-on discussion on the challenges of analyzing IT data and the emergence of IT Search for security investigations using real-world customer case studies. The presentation will include a comprehensive demo of Splunk 2.2 an IT Search engine that indexes and securely manages all logs and IT data in real time. From a central location Splunk can search logs for security/compliance, application servers, network services and email.

WHO: Christina Noren, vice president of product and support, Splunk, Inc.

WHERE: SANS 2007, Manchester Grand Hyatt, San Diego

WHEN: Tuesday, April 3, 2007, 5:30 p.m. - 6:45 p.m.

URL: http://www.sans.org/sans2007/

About Splunk

Splunk is software that indexes, manages and enables you to search logs and IT data from any application, server or network device in real time. Splunk is easy to download, install and use and it's very powerful. More than 200 enterprises, government organizations, service providers and more than 75,000 users are achieving higher availability, investigating security incidents in record time and meeting compliance requirements at lower costs with Splunk. Check us out at www.splunk.com.