We introduced a new security activity at .conf2016 called “Boss of the SOC” (or BOTS), born from our belief that learning can be both realistic and fun.
This playbook uses domain reputation from DomainTools to risk score a domain. It also uses OpenDNS to enforce security policy and block access to the domain.
One of the most important aspects to consider when evaluating a security automation and orchestration platform is the inherent security features it offers.
The detection and prevention of ransomware and other data-destructive malware continues to be one of the highest critical cybersecurity priorities in 2017
This article provides a high-level overview of the skills that you will need to build a great SA&O solution that really helps your security operations people.
The Splunk blog is your go-to resource for learning how to use Splunk to improve your organization’s cybersecurity. Dive in with a few of our most popular posts on the topic.
Raising the barrier for fraudsters and attackers: how to leverage Splunk and Deep Learning frameworks to discover Behavior Biometrics patterns within user activities