Splunk Tech Talks
Deep-dives for technical practitioners.
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
New Article

What's New in Splunk SOAR

WhitneySink
Splunk Employee
Splunk Employee
‎06-22-2023 12:08 PM

(view in My Videos)

Since the release of Splunk SOAR 6.0, the Splunk SOAR team has been hard at work implementing new features and integrations to help improve the SOAR user experience.

The version 6.0 release represents a culmination of efforts to become part of the vision of a truly unified Splunk security experience and provides a single security operations solution with its integration with Mission Control.

Key Takeaways:

  • Learn about the latest features in Splunk SOAR
  • Learn how Splunk SOAR integrates with Mission Control
  • Learn about changes to the Automation Broker
Labels
0 Karma
1 Comment
WhitneySink
Splunk Employee
Splunk Employee
‎08-03-2023 09:22 AM

Q&A

Here are a few questions submitted by attendees:

Which Splunk Cloud version has this "Content" tab added to it?
The content featured in the presentation (except the last slide that previews upcoming features) should all be available in the current versions for both on prem and cloud.

Is the playbook editor inside of mission control or SOAR? I had the understanding that customizing playbooks would stay in SOAR?
The Playbook Editor is still inside Splunk SOAR.

Is Splunk planning to support load balancing for privately hosted automation brokers? My team is looking to maintain high availability to account for the "dog ate my broker" scenario when executing playbooks. Is there any information as to when this might become a feature?

We don't currently have committed plans on redundancy on Automation Brokers. 

Based on your shirt speaking of "Resilience" is there any update on whether automation brokers will have any built-in resilience settings such as load-balancing?
We don't have an update to share regarding this at the moment but please keep an eye out for more info in future communications from the Splunk SOAR team.

0 Karma
Get Updates on the Splunk Community!

Splunk Observability for AI

Don’t miss out on an exciting Tech Talk on Splunk Observability for AI!Discover how Splunk’s agentic AI ...

Splunk Enterprise Security 8.x: The Essential Upgrade for Threat Detection, ...

Watch On Demand the Tech Talk on November 6 at 11AM PT, and empower your SOC to reach new heights! Duration: ...

Splunk Observability as Code: From Zero to Dashboard

For the details on what Self-Service Observability and Observability as Code is, we have some awesome content ...