TechValidate Content Library /

TechValidate Research on Splunk

169 Case Studies – Page 2 of 6

Case Study: Educational Institution Reduces Escalations and Improves Troubleshooting

Challenges

  • Solved the following challenges with Splunk:
    • Difficulty troubleshooting/analyzing/fixing IT issues quickly
    • Difficulty determining whether an issue is an IT ops issue or a security issue

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • File system audit logs
    • Desktop/endpoint security data
    • Host or network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • Infrastructure data: Network switch, router and load balancer
  • Manages 100TB – 500TB data with Splunk.
  • Deployed Splunk in two weeks or more.

Results

  • Reduced escalations by Up to 10% with Splunk proactive monitoring.
  • Splunk provided the following business and IT benefits:
    • Passed PCI or other compliance audit
    • Detected and reduced fraudulent activity/behavior

Testimonials

“We have better troubleshooting with Splunk.”

Source:
TechValidate Survey of a Educational Institution

Details Share   Cite     Embed Download

Case Study: Splunk Improves Infrastructure Visibility at Educational Institution

Challenges

  • Solved the following challenges with Splunk:
    • Difficulty troubleshooting/analyzing/fixing IT issues quickly
    • Inability to answer ad hoc requests and questions by using data
    • Difficulty tracking transactions across the entire infrastructure

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • File system audit logs
    • Host or network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • Virtualization environment: Hyper-V, Xen, VMware
    • Server, desktop, database and application user activity logs
    • Infrastructure data: Network switch, router and load balancer
  • Manages Less than 500GB data with Splunk.
  • Deployed Splunk in a few hours or less.

Results

  • Responds to issues and incidents 40-50% faster with Splunk.
  • Reduced service outages by nothing by achieving real-time monitoring with Splunk.
  • Reduced escalations by 30-40% with Splunk proactive monitoring.
  • Identified security incidents 40-50% faster with Splunk real-time monitoring.
  • Splunk provided the following business and IT benefits:
    • Eliminated spending on different tools and saved maintenance costs
    • Improved infrastructure visibility to better utilize capacity
    • Detected and reduced fraudulent activity/behavior
    • Enhanced customer service and experience

Testimonials

“Splunk gives us single pane of glass insight into what’s going on in the infrastructure.”

Source:
TechValidate Survey of a Educational Institution

Details Share   Cite     Embed Download

Case Study: Medium Enterprise Computer Services Company Reduces Outages 80% with Splunk

Challenges

  • Solved the following challenges with Splunk:
    • Difficulty troubleshooting/analyzing/fixing IT issues quickly
    • Inability to answer ad hoc requests and questions by using data
    • Multiple monitoring/reporting tools inefficient and inaccurate
    • Performance and/or availability issues with infrastructure or applications
    • Difficult to track and monitor external web behavior
    • Difficult to track and monitor internal users behavior
    • Difficulty analyzing trends and patterns across large amounts of historical data

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • File system audit logs
    • OS logs from hosts and applications
    • System metrics
    • Server, desktop, database and application user activity logs
  • Manages 500GB – 1TB data with Splunk.

Results

  • Responds to issues and incidents 80+% faster with Splunk.
  • Reduced service outages by 80+% by achieving real-time monitoring with Splunk.
  • Reduced escalations by 80+% with Splunk proactive monitoring.
  • Splunk provided the following business and IT benefits:
    • Reduced overall system downtime through proactive detection
    • Eliminated spending on different tools and saved maintenance costs
    • Provided immediate visibility into key business metrics and analytics
    • Improved infrastructure visibility to better utilize capacity
    • Improved the partnership between development and operations
    • Improved application performance
    • Improved service delivery

Testimonials

“We’re able quickly find application bottlenecks… I can’t imagine living without Splunk those days.”

Source:
TechValidate Survey of a Medium Enterprise Computer Services Company

Details Share   Cite     Embed Download

Real-time Results at a Large Enterprise Professional Services Company

Challenges

  • Solved the following challenges with Splunk:
    • Difficulty troubleshooting/analyzing/fixing IT issues quickly
    • Multiple monitoring/reporting tools inefficient and inaccurate
    • Difficulty tracking transactions across the entire infrastructure
    • Performance and/or availability issues with infrastructure or applications
    • Difficulty analyzing trends and patterns across large amounts of historical data

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • Desktop/endpoint security data
    • Host or network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • Server, desktop, database and application user activity logs
    • Active Directory data
    • Mail server or Exchange server data
  • Manages 10TB – 100TB data with Splunk.
  • Deployed Splunk in more than one week.

Results

  • Responds to issues and incidents 20-30% faster with Splunk.
  • Identified security incidents 20-30% faster with Splunk real-time monitoring.
  • Splunk provided the following business and IT benefits:
    • Avoided security incidents
    • Detected and reduced fraudulent activity/behavior

Testimonials

“Splunk provided us much quicker detection and investigation of security incidents.”

