Cisco’s SnapAttack Deal Expands Splunk’s Capabilities

Summary: Cisco’s acquisition of SnapAttack aims to enhance Splunk’s security information and event management (SIEM) platform by incorporating advanced threat detection capabilities leveraging artificial intelligence. SnapAttack’s technology provides real-time visualizations and support for the MITRE ATT&CK framework, improving proactive threat hunting and detection. This move is part of Cisco’s broader initiative to automate security operations and improve threat management within its Security Operations Center of the Future.

Affected: Cisco and Splunk

Keypoints :

• Cisco has integrated SnapAttack’s threat detection capabilities to enhance the Splunk SIEM platform.
• SnapAttack’s technology helps organizations identify and address gaps in their detection capabilities using the MITRE ATT&CK framework.
• The acquisition supports the automation of security operations and enhances overall security outcomes for enterprises.