Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Splunk for AWS (Bagels and Bytes)

346 views

Published on

Splunk presentation for AWS Bagels and Bytes security session in Amsterdam on March 25th, 2016

  • Be the first to comment

Splunk for AWS (Bagels and Bytes)

  1. 1. Copyright © 2016 Splunk Inc. Splunk your Cloud for a better Security Dominique Dessy, CISSP Senior Sales Engineer
  2. 2. 3
  3. 3. FINRA FINRA—the Financial Industry Regulatory Authority—is an independent, non- governmental regulator for all securities firms doing business with the public in the United States. FINRA protects investors by regulating brokers and brokerage firms and by monitoring trading on U.S. stock markets. FINRA watches over 6 billion shares traded on the stock market each day FINRA handles more ‘big data’ on a daily basis than the Library of Congress or Visa—to build a holistic picture of the trading market FINRA – Deter, Detect, Discipline 4
  4. 4. FINRA (before) 5 FINRA onPrem Data Center Location A FINRA onPrem Data Center Location B LOTS OF HARDWARE DR REQUIRED CONFIG CHANGES TRADIONAL SIEMs ONLY KNOW MESSAGES THAT THEY KNOW ABOUT SIEMs THINK ONLY SECURITY WILL NEED LOGS CANNED ALERTS; MORE MARKETING THAN REALITY LACK OF USER COMMUNITY KNOWLEDGE BASE
  5. 5. FINRA (Cloud) 6 On Prem A&B FINRA VPCs
  6. 6. 7 Turning Machine Data Into Business Value Index Untapped Data: Any Source, Type, Volume Online Services Web Services Servers Security GPS Location Storage Desktops Networks Packaged Applications Custom ApplicationsMessaging Telecoms Online Shopping Cart Web Clickstreams Databases Energy Meters Call Detail Records Smartphones and Devices RFID On- Premises Private Cloud Public Cloud Ask Any Question Application Delivery Security, Compliance and Fraud IT Operations Business Analytics Industrial Data and the Internet of Things Security, Compliance and Fraud
  7. 7. 8 Splunk App for AWS EC2 EMR Kinesis R53 VPC ELB S3 CloudFront CloudTrail CloudWatch Redshift SNS API Gateway Config RDS CF IAM Lambda Explore Analyze Dashboard Alert Act AWS Data Sources Comprehensive AWS Visibility
  8. 8. 9 Complete Hybrid Visibility Index Untapped Data: Any Source, Type, Volume Online Services Web Services Servers Security GPS Location Storage Desktops Networks Messaging Telecoms Online Shopping Cart Web Clickstreams Databases Energy Meters RFID On- Premises Private Cloud Public Cloud End-to-End Visibility Application Delivery Security, Compliance, and Fraud IT Operations Business Analytics Industrial Data and the Internet of Things CloudTrail Config Lambda EC2
  9. 9. Let’s see … 10
  10. 10. Comprehensive Security Visibility Leveraging AWS CloudTrail Correlating Data Across Hybrid Environment Spanning AWS and On-Premises Real-time AWS Cost Management Reducing Spend on Select AWS Workloads by Over 50% FINRA Uses Splunk Cloud for Transparency and End-To-End Visibility in AWS
  11. 11. Thank you

×