April 2017 Digital Edition
March 2017 Digital Edition
Feb. 2017 Digital Edition
January 2017 Digital Edition
Nov/Dec 2016 Digital Edition
Oct 2016 Digital Edition
Digital Guardian releases Digital Guardian App for Splunk
Waltham, MA, June 4 – Digital Guardian, an endpoint security platform built to stop data theft, has released the Digital Guardian App for Splunk. The Digital Guardian App for Splunk harnesses the power of Splunk® Enterprise’s big data analytics capabilities to more rapidly detect and respond to insider attacks and advanced threats targeting sensitive data.
Digital Guardian solutions provide granular security event data on endpoints and servers (Windows, Mac OS X and Linux) for user behavior and process activity, including information describing which users and processes are accessing and attempting to exfiltrate sensitive data, a key indicator of malicious activity.
Digital Guardian has also developed a Splunk Add-on to natively collect and export the full richness of Digital Guardian data into the Splunk App for Enterprise Security. This add-on is specific to Digital Guardian solutions, with dashboards on Data Classification, Data Egress, Advanced Threat Detection, Alerts, Events, Process Activity, and Operations.
With Splunk Enterprise, organizations can collect their data, enrich it and perform real-time analytics, so users can obtain full visibility across all departments and benefit from high-fidelity alerts. Splunk solutions can correlate Indicators of Compromise (IOCs) detected on the network and enable joint customers with Digital Guardian endpoint events to filter out false positives, immediately understand which endpoints have been infected by threats, and prioritize which alerts need immediate attention. Armed with this visibility, users can deploy Digital Guardian’s real-time endpoint mitigation rules to block threats and quarantine systems before malicious code can propagate and sensitive data can be exfiltrated. The Splunk platform now gives Digital Guardian the ability to improve incident response and mitigation times for customers.
“Digital Guardian’s data goes beyond endpoint forensics to bring together what users and processes are doing with their most sensitive data on the endpoint,” stated Jon Oltsik, senior principal analyst at the Enterprise Strategy Group. “Digital Guardian’s heritage in data protection can help organizations align data security and security analytics, enhancing the cybersecurity purview of systems like the Splunk platform.”
“Analyzing machine data from security events on endpoint computers is an important part of the threat detection and response process, and security teams strengthen their security posture by using Splunk solutions to analyze this data collectively with all other data across the organization,” said Haiyan Song, senior vice president of security markets, Splunk. “The alliance between Splunk and Digital Guardian helps our joint customers obtain a greater level of Security Intelligence across organizations.”
About Digital Guardian
The Digital Guardian platform performs across traditional endpoints, mobile devices and cloud applications to make it easier to see and stop all threats to sensitive data. For more than 10 years, it has enabled data-rich organizations to protect their most valuable assets with an on premise deployment or an outsourced managed security program (MSP). Digital Guardian’s unique data awareness and transformative endpoint visibility, combined with behavioral threat detection and response, let you protect data without slowing the pace of your business. To learn more please visit https://digitalguardian.com.
About Splunk Inc.
Splunk® software and cloud services enable organizations to search, monitor, analyze and visualize machine-generated big data coming from websites, applications, servers, networks, sensors and mobile devices. More than 9,500 enterprises, government agencies, universities and service providers in more than 100 countries use Splunk software to deepen business and customer understanding, mitigate cybersecurity risk, prevent fraud, improve service performance and reduce cost. Splunk products include Splunk® Enterprise, Splunk Cloud™, Hunk®, Splunk Light™, Splunk MINT and premium Splunk Apps. To learn more, please visit http://www.splunk.com/company.