Source:
TechValidate Survey of a Large Enterprise Professional Services Company

Details Share   Cite     Embed Download

A Track Record of Results at this Global 500 Construction Company

Challenges

  • Solved the following challenges with Splunk:
    • Difficulty tracking transactions across the entire infrastructure
    • Difficulty correlating disparate events across IT infrastructure
    • Difficulty analyzing trends and patterns across large amounts of historical data
    • Meeting compliance mandates

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • File system audit logs
    • Storage system: NAS, SAN or similar data
    • Host or network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • Virtualization environment: Hyper-V, Xen, VMware
    • Server, desktop, database and application user activity logs
    • Infrastructure data: Network switch, router and load balancer
    • Mail server or Exchange server data
  • Manages 500GB – 1TB data with Splunk.
  • Deployed Splunk in one day or more.

Results

  • Responds to issues and incidents 50-60% faster with Splunk.
  • Reduced escalations by 30-40% with Splunk proactive monitoring.
  • Identified security incidents < 10% faster with Splunk real-time monitoring.
  • Splunk provided the following business and IT benefits:
    • Reduced overall system downtime through proactive detection
    • Eliminated spending on different tools and saved maintenance costs
    • Improved service delivery
    • Detected and reduced fraudulent activity/behavior
    • Enhanced customer service and experience

Testimonials

“Alerts from Splunk have lowered our response time to problems and allow us to see some problems in advance.”

Source:
TechValidate Survey of a Global 500 Construction Company

Details Share   Cite     Embed Download

Rapid Time-to-value at this Global 500 Retail Company

Challenges

  • Solved the following challenges with Splunk:
    • Difficulty troubleshooting/analyzing/fixing IT issues quickly
    • Multiple monitoring/reporting tools inefficient and inaccurate
    • Difficulty tracking transactions across the entire infrastructure
    • Inability to provide views and dashboards from machine data to non-IT users
    • Difficult to track and monitor external web behavior

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • GPS readings
    • Host or network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • Java applications and application servers
    • .Net applications and application servers
    • Server, desktop, database and application user activity logs
    • Infrastructure data: Network switch, router and load balancer
  • Manages 500GB – 1TB data with Splunk.
  • Deployed Splunk in two weeks or more.

Results

  • Reduced escalations by 10-20% with Splunk proactive monitoring.
  • Identified security incidents < 10% faster with Splunk real-time monitoring.
  • Splunk provided the following business and IT benefits:
    • Provided immediate visibility into key business metrics and analytics
    • Improved infrastructure visibility to better utilize capacity
    • Provided end-to-end visibility across the entire application stack
Source:
TechValidate Survey of a Global 500 Retail Company

Details Share   Cite     Embed Download

Real-time Security Monitoring at a Large Pharmaceuticals Provider

Challenges

  • Solved the following challenges with Splunk:
    • Difficulty troubleshooting/analyzing/fixing IT issues quickly
    • Difficulty determining whether an issue is an IT ops issue or a security issue
    • Difficulty tracking transactions across the entire infrastructure
    • Difficulty correlating disparate events across IT infrastructure
    • Difficulty analyzing trends and patterns across large amounts of historical data

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • File system audit logs
    • Host or network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • Virtualization environment: Hyper-V, Xen, VMware
    • Server, desktop, database and application user activity logs
    • Infrastructure data: Network switch, router and load balancer
    • Active Directory data
  • Manages 1TB – 10TB data with Splunk.
  • Deployed Splunk in one day or more.

Results

  • Identified security incidents 20-30% faster with Splunk real-time monitoring.
  • Splunk provided the following business and IT benefits:
    • Improved understanding of security risk and its impact upon the business
    • Supplied role-specific, dashboard views to give appropriate data access to users without compromising security
    • Detected and reduced fraudulent activity/behavior

Testimonials

“We use Splunk to quickly find and assess security incidents.”

Source:
TechValidate Survey of a Large Enterprise Pharmaceuticals Company

Details Share   Cite     Embed Download

ROI at a Fortune 500 Insurance Company

Challenges

  • Solved the following challenges with Splunk:
    • Inability to answer ad hoc requests and questions by using data
    • Multiple monitoring/reporting tools inefficient and inaccurate

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • Content delivery network data
    • Java applications and application servers
    • Server, desktop, database and application user activity logs
  • Manages Over 1PB data with Splunk.

Results

  • Responds to issues and incidents 10-20% faster with Splunk.
  • Reduced service outages by 10-20% by achieving real-time monitoring with Splunk.
  • Reduced escalations by 10-20% with Splunk proactive monitoring.
  • Identified security incidents 10-20% faster with Splunk real-time monitoring.
  • Splunk provided the following business and IT benefits:
    • Eliminated spending on different tools and saved maintenance costs
Source:
TechValidate Survey of a Fortune 500 Insurance Company

Details Share   Cite     Embed Download

Case Study: Fortune 500 Retail Company Reduces Service Outages With Real-Time Monitoring

Challenges

  • Solved the following challenges with Splunk:
    • Difficulty troubleshooting/analyzing/fixing IT issues quickly
    • Inability to answer ad hoc requests and questions by using data
    • Difficulty correlating disparate events across IT infrastructure
    • Difficulty analyzing trends and patterns across large amounts of historical data

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • Host or network security, IDS, IPS, firewall proxy
    • Infrastructure data: Network switch, router and load balancer
  • Manages Less than 500GB data with Splunk.

