Improving SOC Productivity with Splunk and NETSCOUT OCI
Improving SOC Productivity With Splunk and NETSCOUT’s Omnis Cyber Intelligence
To resolve these issues, the manufacturing company used Splunk Enterprise Security to consolidate their alerts and created multiple dashboards to facilitate actions between the tools. The new dashboard consolidated several different EDR tools into a single view. In addition, they realized that EDR tools were not enough to find specific evidence of infections, and deployed NETSCOUT’s Omnis Cyber Intelligence (OCI) to search for packet-level evidence.