From the SIEM to the Lake: Bridging the Gap


            for Splunk Customers Post-Acquisition


            By Omer Singer, VP of Strategy, Anvilogic



            The smoke has cleared on Cisco’s largest acquisition  ever: that of Splunk for $28 billion in September.
            This acquisition has added a new layer of uncertainty for users, many of which were already wondering
            what the future holds for threat detection and response in the cloud.

            The steep buyout premium (31% over the market price) reflects an expectation that customers will stick
            around  and  gain  a  preference  for  additional  Cisco  security  products.  Organizations  that  spent  years
            investing in Splunk infrastructure and content have good reasons to stay on. They fear that severing ties
            with Splunk would wreak havoc on workflows that Security Operations Centers (SOC) rely on to assess
            and mitigate security threats to the business.

            But  years  of  delays  in  their  cloud  transition,  along  with  leadership  shuffles  and  recent  layoffs,  have
            sparked interest in potential alternatives. Improved offerings from the cloud hyperscalers and advanced
            data lake offerings have kicked off a wave of SOC modernization initiatives.


            Over the last few months since the acquisition of Splunk, we’ve been waiting for the other shoe
            to drop, and it finally has.





            Cyber Defense eMagazine – January 2024 Edition                                                                                                                                                                                                          115
            Copyright © 2024, Cyber Defense Magazine. All rights reserved worldwide.