Many enterprises use Splunk as the primary repository for native database logging and database activity monitoring (DAM) tools.
To increase the value of raw logs, many organizations implement Imperva Data Security Fabric (DSF) as a database log pre-processor to Splunk. The Imperva solution filters, compresses, stores, and indexes the raw event data and makes it available in Splunk via virtual indices. Security analysts have bidirectional access for interactive data exploration. Threat alerts include rich technical context and detection timelines.
Analytics within Imperva Data Security Fabric bridge user identity, data sensitivity, and attack detection. Learn how this approach enables organizations to increase the security value from their Splunk deployment and reduces Splunk ingestion and development costs by as much as 95%.