Results

  • Reduced service outages by 30-40% by achieving real-time monitoring with Splunk.
  • Reduced escalations by 30-40% with Splunk proactive monitoring.
  • Splunk provided the following business and IT benefits:
    • Reduced overall system downtime through proactive detection
    • Improved infrastructure visibility to better utilize capacity
    • Facilitated better alignment of IT and business objectives
    • Delivered better measurement and reporting of service levels

Testimonials

“Up until this point, we have primarily used Splunk software as a triage tool and it has been very effective in reducing the time it takes us to research and resolve a problem. We are looking at expanding Splunk’s footprint in this company.”

Source:
TechValidate Survey of a Fortune 500 Retail Company

Details Share   Cite     Embed Download

Case Study: Large Enterprise Financial Services Company Reduces Escalations & Outages

Challenges

  • Solved the following challenges with Splunk:
    • Siloed and unconnected IT infrastructure and applications
    • Difficulty troubleshooting/analyzing/fixing IT issues quickly
    • Inability to answer ad hoc requests and questions by using data
    • Inability to track and report on SLAs or key performance indicators across the business
    • Multiple monitoring/reporting tools inefficient and inaccurate
    • Difficulty tracking transactions across the entire infrastructure
    • Difficulty correlating disparate events across IT infrastructure
    • Performance and/or availability issues with infrastructure or applications
    • Difficult to track and monitor internal users behavior
    • Inability to align IT processes with business objectives
    • Difficulty analyzing trends and patterns across large amounts of historical data

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • File system audit logs
    • Financial industry exchange data
    • Storage system: NAS, SAN or similar data
    • OS logs from hosts and applications
    • Java applications and application servers
    • .Net applications and application servers
    • System metrics
    • Server, desktop, database and application user activity logs
    • Infrastructure data: Network switch, router and load balancer
    • Web clickstream data
  • Manages 1TB – 10TB data with Splunk.
  • Deployed Splunk in two weeks or more.

Results

  • Responds to issues and incidents 50-60% faster with Splunk.
  • Reduced service outages by 30-40% by achieving real-time monitoring with Splunk.
  • Reduced escalations by 60-70% with Splunk proactive monitoring.
  • Splunk provided the following business and IT benefits:
    • Reduced overall system downtime through proactive detection
    • Eliminated spending on different tools and saved maintenance costs
    • Supplied role-specific, dashboard views to give appropriate data access to users without compromising security
    • Provided immediate visibility into key business metrics and analytics
    • Improved infrastructure visibility to better utilize capacity
    • Delivered better measurement and reporting of service levels
    • Improved the partnership between development and operations
    • Provided end-to-end visibility across the entire application stack

Testimonials

“Splunk has been a valuable tool for us to troubleshoot and identify issues quickly and proactively.”

Source:
TechValidate Survey of a Large Enterprise Financial Services Company

Details Share   Cite     Embed Download

High-Speed Wireless Internet Access Provider Troubleshoots 70% Faster with Splunk

Challenges

  • Solved the following challenges with Splunk:
    • Troubleshooting/analyzing/fixing IT issues quickly
    • Multiple monitoring/reporting tools inefficient and inaccurate
    • Analyzing trends and patterns across large amounts of historical data
    • Difficulty in custom reporting and analytics of logs

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • OS logs from hosts and applications
    • Web server access logs and analytics
    • RADIUS logs
  • Deploys Splunk for:
    • Application development
    • Business analytics/intelligence
    • Web analytics
    • Testing/QA
    • Reporting

Results

  • Troubleshoots problems, performs ad-hoc searches and conducts incident investigations 70+% faster with Splunk.
  • Identified security incidents we don’t do real time monitoring for security faster with Splunk real-time monitoring.
  • Reported that Splunk provided the following business and IT benefits:
    • Improved infrastructure visibility to better utilize capacity
    • Delivered better measurement and reporting of service levels
    • Improved application performance

Testimonials

“Splunk saved us from having to develop our own log parser and reporting mechanism for our applications. We simply point Splunk at our logs, and then query Splunk via the API.”

Source:
TechValidate Survey of a Small Business Telecommunications Services Company

Details Share   Cite     Embed Download

Educational Institution Speeds Up Incident Investigations 50% With Real-Time Monitoring

Challenges

  • Solved the following challenges with Splunk:
    • Troubleshooting/analyzing/fixing IT issues quickly
    • Answering ad hoc requests and questions by using data
    • Correlating disparate events across IT infrastructure
    • Performance and/or availability issues with infrastructure or applications

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • OS logs from hosts and applications
  • Deploys Splunk for:
    • Server management
    • Secure log collection

Results

  • Troubleshoots problems, performs ad-hoc searches and conducts incident investigations 50% faster with Splunk.
  • Identified security incidents 40% faster with Splunk real-time monitoring.
  • Reported that Splunk provided the following business and IT benefits:
    • Eliminated spending on different tools and saved maintenance costs
    • Improved infrastructure visibility to better utilize capacity

Testimonials

“We have saved a good amount of time by going straight to Splunk rather than searching through log files on multiple servers ourselves. This has helped us remedy problems faster and more efficiently.”

