The Cisco Cloud Security App for Splunk integrates cloud security data with event data from Splunk to drive improved network visibility, faster threat detection, and mitigation response. This App: 1. Provides visualizations for the logs brought in from S3 by the Cisco Cloud Security Umbrella Add On. 2. Gives SOC’s/Threat Hunting teams the ability to learn more about destinations using the Investigate API. 3. Enables SOCs to block destinations (currently limited to Splunk Enterprise). 4. Lets teams manage Cloudlock CASB incidents.