The Capabilities You Need for An Analytics-Driven SIEM
Splunk Enterprise Security (ES) is an analytics-driven SIEM that powers successful security operations teams. But did you know it is actually made up of distinct frameworks that can each be leveraged independently to meet specific security use cases?
Watch this session to learn the technical details behind key ES frameworks including:
- Asset and identity correlation
- Notable event
- Threat intelligence
- Risk analysis, investigation and adaptive response