Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

splunk

Why Veterans Are Cybersecurity's Secret Weapon

Oct 22, 2025 By Mick Baccio In Splunk
Veterans in cybersecurity are just built different. They show up like a well-timed patch, quietly, decisively, and with an instinct for risk you can't fake. When you've owned mission-critical systems where the blast radius of a mistake is measured in lives, not log lines, you develop a rare sixth sense for risk that you simply can't teach in a bootcamp.
Read Post
splunk

Digital Resilience for State and Local Governments (Part Two)

Oct 20, 2025 By Frank Myers In Splunk
In the first part of our series, we examined the challenges facing state and local governments as they work to secure and maintain the availability of increasingly complex digital systems. Today, we turn our focus to how collaboration—powered by shared data platforms like Splunk—can enhance incident response and overall digital resilience.
Read Post
splunk

Splunk Ranked Number 1 in the 2025 Gartner Critical Capabilities for Security Information and Event Management Use Cases

Oct 16, 2025 By Olivia Henderson In Splunk
In addition to Splunk’s recognition as an 11-time Leader in the 2025 Gartner Magic Quadrant for Security Information and Event Management (SIEM), we are honored to announce that Splunk has been ranked as the SIEM solution in all three Use Cases for the second consecutive time in the 2025 Gartner Critical Capabilities for Security Information and Event Management report.
Read Post
splunk

Static Code Analysis: The Complete Guide to Getting Started with SCA

Oct 14, 2025 By Shanika Wickramasinghe In Splunk
Static code analysis wasn’t always built into the development process. That means most bugs were detected during testing, after the code was already merged and deployed. By that point, fixing issues was time-consuming, expensive, and risky. Small mistakes slipped into production. Security gaps widened and quality suffered. Static analysis shifts all of that left by bringing security and quality checks into the earliest stages of development.
Read Post
splunk

Build the SOC of the Future with Splunk and Cisco

Oct 10, 2025 By Drew Gibson In Splunk
I’m not one to blog, but speaking with clients, peers, and colleagues, I often hear statements like “SIEM is dead” or “this is the SOC of the future.” So what do they really mean? Honestly, I’m not entirely sure either — there are so many conflicting viewpoints and ways of addressing this.
Read Post

The Lost Payload: MSIX Resurrection

Oct 9, 2025 By Splunk In Splunk
MSIXBuilder transforms what was traditionally a complex, multi-tool process into a single automated workflow that mirrors actual attacker techniques. By automatically handling certificate lifecycle management, dependency resolution, and package signing, the tool removes the technical barriers that previously prevented security teams from creating realistic test scenarios. This means defenders can quickly generate both signed and unsigned MSIX packages to validate their AppXDeployment event log coverage, confirm detection rules, and build detection coverage that actually works against real-world threats.
View Video
splunk

Incident Command Systems: How To Establish an ICS

Oct 8, 2025 By Joseph Nduhiu In Splunk
Standardizing the management and coordination of incident response and resolution activities across different independent agencies is challenging. As part of its mission to help people before, during, and after disasters, the Federal Emergency Management Agency (FEMA) created the Incident Command System (ICS) as one of the components of the National Incident Management System (NIMS).
Read Post
splunk

Splunk Enterprise Security: Built to Empower Every SOC Analyst

Sep 9, 2025 By Mike Horn In Splunk
Security analysts work on the front lines, responsible for protecting organizations every hour of the day from all threats. Our mission has always been to empower the SOC with end-to-end visibility to focus on what matters most and act with clarity, context and speed to resolve any attack.
Read Post
splunk

Strengthen SOC Defenses with Native UEBA in Splunk Enterprise Security

Sep 9, 2025 By Michael Marti In Splunk
At.conf25, we announced how Splunk Enterprise Security (ES) has transformed to today’s AI-powered SecOps platform—unifying industry-leading technologies across SIEM, SOAR, User and Entity Behavior Analytics (UEBA), threat intelligence, and detection engineering with purpose-built AI across the entire Threat Detection, Investigation, and Response (TDIR) workflow—empowering Security Operations Centers (SOCs) to end analyst fatigue, deliver faster security outcomes, reduce risk, and build r
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.