Security

What are the security differences between Splunk Enterprise and Splunk Cloud?

ema
New Member

I'd like to know from a security's perspective, what are the differences between Splunk Cloud and Splunk Enterprise version? Are they both PCI-DSS and HIPAA compliant? Are there any customers that use both Splunk Cloud and Enterprise on prem?

0 Karma
1 Solution

pgreer_splunk
Splunk Employee
Splunk Employee

Splunk Cloud (managed service) is nearing PCI and HIPAA compliance, we're getting close.

Keep an eye out on http://www.splunk.com/en_us/products/splunk-cloud.html for more information in the future on compliance.

There are many customers that utilize Cloud as well as On-Prem independently and some as well that perform hybrid (searching across on-prem and cloud).

For PCI and HIPAA compliance for on-prem, that is up to the customer. The Splunk core software is by itself not something that fits a compliance criteria as there is much more to compliance than just the software package (processes, procedures, reporting, auditing, security, roles and responsibilities, etc. etc. etc.).

View solution in original post

0 Karma

blasmoreno
Explorer

I too would like to know the technical differences between Splunk ES and Cloud.  For instance are all the  Splunk ES features and capabilities embedded in Splunk Cloud?  If not then what ES features are missing in Cloud?  I can't seem to find any definitive literature on the subject and I am a new Splunk user/admin.  

0 Karma

aaraneta_splunk
Splunk Employee
Splunk Employee

@ema@costco.com - Did the answer provided by pgreer help provide a solution to your question? If yes, please don't forget to resolve this post by clicking "Accept". If no, please leave a comment with more feedback. Thanks!

0 Karma

mjoseff_splunk
Splunk Employee
Splunk Employee

Hi, Ema, it looks like parts two and three of your questions are answered below; regarding part one, are there specific aspects of security you are curious about? Are you asking about the deployment (cloud vs on-prem) aspects or wondering if the software differs?

0 Karma

pgreer_splunk
Splunk Employee
Splunk Employee

Splunk Cloud (managed service) is nearing PCI and HIPAA compliance, we're getting close.

Keep an eye out on http://www.splunk.com/en_us/products/splunk-cloud.html for more information in the future on compliance.

There are many customers that utilize Cloud as well as On-Prem independently and some as well that perform hybrid (searching across on-prem and cloud).

For PCI and HIPAA compliance for on-prem, that is up to the customer. The Splunk core software is by itself not something that fits a compliance criteria as there is much more to compliance than just the software package (processes, procedures, reporting, auditing, security, roles and responsibilities, etc. etc. etc.).

0 Karma
Get Updates on the Splunk Community!

Splunk Training for All: Meet Aspiring Cybersecurity Analyst, Marc Alicea

Splunk Education believes in the value of training and certification in today’s rapidly-changing data-driven ...

Investigate Security and Threat Detection with VirusTotal and Splunk Integration

As security threats and their complexities surge, security analysts deal with increased challenges and ...

Observability Highlights | January 2023 Newsletter

 January 2023New Product Releases Splunk Network Explorer for Infrastructure MonitoringSplunk unveils Network ...