Splunk Blogs
Security
4 Min Read
Splunk's State of Security 2025: The Stronger, Smarter SOC of the Future reveals the insights, aspirations, and challenges of security leaders.
Featured Articles
Top 5 Reasons to Attend .conf25 in Boston
Here are the top five reasons you won't want to miss Splunk .conf25 – registration is now open.
AI and the Data Value Challenge: Why It’s Time to Rewrite the Rules of Data Management
Splunk's 'The New Rules of Data Management: Creating Value in the AI Era' report captures trending shifts in data management and examines how organizations are structuring — and should be potentially rethinking — their data strategies.
SOAR on Azure Now Available
Splunk Security Orchestration, Automation and Response (SOAR) is now available as a native SaaS solution on Azure.
The Splunkie Awards Are Back for 2025 — Let the Nominations Begin!
Nominate data rockstars for the 2025 Splunkie Awards! Recognize customers and partners driving innovation with Splunk.
Imposters at the Gate: Spotting Remote Employment Fraud Before It Crosses the Wire
Remote Employment Fraud actors don’t steal credentials—they’re issued them. This blog explores early detection and why security can’t face this threat alone.
Security
The High Cost of Security Investigations
Splunk Asset & Risk Intelligence (ARI) can significantly reduce investigation costs, improve analyst efficiency, and accelerate threat containment.
Supercharge Your SOC Investigations with Splunk SOAR 6.4
Splunker Nick Hunter explains how to integrate Cisco Talos threat intelligence, leverage Azure scalability, and streamline investigations.
Security Staff Picks To Read This Month, Handpicked by Splunk Experts
Our Splunk security experts share their favorite reads of the month so you can follow the most interesting, news-worthy, and innovative stories coming from the wide world of cybersecurity.
Cloak and Firewall: Exposing Netsh’s Hidden Command Tricks
Learn about hidden Netsh command tricks, detection methods, and Splunk security detections to protect your Windows systems.
Splunk Security Ops: Building the Blueprint for Success
Learn how Splunk Global Security runs ops at scale and enables the business by focusing on what matters—solving problems through data, automation, and collaboration.
Hey SDDL SDDL: Breaking Down Windows Security One ACE at a Time
Explore SDDL in Windows security with our comprehensive guide to help enhance your defensive strategy against privilege escalation attacks.
Learn
SIEM: Security Information & Event Management Explained
SIEM is a cybersecurity game-changer, especially for large organizations. Learn key SIEM features and functions & how to choose the right SIEM tool.
IT and Technology Spending & Budgets for 2025: Trends & Forecasts
Tech & IT spending is on the rise in 2025 across the globe. Read more on investment trends and see which regions will spend the most.
What Are SLMs? Small Language Models, Explained
Large language models have changed the world. What about small language models? Learn what SLMs are, how they differ from LLMs, and why SLMs are the future.
Telemetry 101: An Introduction To Telemetry
Telemetry is powerful data that can tell you all sorts of important information. Know what you can do with this useful data — get the full telemetry 101 here.
What are SaaS, PaaS, & IaaS?
Yes, the cloud makes work better. But which cloud model is right for you? Understand how SaaS, PaaS, and IaaS works in this ultimate guide.
What is Observability? An Introduction
In this blog post, we'll look at definitions, best practices, and key concepts around Observability in IT.
Latest Articles
From Instinct to Insight: Why Metrics Are Essential to Threat Hunting Success
Splunker Tamara Chacon explores why metrics are critical to threat hunting success.
How to Use Splunk to Monitor Security of Local LLMs (Part II)
Learn how to use Splunk to monitor and defend your local Large Language Models (LLMs).
What Is Extortionware? Going Beyond Ransomware
Learn what extortionware is, how it works, its impact, and how to protect your business from data leaks and reputational damage.
Accelerating Security Operations with Splunk and Foundation AI’s First Open-Source Security Model
Cisco Foundation AI’s Foundation-sec-8b model brings a new wave of innovations and efficiency to security operations. As a purpose-built, open-weight Large Language Model (LLM) designed specifically for cybersecurity, Foundation-sec-8b enables security teams to act faster, reduce fatigue, and scale operations without compromising accuracy.
How To Use Splunk To Monitor Security of Local LLMs (Part I)
Learn how to use Splunk to monitor the security of local Large Language Models (LLMs) like Llama and GPT4ALL.
Cloud Cost Management & Trends in 2025: Strategies to Optimize Your Cloud Spend
Managing cloud costs isn’t easy. But it can be a lot simpler if you follow these expert tips and tools. Get the full story here.
LLM Monitoring: A Comprehensive Guide on the Whys & Hows of Monitoring Large Language Models
Discover the ultimate guide to monitoring Large Language Models (LLMs). Learn the whys, hows, key metrics, and strategies for safe and reliable performance.
Splunk Security Content for Threat Detection & Response: May 2025 Update
Learn about the latest security content from Splunk.
What is Predictive Modeling? An Introduction
Learn the fundamentals of predictive modeling, its role in analytics, and its applications in IT, cybersecurity, business, and advanced machine learning.
Subscribe to our blog
Get the latest articles from Splunk straight to your inbox.
Connect with Splunk on X
Follow @Splunk
Connect with Splunk on Instagram
Follow @Splunk
