In 2010 HP bought ArcSight. That was the beginning of Splunk's dominance in Enterprise SOC's as the default security data lake, displacing ArcSight. Time will tell whether Cisco's acquisition of Spunk will be a similar inflection point for the adoption of modern cloud-native data lakes like Snowflake in Enterprise SOC's. Mackenzie Kyle and Jade Catalano will show how innovative SOC's are already running Splunk and Snowflake side-by-side today.
Join us next week to see how Anvilogic can be the bridge from your legacy SIEM to a modern security data lake like Snowflake, saving two-thirds on your current Splunk costs. 💰 Register here: https://lnkd.in/dxpdBiwm
All the value is at the information layer - not at the storage or log ingestion/normalization layer. Clearly, Splunk and many other players forgot that.
Performing unified threat hunting and #security #analytics across multiple repositories is a reality for most organizations even if they are actively migrating or transitioning to a future single #cooud or #saas #platform #flexibility #realitycheck
Deb Banerjee you and Anvilogic did admirably well to abstract above the SIEM and enable a Detection Engineering first SOC enabler. In the arms race for more data, more AI/ML and deeper insights the cost of traditional SIEMs with increasing data becomes limiting. Snowflake and data lakes are looking increasingly more attractive and indeed CISCO's Splunk acquisition is a inflection point as people absorb the changes.