Data Resilience, Insights, Action! Recapping Splunk .conf 2023 – Source: securityboulevard.com

.conf23 has wrapped up, and what an incredible journey it’s been! For the first time, Hurricane Labs proudly sponsored the event, interacting with customers, partners, and devoted blog enthusiasts. Our main focus? Diving deep into the digital resilience theme, Splunk’s continuous dedication to broadening its horizons beyond mere security to holistic business and IT perspectives. 

A special highlight? Seeing our clients and our very own Tom Kopchak illuminating Splunk administrators of all levels with real-time implementation advice, making it a truly interactive session. Look out for a deep dive on his session including searches, dashboards, configuration settings, and expert advice, coming to our learning platform soon. 

Here’s what you need to know:

1. Splunk & Microsoft Collaboration Splunk’s exciting announcement: a strategic partnership with Microsoft. Splunk will now be native to Azure and readily accessible in the Azure Marketplace. For Azure aficionados, this means seamlessly integrating Splunk into your cloud strategy.
2. The Emergence of Splunk Edge Hub Introducing the Splunk Edge Hub, an IOT-enabled data collector. It captures physical environment metrics – from temperature to vibrations. Ideal for IT and OT realms, it’s a game-changer for areas where collating both physical and virtual data posed challenges. It’s an exhilarating era for data collection!
3. Meet the Splunk Edge Processor Incorporated within the Splunk Cloud Platform, the Splunk Edge Processor gives users the power to filter, redirect, and mask data. And the best part? It’s free for Splunk Cloud customers.
4. Splunk Attack Analyzer – The Future of Threat Analysis Previously known as TwinWave, the Attack Analyzer is now the go-to for automated threat analysis. From identifying malicious content to detecting evasion tactics, paired with Splunk SOAR, it could redefine your threat analysis approach.
5. Splunk’s AI Ambitions Saving the best for last, Splunk’s AI revelations were monumental. Their ML/AI approach emphasizes:
   1. Domain Specificity: Concentration on security and observability sectors.
   2. Human-in-the-loop: Accelerating detection while ensuring human oversight.
   3. Openness: Users can choose between Splunk’s AI, their solutions, or third-party tools. 
   4. An exciting standout? The debut of Splunk’s AI Assistant. This generative AI crafts Splunk Processing Language (SPL) to comprehend natural language queries, democratizing Splunk insights for users of all experience levels.

.conf23 was a transformative experience. With eyes set on the horizon, we’re eagerly awaiting .conf24. Mark your calendars and join us in Vegas next June!

It’s important to note that the views expressed herein are our own and do not necessarily reflect those of Splunk or its partners. While this article explores technical aspects, it does not constitute financial advice.

See the full keynotes here: https://conf.splunk.com/speakers.html

Link to more stats & images from the event: https://conf.splunk.com/