Leadership
3 Min Read
Splunk's CISO Report explores the gaps between CISOs and their boards, and shares best practices to help CISOs reach across the aisle.
Featured Articles
SOAR on Azure Now Available
Splunk Security Orchestration, Automation and Response (SOAR) is now available as a native SaaS solution on Azure.
What Is Cyber Hygiene? Introduction, Best Practices, and Next Steps for Organizations
One approach to a cybersecurity strategy, cyber hygiene is the way of creating a structured, intelligent environment that reduces the risk of contamination.
The High Cost of Security Investigations
Splunk Asset & Risk Intelligence (ARI) can significantly reduce investigation costs, improve analyst efficiency, and accelerate threat containment.
Expanding the Splunk Academic Alliance to Nurture Tomorrow’s Cybersecurity Leaders
The Splunk Academic Alliance Program offers free Splunk Enterprise licenses, training, and now Splunk ES & SOAR.
Embracing Flexibility to Do Great Work
Work in the ways that work for you. Learn how Splunkers define flexibility, and how they work with their teams to make the best work happen.
Security
Logs Are for Campfires: Integrate and Innovate With Splunk Asset and Risk Intelligence
Splunker Jerald Perry explains how to stay ahead of threats with streamlined workflows and comprehensive insights into your security posture.
Exploring AI for Vulnerability Investigation and Prioritisation
Splunker James Hodgkinson explains how AI-driven tools can revolutionize vulnerability investigation and prioritization.
Supercharge Your SOC Investigations with Splunk SOAR 6.4
Splunker Nick Hunter explains how to integrate Cisco Talos threat intelligence, leverage Azure scalability, and streamline investigations.
Security Staff Picks To Read This Month, Handpicked by Splunk Experts
Every month, our Splunk staff of security experts share their favorite reads of the month — this way, you can follow the most interesting, news-worthy, and innovative stories coming from the wide world of cybersecurity.
SNARE: The Hunters Guide to Documentation
Discover the SNARE framework for effective threat hunting documentation.
Hey SDDL SDDL: Breaking Down Windows Security One ACE at a Time
Explore SDDL in Windows security with our comprehensive guide to help enhance your defensive strategy against privilege escalation attacks.
Learn
SIEM: Security Information & Event Management Explained
SIEM is a cybersecurity game-changer, especially for large organizations. Learn key SIEM features and functions & how to choose the right SIEM tool.
IT and Technology Spending & Budgets for 2025: Trends & Forecasts
Tech & IT spending is on the rise in 2025 across the globe. Read more on investment trends and see which regions will spend the most.
What Are SLMs? Small Language Models, Explained
Large language models have changed the world. What about small language models? Learn what SLMs are, how they differ from LLMs, and why SLMs are the future.
Telemetry 101: An Introduction To Telemetry
Telemetry is powerful data that can tell you all sorts of important information. Know what you can do with this useful data — get the full telemetry 101 here.
What are SaaS, PaaS, & IaaS?
Yes, the cloud makes work better. But which cloud model is right for you? Understand how SaaS, PaaS, and IaaS works in this ultimate guide.
What is Observability? An Introduction
In this blog post, we'll look at definitions, best practices, and key concepts around Observability in IT.
Latest Articles
Detecting Password Spraying Attacks: Threat Research Release May 2021
The Splunk Threat Research team walks you through a new analytic story to help SOC analysts detect adversaries executing password spraying attacks, and highlights a few detections from the May 2021 releases.
Dashboard Studio: Dashboard Customization Made Easy
Learn more about Splunk Dashboard Studio, a new and intuitive dashboard-building experience, with native capabilities for customizing layout or colors, and adding images or text boxes.
Collecting Kafka Performance Metrics with OpenTelemetry
Learn how to collect and monitor Kafka performance metrics with Splunk Infrastructure Monitoring using OpenTelemetry — a vendor-neutral and open framework to export telemetry data.
Tales of a Principal Threat Intelligence Analyst
Discover how threat intelligence can offer valuable insights to help fend off future attacks, no matter how covert or cunning they appear to be.
A Deeper Dive into TruSTAR Intel Workflows
Learn about TruSTAR's API 2.0, featuring TruSTAR Intel Workflows. This blog post provides a look at some technical aspects of the Indicator Prioritization Intel Workflow.
Monitoring Kafka Performance with Splunk
In this three part blog series, we take a deep dive into Kafka architecture, the key performance characteristics that you should monitor and how to collect telemetry data to gain real-time observability into the health and performance of your Kafka cluster using Splunk.
Building Resilience Through Australia’s Critical Infrastructure
We’re proud to announce the completion of the Information Security Registered Assessors Program (IRAP) assessment, allowing Australian government agencies to leverage the assurance of the ‘protected’ status Splunk now holds.
EO, EO, It’s Off to Work We Go! (Protecting Against the Threat of Ransomware with Splunk)
We read the 'What We Urge You To Do To Protect Against The Threat of Ransomware' memo and Executive Order (EO14028) in-depth, and this blog is designed to provide you with the information and takeaways to start acting immediately.
Meet the Splunktern: Michelle Zheng
In our newest installment of our 'Meet the Splunktern' series, we meet Michelle Zheng, our Software Development Engineer (iOS) Co-Op on Splunk’s iPad team.
Subscribe to our blog
Get the latest articles from Splunk straight to your inbox.
Connect with Splunk on X
Follow @Splunk
Connect with Splunk on Instagram
Follow @Splunk
