Splunk Enterprise Security Editions Cloud Capability Matrix

Version Essentials (Included in Premier) Premier Only
ES 8.2
  • Enterprise Security
  • Threat Intelligence Management (TIM)
  • Security AI Assistant
  • Detection authoring and governance
  • Findings and investigation workflow
  • Threat intelligence and platform extensibility
  • SOAR
  • User and Entity Behavioral Analytics integration (UEBA)
ES 8.3
  • Security AI Assistant additional capabilities
  • New Entity Risk Scoring (ERS) in Enterprise Security
  • Investigations enhancements
  • UEBA enhancements
ES 8.4
  • Detection Studio (GA)
  • Cisco Talos integration
  • Investigations enhancements
  • Threat Intelligence Management (TIM) enhancements
  • UEBA finding exclusion rules (entity list support)
ES 8.5
  • Exposure Analytics
  • Investigations enhancements
  • Detection Studio enhancements
  • Splunk Attack Analyzer Integration: Threat analysis for phishing investigations
  • UEBA enhancements