The IT team was able to easily interrogate security logs, even before dedicated security staff were at work, and make sure its network was quickly secured.
#SPLUNK VETERAN TRAINING SOFTWARE#
Splunk on AWS supported a security use case in helping the university address issues caused by Log4j, the widespread and critical vulnerability hidden in a component used by thousands of software systems. It is now being used by 38 users across operations and IT. Splunk Enterprise on AWS, which lets you search, monitor, and analyze machine data from any source to gain valuable intelligence and insights, quickly proved its worth as a security logging tool. “The PoV-and Splunk’s flexibility-really helped cement that we’d made the right choice and let us prove the business case, too,” says Richard Fuller. This was run with existing university data and confirmed the department’s decision was correct.Īn additional bonus was that the data and modelling could be carried over from the pilot when the contract was signed, effectively giving them a head start on getting systems up and running.
#SPLUNK VETERAN TRAINING TRIAL#
This was a 30-day trial of the software running on a single AWS Elastic Compute Cloud EC2 Spot Instance. The first step was establishing a Proof of Value (PoV) pilot with a dedicated AWS Partner Splunk engineer and with the AWS environment funded by AWS. “We’ve seen other universities hosting Splunk Enterprise on premises and it takes time for the team to maintain it-we didn’t want to spend time maintaining it we just wanted to focus on adding business value and improving our cyber security.” He said the university’s existing relationship with AWS and knowledge of the issues other universities had with hosting on premises made using AWS the obvious choice.
We’ve worked with Splunk solutions before and thought it was the right tool for us.” Like multi-factor authentication, it’s just a necessary tool now,” says Richard Fuller, assistant director of IT at the University of York, “We were doing basic logging with Elasticsearch but needed something more fully featured to meet our needs around security information and event management. “We knew we needed to move to a security incident and event management solution. The University of York had a complex network and 18,000 students to protect-and needed to strengthen its security capability. With personal data of students and staff, and valuable research data to protect, they need the right tools to defend their IT infrastructure. Universities remain a top target for cybercriminals.
0 kommentar(er)
