Converging Data From Both IT and OT Networks
Dragos and Splunk have teamed to provide customers with a converged view of data collected from both IT and OT networks. Security teams at industrial organizations can view ICS-focused datasets alongside the enterprise IT datasets collected in Splunk, providing analysts with improved overarching situational awareness and decision-making support.
This partnership expands the ICS cybersecurity ecosystem to ensure critical infrastructure and industrial organizations are better prepared with enhanced visibility that improves threat detection inclusive of OT environments, regardless of where an adversary may attack. It enables more effective SOC functions, more effective threat hunts, and the ability to resolve incidents.
Together, Dragos and Splunk are providing ICS / OT focused cyber defenders with better tools, visibility, expertise, and outcomes.
With this partnership, you benefit from:
- Dragos Threat Intelligence data is easily integrated into Splunk to enable actionable detection.
- Dragos Platform integrations into Splunk provide easier OT threat detection and response for security operations.
- Provides a unified view of threats and events across the converged enterprise IT and industrial OT (operational technology) environment.
Frequently asked questions about the Dragos and Splunk partnership
Dragos ICS Detection App for Splunk
This app, now available from Splunkbase, integrates the Dragos Platform technology for Industrial Control Systems (ICS) security with Splunk. The Dragos Platform provides passive ICS network monitoring which produces improved asset identification & mapping, proactive anomaly & threat behavior detection, and threat response & recovery capabilities.
Learn how to better protect your ICS environment with Dragos and Splunk.