Source:
TechValidate Survey of a Educational Institution

Details Share   Cite     Embed Download

Case Study: Immediate Troubleshooting & Diagnostics Results with Splunk

Challenges

  • Solved the following challenges with Splunk:
    • Siloed and unconnected IT infrastructure and applications
    • Troubleshooting/analyzing/fixing IT issues quickly
    • Answering ad hoc requests and questions by using data
    • Poor end-to-end visibility across IT or application infrastructure
    • Providing views and dashboards from IT data to non-IT users
    • Analyzing trends and patterns across large amounts of historical data

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • ERP, CRM or similar system data
    • Content delivery network data
    • Storage system: NAS, SAN or similar data
    • OS logs from hosts and applications
    • System metrics
    • Hosted/outsourced environments (EC2, MSSPs)
    • Service bus or other SOA middleware
  • Deploys Splunk for:
    • Big Data Management
    • Operations management
    • Operational intelligence
    • Performance monitoring
    • Service management

Results

  • Improved uptime and response time by 30% with Splunk.
  • Reduced escalations by 10% with Splunk proactive monitoring.
  • Identified security incidents 20% faster with Splunk real-time monitoring.
  • Reported that Splunk provided the following business and IT benefits:
    • Supplied role-specific, dashboard views to give appropriate data access to users without compromising security
    • Provided immediate visibility into key business metrics and analytics
    • Improved infrastructure visibility to better utilize capacity
    • Delivered better measurement and reporting of service levels
    • Provided end-to-end visibility across the entire application stack
    • Enabled staff to focus on revenue generating activities in addition to triage/ troubleshooting

Testimonials

“After deploying Splunk, we noticed an immediate benefit in our ability to troubleshoot and diagnose issues across disparate systems and data sources. We are looking forward to driving this upstream to use the tool even more proactively in the future.”

Source:
TechValidate Survey of a Medium Enterprise Professional Services Company

Details Share   Cite     Embed Download

Improved Uptime and Streamlined Reporting for CRM SaaS Provider

Challenges

  • Solved the following challenges with Splunk:
    • Troubleshooting/analyzing/fixing IT issues quickly
    • Answering ad hoc requests and questions by using data
    • Multiple monitoring/reporting tools inefficient and inaccurate
    • Tracking transactions across the entire infrastructure
    • Monitoring or reporting on service levels
    • Correlating disparate events across IT infrastructure
    • Poor end-to-end visibility across IT or application infrastructure
    • Performance and/or availability issues with infrastructure or applications
    • Slow, inefficient access to sensitive data in production systems
    • Providing views and dashboards from IT data to non-IT users
    • Aligning IT processes with business objectives
    • Analyzing trends and patterns across large amounts of historical data

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • Storage system: NAS, SAN or similar data
    • System metrics
    • Web server access logs and analytics
    • Mass email logs
  • Deploys Splunk for:
    • Compliance data capture and reporting
    • Performance monitoring

Results

  • Troubleshoots problems, performs ad-hoc searches and conducts incident investigations 70+% faster with Splunk.
  • Improved uptime and response time by 70+% with Splunk.
  • Reduced escalations by 70+% with Splunk proactive monitoring.
  • Identified security incidents 70+% faster with Splunk real-time monitoring.
  • Reduced service outages by 30% by achieving real-time monitoring with Splunk.
  • Reported that Splunk provided the following business and IT benefits:
    • Increased customer satisfaction scores and retention rates
    • Eliminated spending on different tools and saved maintenance costs
    • Passed PCI or other compliance audit
    • Supplied role-specific, dashboard views to give appropriate data access to users without compromising security
    • Provided immediate visibility into key business metrics and analytics
    • Delivered better measurement and reporting of service levels

Testimonials

“Among other things, Splunk has greatly decreased the amount of time it takes to search, analyze, and report on Email events. Due to the simple Splunk interface, we have been able to provide Splunk to less technical individuals in the company so they can access our email logs. This self-service has reduced the workload on our systems team.”

Source:
TechValidate Survey of a Medium Enterprise Computer Software Company

Details Share   Cite     Embed Download

Large University Depends on Splunk for App Management, Development and Security

Challenges

  • Solved the following challenges with Splunk:
    • Siloed and unconnected IT infrastructure and applications
    • Troubleshooting/analyzing/fixing IT issues quickly
    • Multiple monitoring/reporting tools inefficient and inaccurate
    • Tracking transactions across the entire infrastructure
    • Correlating disparate events across IT infrastructure
    • Analyzing trends and patterns across large amounts of historical data

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • Storage system: NAS, SAN or similar data
    • Desktop/endpoint security data
    • Network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • Net applications and application servers
    • Server, desktop, database and application user activity logs
    • Web server access logs and analytics
    • Active Directory data
  • Deploys Splunk for:
    • Application management
    • Application development
    • Performance monitoring
    • Security
    • Web analytics

