Product News & Announcements
All the latest news and announcements about Splunk products. Subscribe and never miss an update!
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
New Article

Security Highlights | Jan. 2022 Newsletter

LesediK
Splunk Employee
Splunk Employee
‎01-14-2022 04:41 AM

Back to Splunk Newsletter

 

206401_banner_800x200.png

Highlights

New! Splunk Enterprise Security 7.0

We are thrilled to announce the latest release of Enterprise Security 7.0 is now available for Splunk Cloud and On-Premises customers. This release is packed with new enhancements to provide security teams the critical insights you need to drive faster detection and response.

 

Log Observer.png

 

Executive Summary Dashboard

The new Executive Summary Dashboard surfaces key performance indicators that provide insights on the overall health of the SOC such as:

  • Mean Time to Triage
  • Mean Time to Resolution
  • Investigations Created
  • Risk Based Alerting Trends

Cloud Security Monitoring Dashboards

Enterprise Security 7.0 adds to the 6.6 Cloud Security Monitoring updates and gives you enhanced visibility into AWS environments and Microsoft 365 Cloud Security datasets. New dashboards include AWS Security Groups, AWS IAM Activity, AWS Network ACLs, AWS Access Analyzer, and Microsoft 365 Security.

Security Operations Dashboard

Similar to the Executive Summary Dashboard, the Security Operations Dashboard shares key insights but provides deeper analysis capabilities designed for SOC managers and team leads. 

Security_Operational_Dashboard.png

  

Automated Real-Time Content Updates

As new security content becomes available in the Enterprise Security Content Update (ESCU) app, Enterprise Security will proactively notify you so that you always have the latest threat detection techniques from the Splunk Threat Research Team. 

Modernized User Experience

Enterprise Security has undergone a large change to the user experience, bringing it in line with other Splunk security products, adopting modern development frameworks and best practices. Also, Splunk Enterprise Security UI now allows you to switch between light and dark modes (Cloud Only), so you can choose what works best for you.

Read our blog to learn more and upgrade to the latest release of Splunk Enterprise Security 7.0. We also would like to invite you to attend the Splunk Security Analytics Virtual Event on January 20th at 9:00 AM PT to see all the latest and greatest from Splunk for Security!

Let us know what you think of the new and enhanced capabilities of Splunk Enterprise Security 7.0 by joining a conversation or starting a new one while you're here on  Splunk Community.

Splunk_Newsletter_Spacebar.png

Upcoming Tech Talk

What’s New with Enterprise Security 7.0?
1/25/2022 | 11:00 AM PT / 2:00 PM ET

Register to attend  and learn about all the latest in Security Analytics innovation coming in the newest release of Splunk Enterprise Security.

 

Back to Splunk Newsletter

 

2 Comments
Get Updates on the Splunk Community!

.conf25 Community Recap

Hello Splunkers, And just like that, .conf25 is in the books! What an incredible few days — full of learning, ...

Splunk App Developers | .conf25 Recap & What’s Next

If you stopped by the Builder Bar at .conf25 this year, thank you! The retro tech beer garden vibes were ...

Congratulations to the 2025-2026 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...