Splunk Enterprise Security

Does ES have all the features available in Splunk Security Essentials App?

damode
Motivator

Does ES also comes with SSE app features like Analytics Advisor, Content Recommendations, Data inventory, CIM compliance check etc ?

I found these features really useful for data source assessment.

Labels (2)
0 Karma

samin
Engager

In ES I can see use cases from other apps like SA-Threatintelligence, SA-Accessprotection etc. Aren't SSE contents  visible in ES?

0 Karma

richgalloway
SplunkTrust
SplunkTrust

ES and SSE are complimentary products.  If you buy ES you may still need SSE.

---
If this reply helps you, Karma would be appreciated.
0 Karma

SamHTexas
Builder

Rich, / Any one who have used Security Essentials. Do you by any chance have any leads on how to configure the security Essentials? I have spent hours, not able to make it go. When you click on Configure pull down in Sec essentials & try to add an add-on that it asks of integrate it with ES. You just watch the spinning wheel turn & turn. Also the use case are not able to be accessed. Please advise

Tags (1)
Get Updates on the Splunk Community!

Splunk Training for All: Meet Aspiring Cybersecurity Analyst, Marc Alicea

Splunk Education believes in the value of training and certification in today’s rapidly-changing data-driven ...

Investigate Security and Threat Detection with VirusTotal and Splunk Integration

As security threats and their complexities surge, security analysts deal with increased challenges and ...

Observability Highlights | January 2023 Newsletter

 January 2023New Product Releases Splunk Network Explorer for Infrastructure MonitoringSplunk unveils Network ...