Skip to main content

Improving SOC Productivity with Splunk and NETSCOUT OCI

Improving SOC Productivity With Splunk and NETSCOUT’s Omnis Cyber Intelligence

Download PDF

To resolve these issues, the manufacturing company used Splunk Enterprise Security to consolidate their alerts and created multiple dashboards to facilitate actions between the tools. The new dashboard consolidated several different EDR tools into a single view. In addition, they realized that EDR tools were not enough to find specific evidence of infections, and deployed NETSCOUT’s Omnis Cyber Intelligence (OCI) to search for packet-level evidence.