3. 3
Splunk Your Machine Data
Index Untapped Data: Any Source, Type, Volume
Online
Services Web
Services
Servers
Security GPS
Location
Storage
Desktops
Networks
Messaging
Telecoms
Online
Shopping
Cart
Web
Clickstreams
Databases
Energy
Meters
RFID
On-
Premises
Private
Cloud
Public
Cloud
End-to-End Visibility
Application Delivery
Security, Compliance,
and Fraud
IT Operations
Business Analytics
Industrial Data and
the Internet of Things
CloudTrail
Config
Lambda
EC2
4. Comprehensive Security Visibility
Leveraging AWS CloudTrail
Correlating Data Across Hybrid Environment
Spanning AWS and On-Premises
Real-time AWS Cost Management
Reducing Spend on Select AWS Workloads
FINRA Uses Splunk Cloud for Transparency
and End-To-End Visibility in AWS
5. Same Challenges-Different Environments
Security
– Are we firewalled correctly?
– Do we use all necessary AWS security features?
Compliance
– Are we following all published standards?
Networking
– Placed servers on the correct network?
Finance
– Stayed within budget?
Capacity Planning
– Used resources optimally?
5
And all of that in a decentralised
Model…
6. Impact – Improved Visibility
Meeting IAM AWS Security Best Practices
– Lock away your AWS account (root) access keys
– Grant least privilege etc…
Focus on low hanging Fruit
– Shutting down services over weekend/evenings
– Identify AWS services with highest spending
– Projects over budgets
Results
– 13.5% reduction in billing in line items
– Better forecast and control
6
Informed Decision Making
7. In Summary: Splunk App for AWS
7
• Increase visibility into AWS resource utilisation & user activity
• Ensure adherence to security and compliance standards with a full audit trail
• Understand AWS environmental dependencies through topology views
• Monitor VPC traffic utilisation for additional security insights