Technology Integration
Important
Medium
80% Confidence
Cisco and Splunk Demonstrate Integrated XDR-ES SOC Architecture
Summary
Cisco demonstrated a deeply integrated SOC solution with Splunk ES at Cisco Live 2026, achieving unified event management and closed-loop automation through XDR platform integration. The pre-configured SOC-in-a-Box architecture significantly improved deployment efficiency and threat detection capabilities.
Key Takeaways
Cisco showcased deep integration with Splunk ES at Cisco Live Amsterdam 2026, featuring closed-loop integration between XDR platform and Splunk ES.
Key technologies: Splunk ES risk index logs as XDR data source enabling unified event management; SOC-in-a-Box portable architecture with visibility, investigation, and analysis/identity layers.
Captured 130B packets and successfully blocked numerous threats during 21,000-attendee event.
Key technologies: Splunk ES risk index logs as XDR data source enabling unified event management; SOC-in-a-Box portable architecture with visibility, investigation, and analysis/identity layers.
Captured 130B packets and successfully blocked numerous threats during 21,000-attendee event.
Why It Matters
reflects Cisco's strategy of enhancing security platforms through in-depth product integration...