icon/x Created with Sketch.

Splunk Cookie Policy

We use our own and third-party cookies to provide you with a great online experience. We also use these cookies to improve our products and services, support our marketing campaigns, and advertise to you on our website and other websites. Some cookies may continue to collect information after you have left our website. Learn more (including how to update your settings) here.
Accept Cookie Policy

Accept License Agreements

This app is provided by a third party and your right to use the app is in accordance with the license provided by that third-party licensor. Splunk is not responsible for any third-party apps and does not provide any warranty or support. If you have any questions, complaints or claims with respect to this app, please contact the licensor directly.

Thank You

Downloading BitSight Security Performance Management for Splunk Add-On
SHA256 checksum (bitsight-security-performance-management-for-splunk-add-on_101.tgz) 6112bfdfccff6d9eee64eac3a4774df45e79f4be9bbc6f9a5e05e306f2e30d5f SHA256 checksum (bitsight-security-performance-management-for-splunk-add-on_100.tgz) b831d185af811f940a103c9db3b095cc9cf542cf656c6aa6cbfb31f947c37f12
To install your download
For instructions specific to your download, click the Details tab after closing this window.

Flag As Inappropriate

BitSight Security Performance Management for Splunk Add-On

Splunk AppInspect Passed
Admins: Please read about Splunk Enterprise 8.0 and the Python 2.7 end-of-life changes and impact on apps and upgradeshere.
Overview
Details
BitSight Security Ratings, the standard in security ratings, are a daily measurement of an organization’s security performance generated through analysis of vast amounts of externally observable data. BitSight transforms how companies manage information security risk with objective, verifiable and actionable Security Ratings.

Bring BitSight Security Ratings observation information into your security program through this integration with Splunk Enterprise and Enterprise Security. BitSight Security Performance Management for Splunk automates the integration of BitSight observations into Splunk for correlation, analysis, and action. This includes observations from BitSight Work From Home Remote Office which helps organizations understand the risk environment in remote offices that lack many of the traditional security controls.

BitSight Security Performance Management for Splunk -

Bring BitSight Security Ratings observation information into your security program through this integration with Splunk Enterprise and Enterprise Security. BitSight Security Performance Management for Splunk automates the integration of BitSight observations into Splunk for correlation, analysis, and action. This includes observations from BitSight Work From Home Remote Office which helps organizations understand the risk environment in remote offices that lack many of the traditional security controls.

The add-on automatically maps the BitSight observation types to Splunk’s Common Information Model to enable relevant workflows based on the events from the BitSight data. The BitSight observations are summarized in a dashboard within the add-on.

This visibility enables you to integrate BitSight data with security data from other systems processed by Splunk to identify risk and accelerate remediation. BitSight data can help pinpoint the sources of infections and risky configurations in your company infrastructure, seamlessly going from awareness to rapid remediation. The additional visibility and integration allow security and IT teams to respond faster and more effectively to threats.

BitSight Work from Home - Remote Office -

BitSight Work from Home - Remote Office helps security teams identify vulnerabilities and infections on IP addresses known to be associated with remote operating environments. BitSight Security Performance Management for Splunk allows a user to quickly identify home office IP addresses using available log sources in Splunk like VPNs logs. Those IPs are then used to gather security risk observations from BitSight. These observations can be used to:

  • Discover security issues that reside on work from home IPs to help inform existing incident response or insider threat activities.
  • Monitor higher risk remote operating environments such as access to sensitive data or intellectual property (e. Exes, software devs)
  • Educate employees on potential security issues as part of security training & awareness programs

This add-on is compatible with both Splunk Enterprise and Splunk Enterprise Security.

Documentation:
https://www.bitsight.com/hubfs/product-integrations/splunk/Add-on%20Installation%20Guide%20-%20BitSight%20Security%20Performance%20Management%20for%20Splunk.docx

Release Notes

Version 1.0.1
May 27, 2020

V1 of BitSight Security Performance Management for Splunk Add-On

Version 1.0.0
May 11, 2020

V1 of the BitSight Security Performance Management for Splunk Add-On

39
Installs
112
Downloads
Share Subscribe LOGIN TO DOWNLOAD

Subscribe Share

AppInspect Tooling

Splunk AppInspect evaluates Splunk apps against a set of Splunk-defined criteria to assess the validity and security of an app package and components.

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.

Follow Us:
© 2005-2020 Splunk Inc. All rights reserved.
Splunk®, Splunk>®, Listen to Your Data®, The Engine for Machine Data®, Hunk®, Splunk Cloud™, Splunk Light™, SPL™ and Splunk MINT™ are trademarks and registered trademarks of Splunk Inc. in the United States and other countries. All other brand names, product names, or trademarks belong to their respective owners.