Splunk Blogs
Leadership
6 Min Read
Splunk announces innovations across its observability portfolio to provide organizations deeper visibility into their network health through integrations with Cisco, and faster troubleshooting with the help of AI.
Featured Articles
Top 5 Reasons to Attend .conf25 in Boston
Here are the top five reasons you won't want to miss Splunk .conf25 – registration is now open.
Enter the SOC of the Future in Splunk’s State of Security 2025
Splunk's State of Security 2025: The Stronger, Smarter SOC of the Future reveals the insights, aspirations, and challenges of security leaders.
AI and the Data Value Challenge: Why It’s Time to Rewrite the Rules of Data Management
Splunk's 'The New Rules of Data Management: Creating Value in the AI Era' report captures trending shifts in data management and examines how organizations are structuring — and should be potentially rethinking — their data strategies.
SOAR on Azure Now Available
Splunk Security Orchestration, Automation and Response (SOAR) is now available as a native SaaS solution on Azure.
The Splunkie Awards Are Back for 2025 — Let the Nominations Begin!
Nominate data rockstars for the 2025 Splunkie Awards! Recognize customers and partners driving innovation with Splunk.
Imposters at the Gate: Spotting Remote Employment Fraud Before It Crosses the Wire
Remote Employment Fraud actors don’t steal credentials—they’re issued them. This blog explores early detection and why security can’t face this threat alone.
Security
The High Cost of Security Investigations
Splunk Asset & Risk Intelligence (ARI) can significantly reduce investigation costs, improve analyst efficiency, and accelerate threat containment.
Supercharge Your SOC Investigations with Splunk SOAR 6.4
Splunker Nick Hunter explains how to integrate Cisco Talos threat intelligence, leverage Azure scalability, and streamline investigations.
Security Staff Picks To Read This Month, Handpicked by Splunk Experts
Our Splunk security experts share their favorite reads of the month so you can follow the most interesting, news-worthy, and innovative stories coming from the wide world of cybersecurity.
Cloak and Firewall: Exposing Netsh’s Hidden Command Tricks
Learn about hidden Netsh command tricks, detection methods, and Splunk security detections to protect your Windows systems.
Splunk Security Ops: Building the Blueprint for Success
Learn how Splunk Global Security runs ops at scale and enables the business by focusing on what matters—solving problems through data, automation, and collaboration.
Hey SDDL SDDL: Breaking Down Windows Security One ACE at a Time
Explore SDDL in Windows security with our comprehensive guide to help enhance your defensive strategy against privilege escalation attacks.
Learn
SIEM: Security Information & Event Management Explained
SIEM is a cybersecurity game-changer, especially for large organizations. Learn key SIEM features and functions & how to choose the right SIEM tool.
IT and Technology Spending & Budgets for 2025: Trends & Forecasts
Tech & IT spending is on the rise in 2025 across the globe. Read more on investment trends and see which regions will spend the most.
What Are SLMs? Small Language Models, Explained
Large language models have changed the world. What about small language models? Learn what SLMs are, how they differ from LLMs, and why SLMs are the future.
Telemetry 101: An Introduction To Telemetry
Telemetry is powerful data that can tell you all sorts of important information. Know what you can do with this useful data — get the full telemetry 101 here.
What are SaaS, PaaS, & IaaS?
Yes, the cloud makes work better. But which cloud model is right for you? Understand how SaaS, PaaS, and IaaS works in this ultimate guide.
What is Observability? An Introduction
In this blog post, we'll look at definitions, best practices, and key concepts around Observability in IT.
Latest Articles
What Is OpenTelemetry? A Complete Guide
In this article, you'll learn how OpenTelemetry works, how it's used, and its importance in improving your observability practices and overall business operations.
What Is Cloud Infrastructure?
Cloud infrastructure runs so much of the world’s daily operations. What is it and what does it mean? Find out in this comprehensive article.
Indicators of Compromise (IoCs): An Introductory Guide
In this post, we’ll discuss indicators of compromise including their types and their relevance to threat intelligence teams.
Introduction to the OpenTelemetry Sum Connector
Uncover the magic of the Sum Connector module in OpenTelemetry! Transform attribute data into clear, insightful metric sums and uncover the buried treasure in your already existing data!
What Is MTTD? The Mean Time to Detect Metric, Explained
MTTD is the average time it takes to detect a fault. In this in-depth article, see why MTTD is not an output of the system, but actually of the entire environment.
Chargebacks vs. Showbacks: Everything You Need to Know
Managing IT costs internally isn’t easy, but two methods can help: learn all about showbacks and chargebacks in this article.
Indicators of Attack (IoAs): A Complete Introduction
In this post, we are going to discuss Indicators of Attack in detail. We will cover the importance of understanding IoAs and more.
Zero Trust & Zero Trust Network Architecture (ZTNA), Explained
Let's break down the popular zero trust security concept and look at how to get started with ZTNA: zero trust network architecture.
Bridging the Cyber Confidence Gap: Digital Resilience in the Public Sector
Mick Baccio shares the findings of Splunk's report – conducted in collaboration with Foundry – on bridging the resilience gap across public and private sectors.
Subscribe to our blog
Get the latest articles from Splunk straight to your inbox.
Connect with Splunk on X
Follow @Splunk
Connect with Splunk on Instagram
Follow @Splunk
