Security Operations Tech Talks
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
New Article

Cloud Data Modeling for Security

melissap
Splunk Employee
Splunk Employee
‎06-26-2020 11:46 AM

View the Tech Talk: Platform Edition, Cloud Data Modeling for Security 

Are you trying to achieve end-to-end visibility across your multi-cloud or hybrid environment but running into roadblocks? This tech talk addresses the challenge of normalizing data from the 3 major cloud service providers’ implementations, and establishing a set of security checks across them. Join us to learn how to implement a unified framework within data analytics tools that can be used for cloud monitoring, investigation, detection and response.

Tune in to learn about:

  • Normalizing data from different cloud vendors
  • Difference between perimeter and cloud security posture
  • Splunk tools to achieve vendor wide security monitoring, detection and defense

Tech Talk discussions remain open for two weeks following the live Tech Talk event. Have more questions? Check out our  Splunk Cloud conversations in Splunk Answers community for more!

Labels
0 Karma
2 Comments
melissap
Splunk Employee
Splunk Employee
‎07-22-2020 01:08 PM

Here is a question that came up during the Tech Talk. Sharing for all.

Q: Does Splunk have any plans to keep this DM up to date with the pace that AWS/Azure/GCP are updating the ways in which their logging can vary?
A: The plan is to do via TA/Addons and tools like the Cloud DM
0 Karma
melissap
Splunk Employee
Splunk Employee
‎07-22-2020 01:09 PM

Here are some follow up materials for your journey:

  • Get the cloud data model from GitHub: Code repository with detailed documentation on pre-requisites, installation and troubleshooting
  • Read the blog post: Using the cloud data model to detect container implantation
  • Watch the DEFCON session recording Cloud Village - Rod Soto's and José Hernandez' 'Using Splunk For Auditing AWS GCP Azure Security'
  • Leave us feedback by emailing research@splunk.com or visit ideas.splunk.com
0 Karma
Get Updates on the Splunk Community!

Built-in Service Level Objectives Management to Bridge the Gap Between Service & ...

Wednesday, May 29, 2024  |  11AM PST / 2PM ESTRegister now and join us to learn more about how you can ...

Get Your Exclusive Splunk Certified Cybersecurity Defense Engineer at Splunk .conf24 ...

We’re excited to announce a new Splunk certification exam being released at .conf24! If you’re headed to Vegas ...

Share Your Ideas & Meet the Lantern team at .Conf! Plus All of This Month’s New ...

Splunk Lantern is Splunk’s customer success center that provides advice from Splunk experts on valuable data ...
Labels