2T Security has been helping clients deploy, configure, and manage large-scale Splunk instances for a long time; it’s probably one of our best-kept secrets.
We have forged strong working relationships with Splunk’s account management and technical teams, enabling our clients to get the best out of their products.
This year, we formalised this relationship by joining their Partnerverse programme as a managed service provider and placing Splunk at the centre of our CISOC service.
By doing this, we know we can develop the analytics and workflows that organisations providing Critical National Infrastructure need, enabling them to respond to current and emerging threats and deliver it in a technically robust manner that is adaptable to future needs.
But we are only just getting started; we recognise it is often hard to demonstrate the value a SOC brings to a business, which is why we have developed our Splunk RiskTree application. This will link the risks defined by business owners directly with activity seen in the SOC and inform the SOC where their efforts should be prioritised. This will be available in Splunkbase soon.
