Cisco’s Splunk Federated Search for Snowflake has been announced at .conf25 in Boston, a new Splunk Platform integration that allows to connect, query, and combine operational and business data across Splunk and Snowflake environments. By establishing this integration with Snowflake, Cisco is seeking to foster an open data ecosystem and help organizations gain faster insights from their data.
Splunk Federated Search for Snowflake will allow teams to query Snowflake data from within the Splunk interface, enrich it with Splunk data, and drive new analytics and insights.
“Splunk Federated Search for Snowflake makes it simple for customers to access and act on their data, uniting business and operational insights in one view,” said Kamal Hathi, SVP and GM, Splunk, a Cisco company. “Together with the Snowflake integration, we’re creating a more open ecosystem to help organizations use data to make faster decisions, accelerate innovation, and deliver more trusted customer experiences.”
“Our integration with Splunk extends Snowflake as a trusted platform for unifying and simplifying data access at scale,” said Carl Perry, Head of Analytics, Snowflake. “Through the integration, Snowflake and Splunk will be able to more effectively connect data and break down silos for our joint customers. This makes it easier for organizations to harness business and operational data, enabling insights to flow to where they are needed most to power data insights and AI innovation at scale. This integration will give enterprises the power to drive faster data-driven decisions and will help them stay ahead in the AI era where data is paramount.”
Splunk Federated Search for Snowflake: Unified Data, Unmatched Flexibility
With Splunk Federated Search for Snowflake, users will use the Splunk interface to perform queries on Snowflake data and seamlessly join it with data already in Splunk. This enables teams to set business context for critical ITOps, SecOps, and engineering use cases, eliminating data silos and accelerating issue detection, triage, and resolution.
Key capabilities include:
- Easy onboarding: Seamlessly add Snowflake as a data source in Splunk.
- Federated query experience: Write SPL-like queries to search Snowflake data directly from Splunk.
- Powerful data joins: Use next generation Splunk Federation capabilities to combine Snowflake and Splunk datasets for deeper business context and insight.
- Efficient querying: Leverage Snowflake analytics for partial query and perform final data joins in Splunk.
Image: Jeetu Patel, President and Chief Product Officer, Cisco on stage at .conf25, Boston – Credit: MySecurity Media | MySecurity Media attended .conf25 courtesy of Splunk. #mysecuritytv #splunkconf25 #SplunkSecurity
