Privileged users, such as system administrators, IT vendors or contractors pose security risk for Splunk customers managing sensitive data. Actions of a rogue administrator or a privileged account hijack-based attack can go undetected for months while causing huge damage for the business. Balabit's Privileged Session Management (PSM) controls privileged access to remote IT systems, records activities in searchable, movie-like audit trails, and prevents malicious actions. With the Balabit PSM App security events managed by Splunk Enterprise are extended by privileged user activities captured by Privileged Session Management. Daily security operation tasks are greatly simplified, as it is no longer necessary to manually download and inspect user-related logs, as all the information is searchable and visualized in the Splunk web GUI. By having a complete, tamper-proof evidence about privileged users' access, you will be in a better position to prevent APT attacks. Tested with PSM (formerly known as SCB) 4 F2.