Sold by: Keos
Keos' Splunk SOAR Implementation is a comprehensive, expert-led service that installs, configures, and operationalizes Splunk's Security Orchestration, Automation, and Response platform with a standard set of remediation playbooks. Keos' certified Splunk SMEs handle architecture, app integration, playbook creation, tuning, and RBAC — delivering automated security response in a structured 184-hour engagement.
Overview
Architecture and Installation: Keos consultants review your networking and server infrastructure, install the SOAR application, configure the automation broker, and establish all required integrations.
App Configuration and Integration: SOAR is configured to communicate with your Splunk environment (ES or Core), with all necessary apps integrated for seamless data flow.
Playbook Development: Keos creates a standard set of SOAR playbooks — including phishing response, enrichment, and ticket creation — to automate your security response workflows.
Playbook Tuning: After deployment, Keos monitors and tunes playbooks to ensure they operate as expected, resolving connectivity or data stream issues.
RBAC, Validation, and Documentation: Role-based access control is configured for SOAR, and the full deployment is validated and documented before engagement close.
Highlights
- Full SOAR installation and integration with your Splunk environment, including automation broker setup
- Standard set of remediation playbooks developed and tuned — phishing response, enrichment, and ticket creation
- RBAC configuration, playbook tuning, and full documentation delivered in a structured 184-hour engagement
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. To get a custom quote for your needs, request a private offer.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Support
Vendor support
Software associated with this service
Ongoing Managed Detection and Response services via a full-time 24x7 security operations center
By BlueVoyant
Ongoing Managed Detection and Response delivered via a full-time 24x7 security operations center
MDR provides comprehensive security coverage, but many businesses require additional cloud-native incident response, deep digital forensics, or legal testimony support that falls outside the scope and capabilities of MDR. BlueVoyant offers our DFIR for MDR for Splunk.
By pCloudHosting LLC
This product has charges associated with it for maintenance, support, deployment, and infrastructure services provided by PCloudHosting. Splunk is offered as a preconfigured and managed deployment on Ubuntu 24.04 for log analysis, monitoring, and operational intelligence.