Results

  • Troubleshoots problems, performs ad-hoc searches and conducts incident investigations 70+% faster with Splunk.
  • Improved uptime and response time by 10% with Splunk.
  • Reduced escalations by 10% with Splunk proactive monitoring.
  • Identified security incidents 40% faster with Splunk real-time monitoring.
  • Reduced service outages by 30% by achieving real-time monitoring with Splunk.
  • Reported that Splunk provided the following business and IT benefits:
    • Reduced overall system downtime through proactive detection
    • Increased customer satisfaction scores and retention rates
    • Eliminated spending on different tools and saved maintenance costs
    • Supplied role-specific, dashboard views to give appropriate data access to users without compromising security
    • Delivered better measurement and reporting of service levels
    • Improved application performance

Testimonials

“Splunk has greatly improved the visibility into the health of our deliverables.”

Source:
TechValidate Survey of a Educational Institution

Details Share   Cite     Embed Download

Splunk Gives National Facility Better Visibility Than Any Other Product They've Tried

Challenges

  • Addressed the following challenges with Splunk:
    • Providing faster access to data
    • Analyzing trends and patterns across large amounts of historical data
    • Meeting ‘Big Data’ challenges
    • Tracking IT transactions across enterprise architecture
    • Correlating disparate events across multiple data sources

Use Case

  • Uses Splunk in the following ways:
    • Continuous monitoring
    • Cyber security
    • Security without a SIEM
    • Incident response and investigation
  • Cyber security team relies on Splunk to a high degree.

Results

  • Replaced the following solutions or tools with Splunk:
    • Manual processes
  • Would strongly recommend that Splunk be a component of every agency’s cyber security defense.

Testimonials

“Splunk has given us better visibility into our data than any other product we’ve tried. We are continually finding new uses for it.”

“The ability to do ad hoc reporting in response to an incident or investigation has greatly increased our cyber security team’s ability to find answers faster.”

Source:
TechValidate Survey of a National Security Lab

Details Share   Cite     Embed Download

Federal Agency Replaces Multiple IT Tools for Improved Efficiency

Challenges

  • Addressed the following challenges with Splunk:
    • Providing faster access to data
    • Analyzing trends and patterns across large amounts of historical data
    • Problems meeting compliance mandates
    • Breaking down siloes within the organization
    • Replacing multiple monitoring/reporting tools for improved efficiency
    • Tracking IT transactions across enterprise architecture
    • Monitoring or reporting on service levels
    • Correlating disparate events across multiple data sources
    • Monitoring performance and/or availability issues with infrastructure or applications
    • Providing dashboards and metrics for executive personnel

Use Case

  • Uses Splunk in the following ways:
    • Continuous monitoring
    • Compliance
    • Cyber security
    • Augmenting security with a SIEM
    • Security without a SIEM
    • Virtualization
    • Application availability
    • Incident response and investigation
  • Cyber security team relies on Splunk to a high degree.
  • Covers 50% of their FISMA requirements with Splunk.

Results

  • Replaced the following solutions or tools with Splunk:
    • SEM and SIM
    • Manual processes
    • Web analytics solution
  • Improved up-time and response time by 50% with Splunk.
  • Reduced escalations by 20% with proactive monitoring.
  • Would strongly recommend that Splunk be a component of every agency’s cyber security defense.
Source:
TechValidate Survey of a Federal Agency

Details Share   Cite     Embed Download

State Agency Recommends Splunk as Critical Component of Cyber Security

Challenges

  • Addressed the following challenges with Splunk:
    • Tracking IT transactions across enterprise architecture

Use Case

  • Uses Splunk in the following ways:
    • Cyber security
  • Cyber security team relies on Splunk to a high degree.
  • Covers 30% of their FISMA requirements with Splunk.

Results

  • Improved up-time and response time by 60% with Splunk.
  • Would recommend that Splunk be a component of every agency’s cyber security defense.
Source:
TechValidate Survey of a State & Local Government

Details Share   Cite     Embed Download

Federal Agency Uses Splunk to Meet FISMA Requirements

Challenges

  • Addressed the following challenges with Splunk:
    • Providing faster access to data
    • Problems meeting compliance mandates
    • Replacing multiple monitoring/reporting tools for improved efficiency
    • Monitoring or reporting on service levels
    • Correlating disparate events across multiple data sources
    • Alignment of IT processes with business or agency objectives

Use Case

  • Uses Splunk in the following ways:
    • Continuous monitoring
    • Compliance
    • Cyber security
    • Security without a SIEM
    • Incident response and investigation
  • Cyber security team relies on Splunk to a very high degree.
  • Covers > 70% of their FISMA requirements with Splunk.

Results

  • Replaced the following solutions or tools with Splunk:
    • Manual processes
  • Reduced escalations by > 70% with proactive monitoring.
  • Would very strongly recommend that Splunk be a component of every agency’s cyber security defense.

