Introducing the World’s First Modern Cloud-Based SecOps Platform: Splunk Security Cloud

To say that the past year presented its fair share of cybersecurity challenges to the InfoSec community would be a drastic understatement. The rapid migration to remote work at scale left 80% of CIOs unprepared, and SecOps teams struggled to confront the evolving threat landscape with disparate toolkits and skill sets. Not to mention that as more organizations shifted to hybrid and multi-cloud environments at scale, cloud complexity (and cloud-based threats) skyrocketed. In fact, according to recent findings from our State of Security Report, cloud security is currently the No. 1 business priority and security challenge driving investment and change.

That is why today, we’re excited to announce the new Splunk Security Cloud — the only data-centric modern security operations platform that delivers enterprise-grade advanced security analytics, automated security operations, and threat intelligence with an open, unparalleled ecosystem.

Splunk Security Cloud: Modern Cybersecurity for a Hybrid Cloud World

Splunk Security Cloud was designed with a data-centric approach to security in mind — helping teams drive better decisions. This first-of-its-kind, modern, robust security operations platform includes the following capabilities:

  • Advanced Security Analytics includes machine learning-powered analytics to detect and deliver key insights into multi-cloud environments. 
  • Automated Security Operations drives faster time to detection, investigation and response; alerts that used to take 30 minutes, now can take as little as 30 seconds.
  • Threat Intelligence that automatically collects, prioritizes and integrates all sources of intelligence driving faster detections.
  • Open Ecosystem helps correlate data across all security tools, regardless of the vendor, for increased visibility and apply prescriptive detections and guidance to detect threats faster
“Splunk Security Cloud combines advanced security analytics, streamlined security operations and an open and thriving ecosystem, bringing together Splunk’s and our partners’ industry leading security solutions to help our customers securely embrace digital transformation and SOC modernization.” 
— Jane Wong, Vice President, Product Management, Security at Splunk

Activating Partnerships to Enable Best-of-Breed Choice

But, wait — that’s not all! Our ever-expanding partner ecosystem continues to be a massive driver for security success at scale. With over 2,500 plus partners, Splunk’s open approach to its partner ecosystem enables organizations to take a more agile approach to high impact integrations — enabling best-of-breed choice for joint customers. 

Plus, our automation ecosystem now includes over 300 third-party integrations that support more than 2,000 operations actions — allowing customers to better correlate data across disparate security tools for increased visibility and more prescriptive detection. 

Not to mention that now, with Amazon Web Services (AWS), we're launching Splunk Security Analytics for AWS for small security teams! Designed for lean security teams running on AWS, Splunk Security Analytics for AWS provides deep, centralized visibility into AWS environments, accelerating threat detection and investigation capabilities for security teams with fewer staff. With enhancements like these, we’re helping make your security team lean, mean, SecOps machines — no matter the size!

The Best of Both Worlds: Security Analytics and Cloud-Native Threat Intelligence

Lastly, the launch of Splunk Security Cloud comes on the heels of Splunk’s recent acquisition of TruSTAR, a cloud-native security company specializing in data-centric threat intelligence. TruSTAR, which further extends Splunk’s leadership in security analytics through cloud-native threat intelligence integration and automation, will be integrated deeper into the Splunk Security Cloud in the coming months — allowing Splunk customers to enrich their SOC workflows with normalized threat intelligence from third-party sources and from their own historical events and investigations. 

Get Started with Splunk Security Cloud Today

Visit our website for more information on the Splunk Security Cloud for security team solutions and get started today.

Jane Wong
Posted by

Jane Wong

Jane is the VP of Products for the Splunk security product portfolio, including Splunk Enterprise Security (SIEM), Splunk Phantom (SOAR), Splunk User Behavior Analytics (UEBA), and several emerging cloud security services that are foundational to the pursuit of Splunk’s disruptive vision to make machine data accessible, usable, and valuable for everyone. At Splunk we are committed to our strong sense of purpose to deliver "aha" moments for our customers based on their data.

Jane is passionate about security and over the past decade has led teams building market-leading products in Data Loss Prevention, Network and Endpoint security. Most recently, Jane led the email product portfolio as the VP of Engineering and Product Management at Symantec. Earlier in her career, Jane held various engineering roles at enterprise technology companies, earning several patents. Jane holds a BS from the University of London.