With TruSTAR, Splunk further expands its existing security capabilities, giving customers the ability to access all their data to cut through complexity, drive highly effective detection and respond to threats faster and in an autonomous fashion.
TruSTAR’s Intelligence Platform enables customers to operationalize all sources of security intelligence across their ecosystem of teams, tools and partners. With TruSTAR’s capabilities added to the Splunk Data-to-Everything Platform, customers will be able to autonomously and seamlessly enrich their detection and response workflows with normalized intelligence from third party threat intelligence sources as well as from their internal, historical intelligence sources.
Ultimately, this will increase the effectiveness of their detections, accelerate automation and reduce the time it takes for customers to detect and remediate issues before they have an impact on the business, the company said.
TruSTAR customers will also be able to take advantage of community and freemium feeds from several of Splunk’s commercial threat intelligence integration partners including Intel471, Recorded Future and Mandiant.