DTEX InTERCEPT Insider Risk Intelligence and Endpoint Telemetry - Splunk App

DTEX InTERCEPT provides contextual human activity intelligence and endpoint telemetry as a single, noise-free data source that surfaces insider threats, predicts data loss events, and identifies external attempts to compromise an enterprises workforce. Together, Splunk and DTEX are delivering continuous threat posture analysis for every user, real-time endpoint visibility at enterprise scale, and dynamic zero trust policy enforcement aligned with continuous risk scoring. These actionable and holistic deliverables are helping hundreds of customers accelerate security response times and root cause analysis, drive faster event resolution with advanced analytics and reporting, and decrease manual security and IT operations. The Splunk App for DTEX InTERCEPT works in conjunction with the Splunk Add-on to ingest ‘Indicators of Intent’ and deliver pre-packaged dashboards and visualizations that provide SOC teams a holistic, more contextually rich understanding of how user activity is influencing what’s happening in their environment and if those behaviors are creating risks to data, users and operational processes.