Splunk Enterprise Security (ES) is an app that gives Splunk Enterprise full SIEM capabilities. It adds functionality such as incident investigation, forensic and incident response, advanced threat detection, and more.  Splunk ES comes with a big list of features, but it also comes with a big price tag. Many organizations purchase Splunk ES before they’re ready […]

At SP6, we understand the critical importance of proactive cybersecurity measures, which is why we offer the Security Use Case Development Workshop—a tailored program designed to empower organizations with the right path toward their highest security maturity journey.   In today’s digital landscape, where cyber threats continue to evolve in sophistication and frequency, organizations are […]

Discover the pros and cons of Splunk’s different pricing models, and learn how to choose the one that’s right for you.

The holiday season is a goldmine for threat actors. Get protected fast against ransomware, phishing, and more with these six best practices.

Discover the differences between Ransomware Assessments by SP6 and penetration testing, and learn which is right for your organization.

Our no-fluff guide breaks down everything C-level executives need to know about ransomware threats, prevention, and mitigation.

Ransomware attacks on state, local, and education (SLED) organizations have increased in recent years, and they show no signs of slowing down.  Just a few weeks ago, the City of Oakland was hit by a ransomware attack that forced the city into a state of emergency as officials scrambled to respond. And they aren’t alone […]

Discover how to better manage your indexes, get more out of apps and add-ons, avoid low disk space, and more. Here’s what we wished we knew sooner about Splunk.

Summary indexing is a process that allows you to search large datasets more efficiently by creating smaller, customized summaries of those datasets to search instead.   Because these new summary indexes have significantly fewer events for your Splunk software to search through, searches run against them complete much faster.  In this article, we’ll breakdown everything you […]

Using Simple XML source code to build dashboards in Splunk doesn’t have to be complicated. Here are five of the best tips and tricks for improved dashboarding.  Jump to section: 1. Fixing the Base Search Gotcha Base searches reduce the number of large searches on a dashboard by running a single search and then having […]