Guardium Splunk Integration

This application leverages Guardium’s ability to integrate with 3rd parties and augments the platform by pushing audit and log data from Guardium to Splunk in a single pain of glass. Guardium's collected data (Syslogs, Data Exports) is exported to Splunk by sending archived SCV files via SCP protocol. Guardium’s robust, open architecture and log collection ability allow for quick, easy, on-demand ingestion of Guardium’s Data Exports by Splunk with just a few clicks. Splunk’s fast and intuitive ‘Google-like’ search allows SOC analysts to perform audits and develop an understanding of the organization’s security posture by managing Guardium data-security information and events for use cases such as advanced threats, insider threats, securing the cloud, vulnerability management and critical data protection.

Built by Calvin Bench

Last Updated

July 6, 2023

Compatibility

Not Available

Rating

0

(0)

Log in to rate this app

Support

Developer Supported app

Learn more

This application leverages Guardium’s ability to integrate with 3rd parties and augments the platform by pushing audit and log data from Guardium to Splunk in a single pain of glass. Guardium's collected data (Syslogs, Data Exports) is exported to Splunk by sending archived SCV files via SCP protocol. Guardium’s robust, open architecture and log collection ability allow for quick, easy, on-demand ingestion of Guardium’s Data Exports by Splunk with just a few clicks. Splunk’s fast and intuitive ‘Google-like’ search allows SOC analysts to perform audits and develop an understanding of the organization’s security posture by managing Guardium data-security information and events for use cases such as advanced threats, insider threats, securing the cloud, vulnerability management and critical data protection.