It's one thing for a Fortune 50 company to spend a million dollars a year in the cloud. It seems like they are so focused on forcing everyone into the cloud that they seem to be not understanding that there are people that don't have those really deep pockets. I'm going to spend X amount of money on hardware every X years, and I'm going to have to pay licensing costs on software of X over that same period versus that amount that I'd amortize over five years is what I would be paying every year in the cloud. The cost for me to buy equipment every three years and own licensing and run it local to my prem, is significantly less from a three or five year license. Splunk's mission is to move everyone to the cloud and charge us a bunch more money. Their goal is to cloud source everything, and quite honestly, the price of cloud sourcing the product, even at smaller 500 gigs a day (which isn't a lot of data by Splunk standards) in the cloud for that is ludicrous. They seem to be doing a good job of keeping it contemporary from that perspective. I don't really have any feature requests in Splunk's space. Their forwarder management is still kind of split that way. It would be nice if they could move all of the administrative features into a GUI platform so that when you're in the Splunk distributed environment management platform, you then don't have to go into the command line to add new applications or new packages that you then want to be able to push out to your forwarders. So it's not all in the GUI, but it has been moving slowly to the GUI over the last several versions. So the users seem to like it.īy less kludgy, I mean that in the version I'm running, I still have to go into the command line and modify files and then go into the GUI and validate that they got modified. I still think there are some administrative features that they could improve on and make them less kludgy, but from a user perspective, it has gotten very clean and very sexy looking over the last few builds. Splunk has been improving consistently over the last couple of revs. Splunk meets you where you are on your cloud journey, and integrates across your data, tools and content. Open and scalableīuilt on an open and scalable data platform, you can stay agile in the face of evolving threats and business needs. The built-in open and extensible data platform boosts productivity and drives down fatigue. Gather all the context you need and initiate flexible investigations with security analytics at your fingertips. Fast threat detectionĭefend against threats with advanced security analytics, machine learning and threat intelligence that focus detection and provide high-fidelity alerts to shorten triage times and raise true positive rates. Get full visibility to quickly detect malicious threats in your environment. Full visibility across your environmentīreak down data silos and gain actionable intelligence by ingesting data from multicloud and on-premises deployments. This benefits users as it provides alerts to possible intrusions, helps users to be proactive, and reduces risk factors. Splunk Enterprise Security can monitor data and analyze, detect, and prevent intrusions. Splunk Enterprise Security also offers visibility from different areas, levels, and devices, rather than from a single system, thus, providing its users with flexibility. The solution provides users with the ability to secure their information and manage their data in the cloud, data centers, or other applications. Splunk Enterprise Security is a SIEM, log management, and IT operations analytics tool.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |