For two weeks a year, UCAS, the UK’s Universities and Colleges Admissions Service, is seen as a critical national service, during which 700,000 students rely on the service to find and secure university placements. If UCAS fails, students won’t get their places confirmed on time and universities won’t fill the spaces they need to. Personal data flows from the point of student application, through UCAS, to the universities. Protecting this data is paramount.
Join this webinar to learn how the UCAS uses Splunk Enterprise Security running on Splunk Cloud to gain real-time end-to-end visibility and reporting across various technology stacks, both on premise and across their AWS environment, and why an analytics-driven approach can enable you to identify anomalies that could indicate potential compromise.
Find out how Splunk helps UCAS:
· Gain centralised visibility into their Security Operations Center (SOC)
· Use incident investigation to prove-negative for breach notification obligation under the Data Protection Act 1988 (soon to be GDPR)
· Proactively detect security risks beyond malware
---need to understand holistic; need to coordinate and work well with all elements; coordinate all parts of the body as the example
--customer wants security operations to be smart, intelligence, nimble and to detect and remediate fast
We are the nerve center for your SOC/command center
A nerve center approach saves time and makes the overall solution more effective; this is why channel partners and SI s want to sell the nerve center
Most commonly seen technologies security technologies are integrated so range of human and system task can be automated – this provides operational intelligence and maturity; we are the GLUE
Our partnerships and levels of integration are constantly growing-–which means the data coming in is increasing
This is an example of some of the partners in our ecosystem across key elements of the security stack
Our security solution grows stronger as the ecosystem we build around us grows and flourishes, so we are focused on bringing value to customers and partners through deeper integrations.
To do this, and to bring to life the role of the security nerve center, we’ve built out an initiative called Adaptive Response.
Adaptive Response helps allows customers and partners to build bi-directional integration across security vendors for greater context to help analysts speed investigations, and make informed decisions on how to remediate, and automate and orchestrate remediation steps, in some cases.
You’ll see here several of the partners in our ecosystem across key elements of the security stack who are participating in the adaptive response initiative.
Not only are we expanding across security technologies, but we are also focused on diving deeper with key integrations (PAN, Symantec, Proofpoint, Forescout – as we know these are most valuable to our customers
When we launched Adaptive Response, we were blown away by engaging 20+ partners in just the first few months
Now there are nearly 30 partners representing 60 actions.
A perfect storm
Can you imagine trying to filter right from wrong using 100s of disparate log and system sources with the worlds press on site and your CEO being interviewed live on the News