O slideshow foi denunciado.
Utilizamos seu perfil e dados de atividades no LinkedIn para personalizar e exibir anúncios mais relevantes. Altere suas preferências de anúncios quando desejar.

Illumina Customer Presentation

858 visualizações

Publicada em

Illumina Customer Presentation - SplunkLive! Long Beach

Publicada em: Tecnologia
  • Seja o primeiro a comentar

Illumina Customer Presentation

  1. 1. Copyright © 2015 Splunk Inc. Splunk at Jason Callahan Head of Informa1on Security
  2. 2. 2 About •  ILMN: $2B-revenue, newly added to the S&P, growing 15-25% annually, 4000 emp. •  Market leader in geneLc sequencing devices •  90% of all DNA data produced in the world was done with our equipment “Smartest company in the world” -MIT Tech Review 2014.
  3. 3. 3 About Me •  Jason Callahan (@JasonPCallahan) •  MBA, CISSP (2001) •  >20 years InformaLon Security experience: 2 startups, 1 Fortune 500, several Finance/ Banking, US Air Force •  Brought in to Illumina to build the security program & team •  Fun fact: I was once the only physical security control for every F-117 Stealth ever made
  4. 4. 4 Before Splunk: Visibility Challenged •  We needed to build a security program into the exisLng business •  We had data, but no visibility – we didn’t know what we didn’t know •  A “must have” was interoperability across soeware and applicaLons •  Everyone wants their tool to also be your “single pane of glass” “We needed a single point that could give us all of our data and talk to everything else.”
  5. 5. 5 Choosing Splunk •  Splunk was in-house, minimally used by Ops team •  Though Splunk was collecLng logs from servers, it was underuLlized •  Splunk’s interoperability features combined with its other capabiliLes made it a “no brainer” “I looked around and realized Splunk was the only choice if we wanted to ramp up quickly and work with anything.”
  6. 6. Splunk at Illumina •  100 GB License for ProducLon •  Splunk Enterprise Security •  Splunk Cloud •  3 Splunk Environments •  Dev/Test •  ProducLon •  Cloud 4 Universal Forwarders 2 Indexers 3 Search Heads + 1 Deployment Servers
  7. 7. 7 Third-Party ApplicaLons & Tools Many connected apps: speed and data integraLon •  Security Data: • Firewalls, IDS, CASB, AV, AD, Networking •  SupporLng Data: • SalesForce, Box, Okta, Service Now “The power of the apps enables quick wins and starts the creaLve process for informaLon mining.”
  8. 8. •  One source for security event monitoring •  Correlated searches •  Custom searches – a key! •  An enterprise-wide view of our security environment •  Scalability & interoperability Splunk Gives Us…. “Splunk answers our security quesLons and helps us understand what’s going on in our environment.”
  9. 9. Splunk Use Cases at Illumina Security IT Ops Efficiency Search & Visibility “As we build new dashboards and deploy new tools, we find new and interes6ng things every day with Splunk.”
  10. 10. 10 Splunk for Security “We had to build from scratch and Splunk is the heart of the architecture for our security program.” •  Security event monitoring and correlaLon across all data points •  Incident tracking with ES •  With ES issues were quickly made obvious Day 1 •  Splunk features eliminated need for addiLonal & expensive mail gateway tools - saving Lme and high costs ($100K/yr)
  11. 11. 11 Splunk for Visibility through Search •  Incident PivoLng: Custom searches & dashboards enabled us to detect anomalies •  The right search correlaLons reveal criLcal info: •  Targeted email aqacks (execs) •  “Superman” - Login / access / authenLcaLon issues •  AcLonable items are easy to see
  12. 12. 12 Splunk for OperaLonal Efficiency •  Keeps environment running clean by bubbling up configuraLon issues •  out-of-service equipment authenLcaLon •  Quickly idenLfies DNS misconfiguraLons •  Provides robust capabiliLes without having to purchase addiLonal technologies •  ConsolidaLng funcLons saves us money and simplifies processes “You feel good at the end of the day that you've made the environment more efficient just by cleaning up these problems. .”
  13. 13. 13 Use Case Screenshots AuthenLcaLon Mapping & Anomaly DetecLon ApplicaLon Usage AnalyLcs Environment Mapping
  14. 14. 14 Splunk to the Future…. •  Doubling our license through increased demand •  Extending Splunk to the Cloud •  AdvocaLng Splunk to business •  Can I Splunk that? “We WIN, when our customers use Splunk.”
  15. 15. 15 Splunk Words to the Wise…. •  Leverage the CIM early and always •  Don’t take on too much at first or you’ll quickly be overwhelmed •  Start with your most pressing business problems •  IdenLfy the right data for solving the problem and focus exclusively on that data •  Every Lme you use Splunk to solve a problem, automate it- Should this be a correlaLon?
  16. 16. Thank You Jason Callahan