DTEX InTERCEPT
for Splunk ES
Accelerate Security Operations with Contextual Human Intelligence
& Endpoint Telemetry
Next-Gen Human Activity Visibility, Detection and Forensics
Applications, data and machines don’t move, change or update themselves; they follow the instructions of their human operators.
Splunk and DTEX Systems have partnered to offer a first-of-its-kind Workforce Cyber Intelligence & Security solution that delivers the contextual human activity intelligence and endpoint telemetry ignored by NGAV, UEBA and DLP tools.
Download the DTEX for Splunk ES solution brief to learn more.
A Single, Noise-Free Human Intelligence Signal
DTEX InTERCEPTTM brings a previously unavailable data source to existing cyber security architectures that multiplies the value of NGAV while allowing for the consolidation of UEBA, Endpoint DLP and Digital Forensics tools with a lightweight, cloud-native platform that scales to hundreds of thousands of endpoints and servers in hours with zero impact on user productivity and endpoint performance.
Splunk takes DTEX InTERCEPT’s ‘Indicators of Intent’ and uses them to provide customers with a better, more contextually rich understanding of how user activity is influencing what’s happening in their environment and if those behaviors are creating risks to data, users and operational processes.
Watch this 20-minute demo to see the integration in action.
The Power of a Zero Trust SOC Architecture & Insider Risk Intelligence
Together, Splunk and DTEX are accelerating security response times and root cause analysis, driving faster event resolution with advanced analytics and reporting, and decreasing manual security and IT operations with DMAP+ telemetry that provides the full context regarding the data, machines, applications and people involved in an event via a single, noise-free endpoint data signal.
With Splunk ES and DTEX InTERCEPT, customers realize:
-
Advanced integration with DTEX InTERCEPT DMAP+ data source, including transformation into Splunk CIM format (no contextual losses) to provide actionable, human-behavioral intent data within Splunk ES
-
Real-time, detailed analytics and reporting for DTEX InTERCEPT to accelerate response times and root cause analysis by upwards of 30%
-
Faster, more automated ‘notable event’ investigation and remediation that can reduce manual operations by 80%
Watch James Young of Splunk and Rajan Koo of DTEX explain Zero Trust and Insider Risk Intelligence.
The latest on Workforce Cyber Intelligence
DTEX InTERCEPT Splunk ES App
The Splunk App for the DTEX Workforce Cyber Intelligence Platform includes pre-packaged dashboards and visualizations that enables use-cases such as Insider Threat Management, Remote Workforce Security, Data Loss Prevention and Incident Response & Forensics.
Learn More
DTEX InTERCEPT Splunk ES Add-on
The DTEX Add-on for Splunk enables a Splunk Administrator to accept events and alerts from the DTEX platform via a Splunk forwarder.
Learn More
Splunk Solution Brief
Splunk and DTEX Systems have partnered to offer a first-of-its-kind Workforce Cyber Intelligence & Security solution that delivers the contextual human activity intelligence and endpoint telemetry ignored by NGAV, UEBA and DLP tools.
Read More
Zero Trust Threat Detection with Enterprise Security
Understanding the what, why, where and how to build effective detections.
Watch Now
Optimizing the SOC with Zero Trust & Insider Threat Intelligence
Join James Young, Security Strategist with Splunk, and Rajan Koo, DTEX Chief Customer Success Officer, as they explore Zero-Trust, the Next-Gen SOC, and Internal Threat Intelligence.
Watch Now