Testimonials

“Splunk has been useful in providing early alerts to attempted attacks on our system. It also has been useful with after-the-fact investigations to see where malicious activity has occurred across systems.

The early warnings are predominantly security related such as attempted web and ftp attacks, suspicious IPs detected, access to public resources, etc."

Source:
TechValidate Survey of a Federal Agency

Details Share   Cite     Embed Download

Major University Uses Splunk as a Critical Component of its Cyber Security

Challenges

  • Addressed the following challenges with Splunk:
    • Providing faster access to data
    • Analyzing trends and patterns across large amounts of historical data
    • Replacing multiple monitoring/reporting tools for improved efficiency
    • Tracking IT transactions across enterprise architecture
    • Correlating disparate events across multiple data sources
    • Alignment of IT processes with business or agency objectives

Use Case

  • Uses Splunk in the following ways:
    • Continuous monitoring
    • Compliance
    • Cyber security
    • Incident response and investigation
  • Cyber security team relies on Splunk to a high degree.

Results

  • Replaced the following solutions or tools with Splunk:
    • SEM (Security event management system)
    • SIM (Security information management system)
    • SEM and SIM
    • Systems management
    • Application management
    • Manual processes
    • Compliance solution
  • Improved up-time and response time by 40% with Splunk.
  • Reduced escalations by 30% with proactive monitoring.
  • Would strongly recommend that Splunk be a component of every agency’s cyber security defense.

Testimonials

“With Splunk we’ve greatly improved our ability to identify and track events.”

Source:
TechValidate Survey of a Educational Institution

Details Share   Cite     Embed Download

Splunk Delivers Continuous Monitoring and Compliance at US Governnment Agency

Challenges

  • Addressed the following challenges with Splunk:
    • Providing faster access to data
    • Problems meeting compliance mandates
    • Poor situational awareness
    • Replacing multiple monitoring/reporting tools for improved efficiency
    • Correlating disparate events across multiple data sources
    • Providing dashboards and metrics for executive personnel

Use Case

  • Uses Splunk in the following ways:
    • Continuous monitoring
    • Compliance
    • Cyber security
    • Security without a SIEM
    • Incident response and investigation
  • Cyber security team relies on Splunk to a very high degree.

Results

  • Replaced the following solutions or tools with Splunk:
    • Manual processes
  • Would very strongly recommend that Splunk be a component of every agency’s cyber security defense.

Testimonials

“Splunk greatly increased visibility into multiple data sets as well as reduced time to resolution when viewing the data. We also improved the performance of our firewall operations due to Splunk’s ability to quickly alert us to anomalous events.”

Source:
TechValidate Survey of a Federal Government Agency

Details Share   Cite     Embed Download

Large Local Government Uses Splunk to Help Meet FISMA Requirements

Challenges

  • Addressed the following challenges with Splunk:
    • Providing faster access to data
    • Analyzing trends and patterns across large amounts of historical data
    • Meeting ‘Big Data’ challenges
    • Breaking down siloes within the organization
    • Tracking IT transactions across enterprise architecture
    • Monitoring or reporting on service levels
    • Correlating disparate events across multiple data sources
    • Alignment of IT processes with business or agency objectives

Use Case

  • Uses Splunk in the following ways:
    • Security without a SIEM
    • Incident response and investigation
  • Cyber security team relies on Splunk to a High degree.
  • Covers 50% of their FISMA requirements with Splunk.

Results

  • Replaced the following solutions or tools with Splunk:
    • SEM and SIM
  • Improved up-time and response time by 10% with Splunk.
  • Reduced escalations by 20% with proactive monitoring.
  • Would strongly recommend that Splunk be a component of every agency’s cyber security defense.

Testimonials

“Splunk’s easy-to-use query language and ability to do quick searches lets us respond to security incidents and resolve them faster. We also replaced our SIEM with Splunk.”

Source:
TechValidate Survey of a State & Local Government

Details Share   Cite     Embed Download

Federal Organization Meets Big Data Challenges and Replaces SIEM Using Splunk

Challenges

  • Addressed the following challenges with Splunk:
    • Providing faster access to data
    • Analyzing trends and patterns across large amounts of historical data
    • Meeting ‘Big Data’ challenges
    • Replacing multiple monitoring/reporting tools for improved efficiency
    • Tracking IT transactions across enterprise architecture
    • Correlating disparate events across multiple data sources

Use Case

  • Uses Splunk in the following ways:
    • Continuous monitoring
    • Cyber security
    • Security without a SIEM
    • Incident response and investigation
  • Cyber security team relies on Splunk to a very high degree.

