Implementing use cases in Splunk Enterprise
These use cases, curated by our best practices team, help you get started using Splunk Enterprise.
Security Use Cases
Cybersecurity use cases teach you to work with key data to streamline your security posture, mitigate business risk, and drive the modernization and optimization of your cyber defenses.
- Explore use cases for security with the Splunk platform. Here, you’ll find use cases under behavior analysis, compliance, incident management, security monitoring, and threat hunting.
- Find content with the MITRE ATT&CK-driven content recommendation dashboard.
If you have Splunk premium products for security, check out the Use Case Explorer for Security.
Discover additional methods for deploying, administering and extracting more value from your Security data.
- Splunk Security Essentials: A free Splunk-built app that makes security easier, with four key pillars: to help you find the best content, learn how it works, deploy it successfully, and measure your success.
- Splunk Enterprise Security: A premium security solution that is the nerve center of the security ecosystem, helping teams gain organization-wide visibility and security intelligence for continuous monitoring, incident response, and SOC operations.
Observability (ITOps and Engineering) Use Cases
IT operations use cases teach you to work with key data concerning uptime, performance, and response times of mission-critical applications and the underlying infrastructure they run on. Engineering use cases teach you to work with key data for better management of complex, cloud-native environments, case management, and streamlined processes.
- Explore use cases for IT modernization with the Splunk platform. Here, you’ll find use cases under application monitoring, infrastructure monitoring, and investigation and troubleshooting.
- Follow the IT Ops use case to troubleshoot with log analytics in the Splunk platform.
- Use event analytics and business service insights use cases to understand service health with Splunk ITSI.
- Jumpstart your IT use cases with the IT Essentials Apps.
If you are a Splunk Observability Cloud customer, check out the Use Case Explorer for Observability for great use cases you can implement.
Discover additional methods for deploying, administering and extracting more value from your IT data.
- IT Essentials Learn: A free Splunk-built app with pre-configured searches and step-by-step guidance to make it easy to adopt and learn how to use Splunk for common IT monitoring and troubleshooting use cases.
- IT Essentials Work: A free Splunk-built app with out-of-the-box dashboards so you can start analyzing and working with your IT infrastructure data quickly. Better understand entity health and performance to speed up troubleshooting and streamline investigative workflows.
Explore other observability products and resources:
- New to observability? Check out Splunk's beginners guide to observability to get started.
- Learn more about how Splunk Observability Cloud can help you deliver better customer experiences. Eliminate data silos, drive down MTTR, and ensure great customer experiences with all of your metrics, traces, and logs automatically correlated in one place.
- Consider moving to Splunk Cloud Platform to unlock the full benefit of Splunk’s fully managed cloud-based portfolio including Splunk Observability Cloud.
Optional
Explore the top Splunkbase apps for extending the power of Splunk: