Security Cloud - Standard edition
The Standard edition of Splunk Security Cloud is an entry level edition that gets you started with Splunk Cloud for Security use cases by centralizing the data for security operations. The investigative capabilities of the Standard Edition helps to modernize your security operations and includes basic security monitoring, fraud analytics, and fraud detection.
Splunk software included in this edition
The following Splunk software is included in the Security Cloud Standard edition:
|Software or functionality||More information|
|Splunk Cloud||Splunk Cloud Documentation|
|Splunk Security Essentials app on Splunkbase||Splunk Security Essentials Documentation|
Entitlements for each protected device
An entitlement is a right to use, access, or consume an application or resource, typically for a fee.
The Security Cloud - Standard edition offers the following entitlements:
|Data ingestion for each protected device||35 MB on a single day||The entitlements for each of the Security Cloud editions are based on protected devices. Protected devices refers to the total number of devices that are connected to the customer's network with an IP address. They are not limited to the number of devices that directly send events to the Splunk platform. For example, if you have one Blue Coat Web Proxy, one Palo Alto Firewall, and 998 desktop PC's, you have 1,000 protected devices.|
|Splunk Virtual Core Units (SVCs) for each protected device||0.003 rounded up to the nearest integer||The Cloud metric is called a Splunk Virtual Compute (SVC) while the on-prem metric is called a Virtual Central Processing Unit (vCPU). Both are calculations of the CPU resources allocated and available to Splunk for search head and indexer components only. This industry standard, value-oriented metric aligns your Splunk investment with your search activity providing you flexibility to bring in data volume without ingest limits.|
Overview of Splunk Security Cloud
Security Cloud - Plus edition
This documentation applies to the following versions of Splunk® Security Cloud: GA