Cisco unveils Splunk AI security editions

Cisco has announced two new offerings within Splunk Enterprise Security 8.2, introducing agentic AI-driven options for security operations. The new editions, Splunk Enterprise Security Essentials Edition and Splunk Enterprise Security Premier Edition, aim to unify workflows across threat detection, investigation, and response, giving organizations faster and more efficient protection.

The updates include a set of AI-powered features designed to simplify security tasks and strengthen the Security Operations Center. These capabilities allow AI agents to evaluate alerts, analyze malicious code, generate automated response playbooks, and adapt security libraries for different environments. By handling routine work, the system enables security teams to focus on higher-level decision-making.

Cisco is also extending integration across its security ecosystem. Features such as eBPF-based runtime security and federated firewall log analysis with Splunk Cloud Platform will improve visibility and accelerate responses. The combination of these advancements places AI at the center of operations, helping security teams to act with greater speed and precision.

The Essentials Edition will be available globally, while the Premier Edition is in early access. Splunk AI Assistant in Security is already available worldwide, with further AI capabilities scheduled for release in 2026.