Join the Tech Talk on November 6, at11AM PT to learn how this upgrade enhances threat detection, investigation, and response with streamlined workflows, SOAR integration, and Open Cybersecurity Schema Format alignment. Stay ahead with backward compatibility and new features, guided by experts Drew Church and Brandon Tansey. Don’t miss out on future-proofing your SOC—watch on demand now to secure your spot and empower your security team!

Discover the latest innovations in Splunk SOAR at our live Tech Talk. Explore new features for faster playbook creation, seamless SIEM integration, and enhanced collaboration—empowering security teams to automate, orchestrate, and accelerate response. Be part of the conversation here!

Join us for a Tech Talk on using Splunk Attack Analyzer’s automated threat analysis with Splunk Enterprise Security and Splunk SOAR. Learn practical tips from Product Manager Aditya Raj and discover how to accelerate investigations—watch on demand now!

Discover how the collaboration between the Splunk Threat Research Team (STRT) and Cisco Talos is revolutionizing threat detection and response! Learn about the latest detections, how to integrate Cisco Secure Firewall with Splunk Enterprise Security, and how this partnership delivers a seamless, more integrated security monitoring experience. 

Explore how leading Security Operations Centers (SOCs) are transforming detection and response through a unified, risk-based approach to Threat Detection, Investigation, and Response (TDIR). Attendees will learn how to reduce alert fatigue with automation, enhance investigations with enriched data, and modernize legacy SOC workflows without overhauling existing tools. Watch it on-demand

Join us for an exclusive Tech Talk and gain actionable insights from SOC practitioners on overcoming data ingestion challenges, optimizing data relevance for Threat Detection, Investigation, and Response (TDIR), and achieving cost efficiency with advanced techniques. Learn how to streamline data ingestion, enhance threat detection, and accelerate incident response with real-world use cases and best practices.

Discover how an automation-first approach to security operations helps teams stay ahead of sophisticated adversaries and adapt to evolving techniques and threats.

Leverage Cisco Talos threat intelligence directly within Splunk Enterprise Security, Splunk SOAR, and Splunk Attack Analyzer — at no additional cost. Join us to learn about these integrations!

Learn the power of RBA!

In our latest release of Splunk Enterprise Security, we have revolutionized the SOC workflow experience, enabling security analysts to seamlessly detect what matters, investigate holistically, and respond rapidly.

Watch an insightful webinar where we delve into the innovative approaches to solving fraud using the Splunk suite of products. This session is designed for security experts and IT leaders from financial services organizations or any other industry that are looking to enhance their fraud detection and prevention strategies.

See what Splunk SOAR is delivering in version 6.3. During this session, the team provides a deep dive into new features like end-user prompts, FedRAMP certification, and integrations with Splunk Enterprise Security to help empower your SOC.

Continuous Asset Discovery and Proactive Risk Management with Splunk Asset and Risk Intelligence

Join this Tech Talk to learn from Dan Christiansen, Staff Security Strategist, about how you can build upon the visibility and security monitoring you’ve already established to enhance your security analytics and investigation capabilities and detect and respond to threats faster. 

Watch now to see an overview of the latest security content the team has developed to defend against RCEs, best practices for implementing and using this content and a walkthrough of the detection engineering process the Splunk Threat Research Team follows to create security content for defending against CVEs.

This tech talk shares how the Splunk Threat Hunting team seamlessly integrated the PEAK Threat Hunting Framework into their workflow while leveraging Splunk.

Phishing and malware attacks continue to surge, and phishing campaigns grow increasingly complex – all of which leaves analysts buried under a daily avalanche of alerts.

Did you know the Splunk Threat Research Team regularly releases new, pre-packaged security content? Just in the last few months, the team has released dozens of new and updated detections and analytics stories covering the latest threats, including malware campaigns, zero-day vulnerabilities, CVEs, and more.

Join members of the Splunk Machine Learning for Security (SMLS) team, Abhinav Mishra and Kumar Sharad, for a comprehensive overview of techniques including Large Language Models (LLMs), Generative Adversarial Networks (GANs), Diffusion Models, and Autoencoders.

Watch Splunk Applications and Systems Engineer, Daniel Federschmidt as he shares the latest on the Visual Studio Code Extension for Splunk SOAR and see how you can make developing apps a breeze.

The Splunk SOAR team shares more on the latest and greatest updates in version 6.2. 

Tune in to see new capabilities that deliver an improved workflow experience for simplified investigations; enhanced visibility and reduced manual workload; and customized investigation workflows for faster decision-making as well as the latest security content updates to protect you from the latest threats.

Amazon recently announced the General Availability of Security Lake (ASL), a new data lake offering in AWS to store and query security data from both AWS and non-AWS data sources. 

Since the release of Splunk SOAR 6.0, the Splunk SOAR team has been hard at work implementing new features and integrations to help improve the SOAR user experience.

Join Principal Threat Researcher, Michael Haag, as he walks through:

This tech talk highlights content developed by the Splunk Threat Research Team in the past quarter, delivered in the form of detections that are grouped into analytic stories and delivered to Splunk customers through the Enterprise Security Content Update (ESCU) app.

Threat research shows that a large percentage of organizations experience DNS attacks. Often, adversaries dynamically generate domain names using Domain Generation Algorithms (DGA) to create C2 infrastructure not prone to static analysis disruption.

Struggling with alert fatigue, lack of context, and prioritization around security incidents?

 How do you utilize the Splunk Cloud Migration Application? 

How to use the analytical power of Splunk to hunt for cyber and insider threats, and also utilizes the Splunk Machine Learning Toolkit (MLKT) for novelty and outlier detection from the noisy security datasets.