Results

  • Replaced the following solutions or tools with Splunk:
    • SEM and SIM
    • Manual processes
  • Improved up-time and response time by 50% with Splunk.
  • Reduced escalations by 50% with proactive monitoring.
  • Would very strongly recommend that Splunk be a component of every agency’s cyber security defense.
Source:
TechValidate Survey of a Federal Government

Details Share   Cite     Embed Download

State & Local Government Replaces Security Event Management System with Splunk

Challenges

  • Addressed the following challenges with Splunk:
    • Problems meeting compliance mandates
    • Poor situational awareness
    • Replacing multiple monitoring/reporting tools for improved efficiency Tracking IT transactions across enterprise architecture
    • Tracking IT transactions across enterprise architecture
    • Monitoring or reporting on service levels
    • Correlating disparate events across multiple data sources

Use Case

  • Uses Splunk in the following ways:
    • Continuous monitoring
    • Compliance
    • Cyber security
    • Incident response and investigation
  • Cyber security team relies on Splunk to a very high degree.
  • Covers 30% of their FISMA requirements with Splunk.

Results

  • Replaced the following solutions or tools with Splunk:
    • SEM (Security event management system)
    • Manual processes
  • Improved up-time and response time by 40% with Splunk.
  • Reduced escalations by 40% with proactive monitoring.
  • Would very strongly recommend that Splunk be a component of every agency’s cyber security defense.

Testimonials

“Splunk’s ability to do event correlation has greatly improved our security response—and we were also able to eliminate our SEM. We also greatly reduced the manual labor around incident investigation that our administrators were doing.”

Source:
TechValidate Survey of a State & Local Government

Details Share   Cite     Embed Download

Large Government Agency Relies on Splunk for Cyber Security

Challenges

  • Addressed the following challenges with Splunk:
    • Replacing multiple monitoring/reporting tools for improved efficiency
    • Tracking IT transactions across enterprise architecture
    • Correlating disparate events across multiple data sources
    • Providing dashboards and metrics for executive personnel

Use Case

  • Uses Splunk in the following ways:
    • Cyber security
  • Cyber security team relies on Splunk to a very high degree.
  • Covers 20% of their FISMA requirements with Splunk.

Results

  • Replaced the following solutions or tools with Splunk:
    • Manual processes
  • Improved up-time and response time by 60% with Splunk.
  • Reduced escalations by 20% with proactive monitoring.
  • Would very strongly recommend that Splunk be a component of every agency’s cyber security defense.
Source:
TechValidate Survey of a Federal Government Agency

Details Share   Cite     Embed Download

Public Sector Research Organization Relies on Splunk for Security and Continuous Monitoring

Challenges

  • Addressed the following challenges with Splunk:
    • Providing faster access to data
    • Analyzing trends and patterns across large amounts of historical data
    • Meeting ‘Big Data’ challenges
    • Problems meeting compliance mandates
    • Poor situational awareness
    • Replacing multiple monitoring/reporting tools for improved efficiency Tracking IT transactions across enterprise architecture
    • Correlating disparate events across multiple data sources

Use Case

  • Uses Splunk in the following ways:
    • Continuous monitoring
    • Cybersecurity
    • Security without a SIEM
    • Incident response and investigation
  • Cybersecurity team relies on Splunk to a very high degree.

Results

  • Replaced the following solutions or tools with Splunk:
    • Manual processes
  • Improved up-time and response time by > 70% with Splunk.
  • Would strongly recommend that Splunk be a component of every agency’s cybersecurity defense.

Testimonials

“Splunk has been critical in maintaining compliance and in responding to incidents. As our organization and requirements grow, Splunk has been able to keep up every step of the way.”

Source:
TechValidate Survey of a Federal Research Organization

Details Share   Cite     Embed Download

End-to-End Visibility at an International Auto Insurance Provider

Challenges

  • Solved the following challenges with Splunk:
    • Troubleshooting/analyzing/fixing IT issues quickly
    • Monitoring or reporting on service levels
    • Correlating disparate events across IT infrastructure
    • Poor end-to-end visibility across IT or application infrastructure
    • Performance and/or availability issues with infrastructure or applications
    • Slow, inefficient access to sensitive data in production systems
    • Providing views and dashboards from IT data to non-IT users
    • Analyzing trends and patterns across large amounts of historical data
    • Meeting compliance mandates

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • ERP, CRM or similar system data
    • Storage system: NAS, SAN or similar data
    • Telecommunications: call detail records (CDRs)
    • Desktop/endpoint security data
    • Network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • System metrics
    • Server, desktop, database and application user activity logs
    • Infrastructure data: Network switch, router and load balancer
    • IP backbone
  • Deploys Splunk for:
    • Big Data Management
    • Business analytics/intelligence
    • Capacity planning
    • Compliance data capture and reporting
    • Network management
    • Operations management
    • Operational intelligence
    • Performance monitoring
    • Server management
    • Secure log collection
    • Security
    • Web analytics

Results

  • Troubleshoots problems, performs ad-hoc searches and conducts incident investigations 50% faster with Splunk.
  • Improved uptime and response time by 50% with Splunk.
  • Reduced escalations by 50% with Splunk proactive monitoring.
  • Identified security incidents 50% faster with Splunk real-time monitoring.
  • Reduced service outages by 50% by achieving real-time monitoring with Splunk.
  • Reported that Splunk provided the following business and IT benefits:
    • Reduced overall system downtime through proactive detection
    • Passed PCI or other compliance audit
    • Improved partnership between development and operations

Testimonials

“Splunk has allowed our developers to gain access to production logs quickly without escalating up the chain of command.”

