Tenable and Splunk join hands to help improve data-driven incident response

Tenable®, the Exposure Management company, announced a strategic partnership with Splunk to enable security teams to better correlate events, take action on flaws and meet compliance standards. The combined power of Tenable’s revolutionary vulnerability management insights with Splunk’s log and flow consolidation capabilities simplifies risk prioritisation and accelerates threat response, ultimately reducing overall business risk.

What does the partnership mean for security teams?

Today security teams are inundated with thousands of alerts each day from multiple tools and lack complete visibility into their environment. Security teams are stretched thin, making it difficult to analyse and act on every event. Instead of getting ahead of cyber risk, firms find themselves in a repeated cycle of responding to potential breaches in progress.

As the leader in the exposure management category, Tenable provides Splunk customers with full visibility into all assets, and continually assesses those assets for exposures and vulnerabilities, assigning each weakness a Vulnerability Prioritisation Rating (VPR).

This easy-to-understand prioritisation score signifies relative risk to the business. Paired with the log and flow consolidation capabilities provided by Splunk, customers unlock meaningful correlation data and advanced analytics for incident response, enabling them to prioritise and focus security event investigations on the biggest risk, all in one dashboard. In addition to streamlined vulnerability response workflows, this technology partnership enables firms to:

  • Detect Accurately – Integrate exposure and asset data for improved visibility and accelerated incident response. Enrich existing event analysis with important vulnerability context.
  • Effectively Prioritise – Focus event investigations on the biggest cyber risks to the business and prioritise remediation based on the likelihood of an attack.
  • Accelerate Time to Value – Improve incident response time by utilising Tenable vulnerability data into all assets and their vulnerabilities, misconfigurations and unpatched components in a single security and observability platform.

What does the partnership mean for Splunk and Tenable?

Hitu Chawla, Group Vice President, Partner Strategy and Solutions at Splunk
Hitu Chawla, Group Vice President, Partner Strategy and Solutions at Splunk

Commenting on the partnership, Hitu Chawla, Group Vice President, Partner Strategy and Solutions at Splunk, said, “Together with Tenable, we provide our joint customers the ability to detect, investigate and take action on vulnerabilities to their technology assets. We’ve launched this partnership with Tenable because of its effective exposure management capabilities and commitment to helping customers understand and reduce business risk.”

“Uniting Splunk’s log and flow consolidation capabilities and Tenable’s visibility and vulnerability data, firms can respond quickly to actual risk, rather than perceived risk. With this data at their fingertips, security teams can address incidents faster, freeing up their time to focus on other meaningful initiatives,” said Ray Komar, VP of Technical Alliances at Tenable.

These capabilities are now available for Tenable and Splunk clients. More information on the Tenable and Splunk partnership, and other Tenable technology partnerships, is available here.