Powering Digital Resilience in the AI Era

With rapid advancements in AI, digital resilience is no longer optional. AI-driven innovation is reshaping data centers, workplaces, and beyond — and businesses must adapt to ensure continuity and unlock innovation. That's why leading organizations trust Splunk’s unified security and observability platform to keep their digital systems secure and reliable. By combining new purpose-built threat analytics, advanced AI in observability, data management & federation, and new integrations with Cisco, Splunk provides a foundation for organizations to scale with the future of AI and the demands of tomorrow’s digital landscape.

New AI and Integrations for Faster, Smarter Troubleshooting

ITOps and engineering teams are under more pressure than ever to perform. The adoption of hybrid and multi-cloud infrastructures, integration of AI, and high demand for resilient digital experiences have made IT environments more dynamic, and complex. To keep pace, organizations need more effective ways to simplify troubleshooting, respond faster and solve problems. Splunk with Cisco makes this easier, by bringing teams together with shared data, context, and workflows to fix problems fast, ensure reliability of digital systems and deliver exceptional customer experiences.

At Cisco Live EMEA, Splunk Observability will showcase the following innovations:

• AI Assistant in Observability Cloud: Splunk’s new AI Assistant in Observability Cloud, powered by agentic AI technology, is ready to help answer questions about your cloud application and infrastructure . Type in your prompts and the AI Assistant will analyze your logs, metrics, and trace data in seconds, surface key insights about potential root causes or performing gaps, and provide suggested actions to troubleshoot IT incidents. This AI Assistant is available in select realms in the US, Australia, and Europe. Get more details here, and check out how you can use the AI Assistant to debug problems in Kubernetes more quickly.
• ITSI 4.20 - Drift Detection: Drift Detection in Splunk ITSI helps catch sudden changes in KPIs before they are impacted and proactively determine slow, long-trending changes (like slowly increasing latency over months) that potentially indicate an issue, so it can be remediated before problems arise. Read more here.
• ITSI 4.20 Simplified Alert Onboarding: Soon to be released, Simplified Alert Onboarding in Splunk ITSI helps ITOps teams easily get started with Event Analytics through an assisted workflow. It’s easy to ingest and transform alerts from Splunk & popular 3rd-party tools (like Nagios, SolarWinds, and Microsoft SCOM) with pre-built templates, automated, state-aware event correlations, and more.
• AppDynamics Add-on and dedicated AppDynamics content pack: Soon to be released, ITSI’s new AppDynamics Add-on and dedicated content pack enhances visibility and helps teams quickly find problems and troubleshoot in-context, by integrating AppDynamics with ITSI to dynamically correlate applications and infrastructure data with databases.
• AppDynamics Secure Application and Splunk Enterprise Security: The new integration between AppDynamics’ Secure Application and Splunk Enterprise Security unifies visibility across ITOps and Security teams. By sending application attack data from Secure Application to the Splunk platform, teams can alert security analysts, accelerate application security investigation workflows, and quickly resolve issues.

Powering the SOC of the Future with Splunk Security

Splunk Security delivers unified threat detection, investigation, and response (TDIR) to power the SOC of the future for greater digital resilience. Together with Cisco, our game-changing security solutions protect an organization's entire digital footprint from modern cyber threats at machine scale, using unprecedented depth and breadth of data across Splunk and Cisco to solve the security data problem.  

At Cisco Live EMEA, Splunk Security will showcase the following innovations:

• Empowering Threat Detection through Cisco Talos integration with Splunk Enterprise Security and Splunk SOAR: Now, Splunk Security cloud customers can directly leverage Cisco Talos’ threat intelligence through Cisco Talos Intelligence for Enterprise Security, the Cisco Talos Intelligence connector for Splunk SOAR, and as a globally enabled feature in Splunk Attack Analyzer — at no additional cost. With these integrations, customers can power the SOC of the future with robust intelligence to swiftly identify and mitigate risks.
• Boosting Analyst Efficiency with the AI Assistant in Enterprise Security (Preview): The AI Assistant in Enterprise Security (Preview) will allow security analysts to boost their efficiency and answer questions to guide daily workflows, save time while addressing threats more rapidly, and use natural language queries to get answers during investigations.
• Unifying TDIR Workflows with Splunk Enterprise Security 8.0: The introduction of Splunk Enterprise Security 8.0 brought in the SIEM of the future. Now, SOC teams can handle full TDIR workflows from start to finish,​ deploy automation with native Splunk SOAR integration and enhance detection engineering capabilities, all within Splunk Enterprise Security.

For Splunk customers who want access to early insights or want to try some of these upcoming releases, sign up here and provide us valuable feedback.