Leading the Agentic AI Era: The Splunk Platform at Cisco Live APJ

This week at Cisco Live APJ, we're stepping into a new chapter where data isn't just collected or analyzed; it's activated. Organizations around the world face an undeniable truth: the future belongs to those who can transform their machine data into real-time intelligence and decisive action in the agentic AI era. That's exactly the purpose of the Cisco Data Fabric, the revolutionary data architecture powered by the Splunk Platform.

Earlier this year at .conf25, we introduced the Cisco Data Fabric as a leading data architecture, embodying the data strategies for organizations ready to embrace AI. What does that actually mean for you? It means breaking down the silos that have limited the full value and potential of your data. It means achieving contextual awareness across every system, every application, and every data stream, so getting relevant insights knows no boundaries. It means turning the overwhelming flood of machine data into your strategic advantage for differentiated AI innovation.

The heart of our momentum at Cisco Live APJ is our deeper integration with Cisco, culminating in the Splunk POD and new integrations, delivering unified, next-generation data operations for every organization. 

Stronger Together with Cisco

Splunk POD, our pre-validated solution combining Splunk Enterprise and Cisco UCS servers, is a game-changer for on-premises deployments. Designed for organizations demanding both performance and simplicity, Splunk POD accelerates deployment timelines and ensures predictable, high-throughput analytics right out of the box. With automated deployment and lifecycle management, you’ll see a lower total cost of ownership and dramatically simplified daily operations. No more guesswork: everything is pre-configured, validated, and optimized for your environment.

Real-World Use Cases

• Security Monitoring: Splunk POD, with advanced capabilities powered by premium apps, like Splunk Enterprise Security (ES), and delivers real-time security intelligence across your entire stack. By unifying data collection, analysis, and reporting, and leveraging integrated solutions such as Splunk ES for advanced threat detection and security posture monitoring. Splunk POD enables security teams to detect threats faster, respond more effectively, and simplify compliance.
• IT Operations Excellence: With automated data collection and powerful analytics, IT teams leverage Splunk POD to monitor system health, detect anomalies, and optimize performance across hybrid environments. The platform’s intuitive dashboards and AI-driven insights help teams resolve issues faster and streamline resource management.
• Network Visibility: Splunk POD delivers turnkey data onboarding and visualization for all Cisco Enterprise Network solutions, providing unified visibility across Cisco Domain Controllers and site-level service monitoring, all optimized for network operators and NetOps teams. Network and engineering teams can efficiently monitor, manage, and respond to network events throughout the entire lifecycle, from initial setup to ongoing operations.
• Splunk on Kubernetes (SOK): By integrating performance-tested reference architecture, Kubernetes-based deployment automation through the Splunk Operator for Kubernetes (SOK), real-time network and security visibility, and unified Cisco support, Splunk POD delivers a future-ready foundation for data analytics that removes the risks and guesswork of multi-vendor stacks so you. Now you can deploy and manage your Splunk environment with predictable performance, comprehensive threat detection, and greater operational efficiency 

But the value doesn’t stop at infrastructure. We’re introducing advanced integrations that further unite Cisco and Splunk ecosystems:

We're also federating Cisco Firewall data through integration between Splunk Cloud's Federated Search and Cisco Security Analytics and Logging. Perform security analytics on firewall logs stored in SAL directly from Splunk Cloud Platform without data ingestion. Enhance threat detection and compliance auditing while dramatically lowering costs.

And with Isovalent Runtime Security flowing into Splunk, you gain deep, real-time visibility into workloads through an efficient eBPF agent. Instantly pinpoint potential security breaches and infrastructure anomalies, visualize and correlate across datasets, and understand your true risk landscape. 

AI That Thinks Alongside You

We're making AI native to the platform, fundamentally changing how teams work. Splunk AI Assistant v1.4 goes agentic, leveraging a powerful LLM and integrated knowledge base to deliver greater accuracy and optimized SPL queries. Whether you’re a Splunk veteran or new user, the AI Assistant for SPL, now built into Search and Reporting, makes operational insights more accessible than ever.

For Splunk Enterprise customers, AI Assistant for SPL is now available via cloud connectivity, enabling natural language query creation for on-premises deployments and frictionless insight discovery.

The AI Toolkit now supports third-party LLM integration, and its new AI Command framework lets you centrally manage and execute AI-powered commands using top models from OpenAI, Azure, Anthropic, AWS Bedrock, and more, enabling flexible, governed innovation.

We're also releasing our first machine data foundation model, Cisco Time Series Model, in an open weight, alpha release on Hugging Face. Trained on observability data, this model delivers better early warning signals and forecasting for every metric, driving innovation by making foundational models widely accessible. 

Simplifying Operations, Amplifying Value

Splunk Cloud Platform 10.1 is now available, bringing AI Assistant directly into the search page, enhanced security and admin controls, and expanded Dashboard Studio capabilities.

New content templates for Security and Observability offer pre-built SPL2 analytics to speed deployment and ensure best practices. SPL2, our next-generation language, combines SQL syntax with full SPL compatibility, allowing SQL users to easily access Splunk data, compose queries in a familiar style, and quickly onboard teams while leveraging Splunk's advanced analytics.

Automated Field Extraction in Ingest Processor removes the need for regex, with fields detected and created automatically from snapshot datasets and simple refinement options.

We are also introducing more flexible licensing. Cloud Flex, now in alpha, allows budget allocation across any Splunk Cloud products. Next Gen Licensing offers transparent, dollar-based billing based on data ingestion and search volume, while Splunk Portfolio Manager provides centralized oversight of license spending, utilization, and reallocation across Platform, Security, and Observability. 

Breaking Down Every Data Silo

Unified analytics isn't a buzzword for us. It's how you act with urgency when issues arise.

Federated Search continues expanding with beta support for Microsoft Azure, Apache Iceberg, and Delta Lake formats. Snowflake federation arrives in alpha this December, with Cisco Security Analytics and Logging (SAL) following in January. Search and analyze data across distributed sources using a single interface. No more data silos. No more complexity. Just insights.

For our Splunk Cloud Platform customers, Amazon S3 Promote will be generally available this quarter. You will soon be able to recover and re-ingest historical data from S3 buckets as if it were arriving for the first time. Close gaps, meet compliance requirements, and ensure your datasets are complete for investigations and analytics

.We're also bringing SPL2 to Federation in beta. This next-generation search processing language makes complex searches more intuitive and powerful, helping you unify analytics across diverse datasets and solve problems faster. 

The Data Fabric You've Been Waiting For

These announcements aren't isolated features. They're part of a cohesive vision where the Splunk Platform enables the Cisco Data Fabric architecture, transforming how organizations activate data in the Agentic AI era.

This is operational excellence. This is resilience. This is the foundation for the next wave of AI innovation.

The future doesn't wait for anyone. But with the Splunk Platform, you're not just keeping pace; you're leading the way.