BitSight Security Performance Management for Splunk -
Bring BitSight Security Ratings observation information into your security program through this integration with Splunk Enterprise and Enterprise Security. BitSight Security Performance Management for Splunk automates the integration of BitSight observations into Splunk for correlation, analysis, and action. This includes observations from BitSight Work From Home Remote Office which helps organizations understand the risk environment in remote offices that lack many of the traditional security controls.
The add-on automatically maps the BitSight observation types to Splunk’s Common Information Model to enable relevant workflows based on the events from the BitSight data. The BitSight observations are summarized in a dashboard within the add-on.
This visibility enables you to integrate BitSight data with security data from other systems processed by Splunk to identify risk and accelerate remediation. BitSight data can help pinpoint the sources of infections and risky configurations in your company infrastructure, seamlessly going from awareness to rapid remediation. The additional visibility and integration allow security and IT teams to respond faster and more effectively to threats.
BitSight Work from Home - Remote Office -
BitSight Work from Home - Remote Office helps security teams identify vulnerabilities and infections on IP addresses known to be associated with remote operating environments. BitSight Security Performance Management for Splunk allows a user to quickly identify home office IP addresses using available log sources in Splunk like VPNs logs. Those IPs are then used to gather security risk observations from BitSight. These observations can be used to:
This add-on is compatible with both Splunk Enterprise and Splunk Enterprise Security.
V1 of BitSight Security Performance Management for Splunk Add-On
V1 of the BitSight Security Performance Management for Splunk Add-On
Splunk AppInspect evaluates Splunk apps against a set of Splunk-defined criteria to assess the validity and security of an app package and components.
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.