Adaptive Response using Splunk Enterprise Security
Crest worked with one of the security start-ups who are the leading provider of NAC (Network Access Control) solutions. Their product provides physical and/or virtual security solution that can identify the network devices such as notebooks, smartphones, tablets and all possible Internet of Things (IoT) devices when they join the network.
Crest provided a comprehensive solution which uses the power of Splunk Enterprise Security and Adaptive Response along with their product capabilities to enable their customers monitor real time NAC-related events, identify threats, and remediate by taking corrective action on the endpoints.
Following examples highlight few threats which could occur in customer deployment are handled by this solution: