Detailed Features of the App
The Positka cloud Security Monitoring solution for cloud services provides an effortless experience in configuring and monitoring all cloud platform logs from AWS and Azure across services like Network, Compute, Storage and IAM.
Rules/Content: Maintaining a use case library with 170+ rules across both AWS and Azure platform. Customers can select the rules as per their requirement.
Security Posture View:
The Security Posture dashboard gives a consolidated view of key metrics, making it easier for the organization to make key decisions and helps to Understand what happened across the cloud environment and helps determine if a cloud resource might have been compromised
Real time Monitoring:
Enables the SOC team to monitor threats and correlate events in real time to find and stop threats.
Incident Response: Organized way to address and manage potential threat incidents.
It helps SOC teams analyse, investigate and respond to alerts.
Service level Overview/Security analytics views:
The Service Overview dashboards and Security Analytics view provide detailed information about the activity happening within specific services in your cloud environment as well as static, dynamic and visual correlations to investigate threats or attacks happening in the cloud environment.
Investigation dashboards: Analytics are key to producing insights from mountains of data and we have diverse set of investigation dashboards to identify hidden threats.
Subscription to 30+ community / open source threat intel feeds (with IOC matching included), helps SOC team recognize abnormal activity, assess the risk to the business, and prioritize the response.
Splunk AppInspect evaluates Splunk apps against a set of Splunk-defined criteria to assess the validity and security of an app package and components.
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.