Open source is a clear value add, but there is a gap in creating and enforcing its governing security standards.
To fix this, Splunk Inc. and Amazon Web Services Inc. worked with many other vendors to come up with the Open Cybersecurity Schema Framework. It is a set of common rules governing the handling of cybersecurity events.
“The real challenges that OCSF supports it is effective to solve Detect and Respond Patrick Coughlin (pictured), Splunk’s VP of Strategy and Specialization, said: “circleshould be normalized data for this entire landscape of tools, infrastructure and services. Visibility requires integration These tools must work together. ”
Coughlin recently spoke with theCUBE Industry Analyst John Furrier. AWS re:Invent meeting, Exclusively on theCUBE, SiliconANGLE Media’s live streaming studio. They discussed collective steps being taken to standardize approaches to cybersecurity within open source and cloud native environments. (*disclosed below)
Resolve integration issues
While we can’t blame companies for using multiple tools simultaneously for different operations, this practice is a major obstacle to cybersecurity standardization. According to Coughlin, OCSF is essentially an initiative to remove the burden of system integration from end users and customers.
“More than 50 different organizations, Cloud Service Providers and Solution Providers In the field of cybersecurity, we got together and said ‘Decide on a single unified schema About how event data is represented in this industry. And I’m so proud to be here today Even if I launch And I can’t wait to see where we go next,” he said.
Enterprises often adopt a completely siled approach across developers, IT, and security operations, but data in one is closely related to data in the other. According to Coughlin, Splunk’s approach sees data and comprehensive data visibility as essential to security and cyber resilience issues.
“One of the things we often do is Helps connect the dots for our customers Across silos that may be inside so they can start seeing the big picture What resilience means for businesses And how they lead to faster detection results And more automation coverage,” he explained.
The full video interview is part of SiliconANGLE and theCUBE coverage. AWS re:Invent:
(* Disclosure: Splunk Inc. was the sponsor of this segment for theCUBE. Neither Splunk nor any other sponsor has the authority to edit theCUBE or SiliconANGLE content.)
