Splunk Cloud Platform

The current use case is using Splunk Cloud Platform to look for cyber security threats. While there are other tools being used to look for cybersecurity threats. Splunk Cloud Platform has proven to be a reliable and trusted source.

It's also used monitor login attempts and watch traffic patterns and trends. Dashboards have long been used in this product and will continue.

• Reduced MTTR by 25%
• Preventing breaches justifies investment
• High licensing costs
• Need for skilled senior personnel to operate

Datadog, Elastic Security and Microsoft Sentinel

PagerDuty, Splunk SOAR, DataSet by SentinelOne, Zeek Network Security Monitor

We are using Splunk Cloud Platform mainly for data quality management, especially for monitoring important interfaces and data insufficiencies.

Additionally, we use it to monitor automation performance of our Automation Suite, including 250 productice automations from various providers. Splunk Cloud Platform is great at identifying patterns where automations are failing, summarizing that information and enhancing it with context and sending it out to another tool carrying out the orchestration for us. With Splunk Cloud Platform, we also make sure to minimize maintenance pings by summarizing likewise events in one protocol.

• Increased time for value deriving tasks
• More efficient maintenance and debugging processes
• Overall increase in transparency on maintenance issues
• Improved data quality and consistency

Microsoft Power BI

UiPath Automation Platform, Microsoft Power Automate, Celonis

Splunk Cloud Platform is our near-real-time monitoring machine for observation of more than 200 automated systems. It indicates faulted processes, inefficiencies in operations and sends out webhook pings to our developers to fix these. Without Splunk Cloud Platform‘s search pricessing capabilities, we would never be able to cover all systems executions, screen logs for systematic errors and give direct advise on the fix.

• Saved a lot of time on maintenance / observation
• Professionalization of automation services
• Improved reliance and time to fix

Celonis and Microsoft Power Automate

UiPath Automation Platform, Bizagi Digital Business Platform, Celonis

We use to be Splunk Enterprise customer but local storage for logs was challenging. Moving to cloud indirectly we have now unlimited storage and scale up easy when our requirements change.

• Meets our dynamic / constant expanding needs

FortiAnalyzer

IBM Security QRadar SIEM

We use Splunk Cloud to aggregate logs from various Cloud and on-premise applications and services into a single place for Security and IT Operations monitoring. This allows us to focus on a single platform and remove duplication of costs, training, data onboarding etc. We have alerts that are sent directly to operations teams and dashboards available for wallboards and aggregate data.

• Splunk Cloud has reduced the need for in-house Infrastructure Engineers due to the service being maintained by Splunk instead of ourselves.
• We no longer need to pivot between multiple cloud provider tools to monitor multiple services.

Amazon CloudWatch, Datadog, Elasticsearch, New Relic, Cribl Edge, Cribl Stream and Cribl.Cloud

Amazon CloudWatch, Amazon Elastic Compute Cloud (EC2), AWS Lambda, Docker, Cribl Stream, Cribl Search