Case Study: A Leading Quick Service Restaurant Running Splunk Core on AWS
Customer: Quick Service Restaurant Chain Based in Atlanta, GA
Business Pain: A leading quick service restaurant chain needed to gain comprehensive security analytics across their enterprise on AWS. This included alerts and automated searches, analyzing network traffic to find unusual behavior (beacons and out of the country VPN attempts), threat scoring, store device health, custom scripts against end points to show what processes are running, and analysis of customer applications, web servers, and authentication sources.
How we fixed it: TekStream provided the foundational services to run Splunk on AWS ingesting over 2000+ data sources including Store Point of Sale Servers, Online Ordering Logs, and IoT Data. At go-live, TekStream’s MSP division now provides managed services to ensure that Splunk/AWS is successfully running. With the core MSP platform in place, TekStream has implemented Splunk Enterprise Security on AWS to gain comprehensive security analytics across their enterprise.
Technology involved : AWS EC2, Splunk Core, Splunk Enterprise Security on AWS