product
service
- Simple Security Consulting [Consulting]
- Splunk SOAR Automation Assessment Service [Consulting]
- Dashboard/SPL Creation Pack [Implementation/Building Support]
- Version upgrade service [implementation and construction support]
- Splunk Premium Apps construction support service [implementation and construction support]
- Splunk Security Log Analysis Start Package [Original App/Service]
- Splunk × CrowdStrike Falcon Insight, Macnica Original App [Original App/Service]
- Government uniform standard compatible App [Original App/Service]
- Smart Security Monitoring App [Original App/Service]
- Splunk × LANSCOPE Original App [Original App/Service]
- Security Monitoring App for Box [Original App/Service]
- Cloud Security Monitoring App [Original App/Service]
- SIEM Operation Monitoring Service [Original App/Service]
- List of services
- Macnica Premium Support for Splunk (utilization support, version upgrade monitoring)
- Macnica Premium Support for Splunk Skill Up Package
Specifications/Technical Information
Application for evaluation machine
- FAQ
Splunk
Splunk
Splunk Premium Apps construction support service [implementation and construction support]
This service can be used in place of the Splunk Professional Service provided by Splunk, which must be purchased at the same time as the Splunk Premium Apps product. Splunk certification holders can help you design and build Premium Apps remotely. Macnica, a domestic distributor, will provide this service at a lower price than the existing service provided by Splunk, and we will be able to provide consultation in Japanese for everything from designing, building, maintaining, and operating Splunk Premium Apps. You will be able to receive it. In addition, we will leverage the synergies with Macnica 's product knowledge in security, network, DX products, etc. to support more advanced Splunk utilization.
*If you use this service, you do not need to purchase "Splunk Professional Service" provided by Splunk.
| Service name/offer price |
Splunk Premium Apps Construction Support Service
|
|---|---|
| Eligible Splunk Premium Apps |
|
| Form of provision | Service (spot contract) |
| Provided | Companies using or considering Splunk Premium Apps / Splunk Certified Partners |
| alliance partner | Positka FSI Pte Ltd. |
Eligible Splunk Premium Apps
Enterprise Security
- Provides preset dashboards for detailed investigation
- A group of dashboards that enable "analysis from various perspectives" necessary for SOC research
*Consultation on a case-by-case basis
- Provides preset dashboards for detailed investigation
- A group of dashboards that enable "analysis from various perspectives" necessary for SOC research
- Integrated management of siled security products
- Digitalization of business procedures and standardization of security operations through workflows
- Achieving more efficient security operations by automating operations
- Equipped with alert response management mechanisms such as alert status management and owner assignment
- Necessary and sufficient various alert filter functions
Professional Service per Day for Premium Apps (per day)
In each phase of requirements definition, detailed design, and construction/implementation regarding Premium Apps, we can request work in units of one day according to customer's request. This service is consistently handled by the highest Splunk certification holders.
| Phase example | Example of work |
|---|---|
| Requirement definition (assessment) |
|
| design |
|
| Construction/implementation |
|
Professional Service Package for Premium Apps (package type)
We provide pre-installation design, construction, and installation as a package according to the customer's situation. The menu contents are the same as those sold by Splunk.
Package contents example (for Splunk Phantom Standard)
| Overview | Support for designing and implementing a security orchestration platform and creating guidance (playbooks) for automating security operations |
|---|---|
| Service contents |
|
| period | 14px 1.75 |
Scope of this service
Document creation and overall project management beyond the scope of this service are generally not covered by this service. If you would like us to handle these matters, please contact us separately.
Flow from application to start of work
Requests and notes to customers
In providing this service, we have the following requests and precautions for customers.
Requests to customers
- Before starting the project, please answer the attached "Preliminary Hearing Sheet".
- In order to complete the project within the prescribed period, please provide the necessary information and materials in a timely manner.
- Please assign the project owner (main person in charge) of this project.
- In order to understand your company's environment, we will hold face-to-face meetings and teleconferences multiple times, so we ask for your cooperation as much as possible.
- Please contact us as soon as possible to start work. We may refuse depending on the resource situation.
- Also, please make a request at least 4 weeks before the start of production.
Exclusions/Disclaimer
- This service is premised on subcontracting to a third party.
- The service period and service start date will be determined upon agreement with the relevant companies.
- The scope of service covers the Splunk products listed in the scope of coverage.
- * If work other than Splunk products is required, it will be necessary to coordinate with the partner separately.
- All meetings will be held remotely online.
- Work related to this service will be remote work by Positka.
- 本サービスに係る提供物は、弊社/Positka社フォーマットでのご提供になります。
- Inquiries regarding specifications and defect investigations regarding Splunk products will be made in accordance with the customer's maintenance contract.
Inquiry/Document request
In charge of Macnica Splunk Co., Ltd.
- TEL:045-476-2010
- E-mail:splunk-sales@macnica.co.jp
Mon-Fri 8:45-17:30
