How Hurricane Labs and Splunk Work Together
An industry leader in Splunk Managed Services, Hurricane Labs assists your team in maximizing the value of Splunk. We have the expertise and experience to enable security intelligence in Splunk. Our Splunk Security Intelligence capabilities allow us to tap into even the most complex Splunk environments and provide meaningful data to our clients.
Hurricane Labs is the only official Splunk partner in North America that can provide licensing, implementation, on-site training, and managed services around Splunk. These key skills allow Hurricane Labs to provide a focused and unique offering all built around Splunk.
Model #1: Managed Splunk Services
Hurricane Labs performs: 24 x 7 monitoring, remote management, report generation, search creation, log source integration, and dashboard design. You are assigned a Hurricane Labs’ project manager and lead engineer. Hurricane Labs does the care and feeding of Splunk along with assisting you with searches and reports to help maximize the value of Splunk.
Model #2: Security Intelligence
In addition to the services of basic managed Splunk (Model #1), Hurricane Labs will provide security intelligence to enhance your alerts, as well as recommendations for remediation. Hurricane Labs brings our Splunk Security Intelligence experience to your organization to further the security capabilities of core Splunk. Hurricane Labs can perform the Tier 1 and Tier 2 security analysis on alerts and provides clients with actionable intelligence.
In order to best accommodate our clients’ needs, Hurricane Labs delivers our Managed Services via two models. Each method seeks to meet your needs and requirements and ensures that we are partnered with your team in a way that fits your organization.
Method #1: On-Premise
You own the Splunk license and Splunk runs on your hardware at your location. The alerts from your Splunk environment are sent securely to the Hurricane Labs’ Security Operations Center where they are analyzed and responded to. You will then be contacted by a Hurricane Labs security engineer who will work with you to respond to the incident. Hurricane Labs operates both on-site and remotely with the on-premise delivery model.
Method #2: Cloud
Hurricane Labs’ Cloud service offers all the same great benefits as our On-Site option. However, this model runs in the Hurricane Labs Cloud using your license. By moving your Splunk Managed Services to the Cloud, you avoid the cost of hardware and maintenance, there by saving your IT staff time and allowing them to focus on the results from Splunk and not infrastructure itself.
Hurricane Labs’ trained Splunk professionals come to you and offer an intensive onsite training course to help get you and your team up and running. We get you the tools and techniques for searching your logs in your own environment to ensure your security personnel spends their time acting on current and relevant threats. Learn More!