What's New With Splunk ES 8.0
Find out what's new with the ES 8.0 update and how to move to it.
- Thu, Nov 21
- UK: 10:00 AM - 10:30 AM 🇬🇧 (GMT)
- UAE: 2:00 PM - 2:30 PM 🇦🇪 (GMT to GST)
- Virtual, GoToWebinar
- Please complete a GoToWebinar System Check prior to joining the session
Splunk Enterprise Security (ES) 8.0 Showcase
Join us for an exclusive event unveiling the cutting-edge advancements in Splunk Enterprise Security (ES) 8.0. This release introduces a unified, streamlined interface designed to enhance your security operations. With improved case management and the integration of Mission Control + Threat Intelligence Management (TIM), Splunk ES 8.0 now supports more efficient and coordinated threat detection, investigation, and response (TDIR). This ensures that you stay ahead of evolving threats with greater agility and precision.
A key highlight of Splunk ES 8.0 is its new taxonomy aligned with the Open Cybersecurity Schema Framework (OCSF). This update shifts from Correlation Rules to Findings, now categorised as Intermediate or Full Findings, enabling more accurate threat analysis and automatic aggregation of detections. The release also features new Finding Groups and automatic detection versioning, enhancing the relevance and accuracy of your security insights.
Additionally, we will delve into Federated Analytics, a powerful new capability allowing you to run detections on data natively stored in Amazon Data Lake. This feature supports knowledge objects and data models, enabling real-time threat detection and analysis with cloud-based data storage. Join us to learn how to leverage these transformative features and elevate your security strategy with Splunk ES 8.0.
Webinar with Ben Marrable
This session will be led by Somerford's Security Strategist and CISSP, Ben Marrable, who will guide you through the latest advancements and features of Splunk ES 8.0.
Agenda
- Overview of Splunk ES 8.0’s new features and interface enhancements
- Introduction to the new taxonomy and findings categorisation
- Deep dive into Federated Analytics and its cloud-based capabilities
- Implementation strategies for integrating the new features into your security operations