SAIC standardizes Splunk in its security operations center

SAIC has standardized Splunk Enterprise and the Splunk App for Enterprise Security as its internal security intelligence platform.

SAIC uses Splunk in its security operations center, which leverages all security-relevant data in the enterprise to identify attacks and also recognize the patterns of a breach, said Splunk senior vice president of security markets Haiyan Song in a release.

SAIC leverages Splunk as its security operations centers’ IT backbone, allowing the company to monitor for advanced persistent threats, internal threats and malware, SAIC said in a release.

By using Splunk, SAIC has been able to track and address incidents, build predictive dashboards that analyze the scope of an attack and determine what action needs to be taken.

Earlier this month, Splunk announced a deal it made with Lockheed Martin to lend a hand with its F-35 Lightning II program by watching over some of the fighter’s most critical systems.