Tenable Plugin for Splunk Mission Control

Tenable Plugin for Splunk Mission Control is an optional plugin for the Splunk application which provides vulnerability data and insights to the Splunk Mission Control application. Splunk Mission Control is a unified cloud-based security operations platform that provides security incident triage, investigation, collaboration, and response functionality as a Software-as-a-Service (SaaS) solution.

Topology features and workflow:

  • Tenable Add-on for Splunk collects Tenable data on your Splunk Enterprise, or Enterprise Cloud, deployment.

  • Splunk Enterprise Security generates notable events via correlation searches which are forwarded to Mission Control using Splunk Connect for Mission Control App.

  • Splunk Connect for Mission Control is used to establish connection between your on-prem, or cloud, Splunk deployment & Mission Control.

  • Tenable Plugin for Splunk Mission Control fetches data from your connected on-prem, or cloud, deployment’s Splunk indexes.

Configuration

To configure Tenable Plugin for Mission Control, refer to Configure Tenable Plugin for Mission Control.