Tech Intelligence Bulletin (HG Insights) – Ivanti has announced the Ivanti Neurons Platform now integrates with the Splunk Security Operations Suite.
Together, the solution enables organizations to realize an autonomous edge, which offers hyper-automated self-healing, self-securing and self-service capabilities. The solution is enabled by Ivanti’s integrations with Splunk Enterprise Security (SIEM) and Splunk Phantom (SOAR), two core components of the Splunk suite.
Ivanti Neurons integrates with the Splunk Security Operations Suite to allow for automated workflow from the endpoint into Splunk for analytics, correlation and response, culminating in automatic ticket creation in Ivanti Service Manager. The end-to-end workflow also automates the discovery, security and servicing of endpoints by leveraging data analytics and correlations from Splunk Enterprise Security with Ivanti Unified Endpoint Manager. The Ivanti Service Manager App for Splunk provides dashboard visualizations to discover insight into incidents, problems, tasks, change requests and configurable items.
“Enabling truly self-healing autonomous edge”
“With the explosive growth of endpoints, edge devices and remote workers, IT operations and security teams need to apply advanced automation to improve workflow, auto-remediate security issues and enhance the remote user experience,” said Nayaki Nayyar, executive vice president and chief product officer, Ivanti. “By integrating the hyper-automated Ivanti Neurons platform with Splunk Security Operations Suite, we are taking a big step towards enabling truly self-healing autonomous edge so that enterprises can increase speed and accuracy of services delivered to end users.”
The Ivanti Neurons integration with the Splunk Security Operations Suite automates the discovery, management and security of broadly heterogeneous endpoint environments. Triggered alerts for endpoint events are analyzed, correlated with other security data and visualized in Splunk Enterprise Security. Prioritized endpoint events are automatically passed on to Splunk Phantom for enhancement and the automated generation of enriched remediation tickets in Ivanti Service Manager. This enables teams to fully automate the discovery, monitoring and servicing of a broad array of traditional and modern endpoints.