QSC18 – Qualys Data + Splunk Security Analytics = Finding Hidden Threats
TTS
Searching through endpoint data for answers to pressing security problems has always been a challenge. Whether it’s finding the one critical server that is exhibiting strange behavior related to a recently uncovered threat, or seeing patterns across a large number of endpoints that indicate the presence of a botnet command and control mechanism, the answers are in the endpoint data. The integration of Qualys with Splunk offers security teams fast and effective analytic views into their data, elevating concerning patterns and security events into clearly understandable security dashboards. This presentation with show Splunk security dashboards based on data from Qualys Vulnerability Management, Policy Compliance, and Web Application Scanning. Learn how the wealth of security analysis and events generated by the combination of Qualys apps feeding Splunk’s Security Information and Event Management (SIEM) platform can find the threats hiding in your environment.
Don Leatham, Global Strategic Alliances - Security Markets, Splunk
source
Gloss