Source:
TechValidate Survey of a Medium Enterprise Insurance Company

Details Share   Cite     Embed Download

Increased Visibility and Business Intelligence at an International NGO

Challenges

  • Solved the following challenges with Splunk:
    • Troubleshooting/analyzing/fixing IT issues quickly
    • Answering ad hoc requests and questions by using data
    • Multiple monitoring/reporting tools inefficient and inaccurate
    • Tracking transactions across the entire infrastructure
    • Poor end-to-end visibility across IT or application infrastructure
    • Slow, inefficient access to sensitive data in production systems

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • Content delivery network data
    • Desktop/endpoint security data
    • Network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • Server, desktop, database and application user activity logs
  • Deploys Splunk for:
    • Log management

Results

  • Troubleshoots problems, performs ad-hoc searches and conducts incident investigations 20% faster with Splunk.
  • Improved uptime and response time by 20% with Splunk.
  • Reduced escalations by 50% with Splunk proactive monitoring.
  • Identified security incidents 30% faster with Splunk real-time monitoring.
  • Reduced service outages by 20% by achieving real-time monitoring with Splunk.
  • Reported that Splunk provided the following business and IT benefits:
    • Eliminated spending on different tools and saved maintenance costs
    • Provided immediate visibility into key business metrics and analytics

Testimonials

“Splunk makes it easy to trace and store logs.”

Source:
TechValidate Survey of a Medium Enterprise Consumer Services Company

Details Share   Cite     Embed Download

Faster Security Incident Resolution at a Financial Services Provider

Challenges

  • Solved the following challenges with Splunk:
    • Siloed and unconnected IT infrastructure and applications
    • Troubleshooting/analyzing/fixing IT issues quickly
    • Answering ad hoc requests and questions by using data
    • Multiple monitoring/reporting tools inefficient and inaccurate
    • Correlating disparate events across IT infrastructure

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • Financial industry trade data
    • Desktop/endpoint security data
    • Network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • Virtualization environment: Hyper-V, Xen, VMware
    • System metrics
    • Server, desktop, database and application user activity logs
  • Deploys Splunk for:
    • Application management
    • Business analytics/intelligence
    • Network management
    • Operations management
    • Secure log collection
    • Security

Results

  • Troubleshoots problems, performs ad-hoc searches and conducts incident investigations 50% faster with Splunk.
  • Improved uptime and response time by 50% with Splunk.
  • Reduced escalations by 30% with Splunk proactive monitoring.
  • Identified security incidents 70+% faster with Splunk real-time monitoring.
  • Reduced service outages by 20% by achieving real-time monitoring with Splunk.
  • Reported that Splunk provided the following business and IT benefits:
    • Avoided security incidents
    • Provided immediate visibility into key business metrics and analytics
    • Delivered better measurement and reporting of service levels

Testimonials

“Splunk has allowed proactive log management and reduced security incident response time.”

Source:
TechValidate Survey of a Medium Enterprise Financial Services Company

Details Share   Cite     Embed Download

Increased Customer Retention Rates at a High End Home Goods Retailer

Challenges

  • Solved the following challenges with Splunk:
    • Siloed and unconnected IT infrastructure and applications
    • Troubleshooting/analyzing/fixing IT issues quickly
    • Answering ad hoc requests and questions by using data
    • Providing views and dashboards from IT data to non-IT users

Use Case

  • Uses the following data sources to perform its analysis with Splunk:
    • ERP, CRM or similar system data
    • Network security, IDS, IPS, firewall proxy
    • OS logs from hosts and applications
    • System metrics
    • Server, desktop, database and application user activity logs
    • Infrastructure data: Network switch, router and load balancer
  • Deploys Splunk for:
    • Compliance data capture and reporting
    • Network management
    • Operations management
    • Server management
    • Security
    • Service management

Results

  • Troubleshoots problems, performs ad-hoc searches and conducts incident investigations 50% faster with Splunk.
  • Reduced escalations by 20% with Splunk proactive monitoring.
  • Identified security incidents 20% faster with Splunk real-time monitoring.
  • Reported that Splunk provided the following business and IT benefits:
    • Increased customer satisfaction scores and retention rates
    • Eliminated spending on different tools and saved maintenance costs
    • Passed PCI or other compliance audit
    • Improved infrastructure visibility to better utilize capacity
    • Provided end-to-end visibility across the entire application stack
    • Detected and reduced fraudulent activity/behavior
    • Enabled staff to focus on revenue generating activities in addition to triage/ troubleshooting

Testimonials

“Splunk has given us a quicker solution to help desk tickets and empowered the personnel to handle initial troubleshooting without involving network or system administrators. Splunk has also provided faster troubleshooting across systems by having all logs in one location.”

Source:
TechValidate Survey of a Medium Enterprise Retail Company

Details Share   Cite     Embed Download


More Research on Splunk   Explore all TechValidate Research


© Copyright 2014 TechValidate Software Inc. All marks used on this site are the property of their respective owners.   Privacy Policy   Terms of Use   Credits