List of Splunk UBA Customers
San Francisco, 94107, CA,
United States
Since 2010, our global team of researchers has been studying Splunk UBA customers around the world, aggregating massive amounts of data points that form the basis of our forecast assumptions and perhaps the rise and fall of certain vendors and their products on a quarterly basis.
Each quarter our research team identifies companies that have purchased Splunk UBA for Analytics and BI from public (Press Releases, Customer References, Testimonials, Case Studies and Success Stories) and proprietary sources, including the customer size, industry, location, implementation status, partner involvement, LOB Key Stakeholders and related IT decision-makers contact details.
Companies using Splunk UBA for Analytics and BI include: Aflac, a United States based Insurance organisation with 12785 employees and revenues of $18.84 billion, Navy Federal Credit Union, a United States based Banking and Financial Services organisation with 24000 employees and revenues of $12.51 billion, Shunkhlai Holding, a Mongolia based Manufacturing organisation with 7500 employees and revenues of $850.0 million, Team Car Care, LLC, a United States based Manufacturing organisation with 40 employees and revenues of $5.0 million and many others.
Contact us if you need a completed and verified list of companies using Splunk UBA, including the breakdown by industry (21 Verticals), Geography (Region, Country, State, City), Company Size (Revenue, Employees, Asset) and related IT Decision Makers, Key Stakeholders, business and technology executives responsible for the software purchases.
The Splunk UBA customer wins are being incorporated in our Enterprise Applications Buyer Insight and Technographics Customer Database which has over 100 data fields that detail company usage of software systems and their digital transformation initiatives. Apps Run The World wants to become your No. 1 technographic data source!
Apply Filters For Customers
| Logo | Customer | Industry | Empl. | Revenue | Country | Vendor | Application | Category | When | SI | Insight |
|---|---|---|---|---|---|---|---|---|---|---|---|
 |
Aflac | Insurance | 12785 | $18.8B | United States | Splunk | Splunk UBA | Analytics and BI | 2016 | n/a |
In 2016, Aflac deployed Splunk UBA and Splunk Enterprise Security in the United States to build a Threat Intelligence System and modernize its security operations center. Splunk UBA was implemented as the user behavior analytics layer within an Analytics and BI deployment to surface anomalous user and account activity. The program framed the new Threat Intelligence System around centralized logging, behavioral analytics, and security orchestration.
The implementation combined Splunk Enterprise Security for security information and event management and Splunk UBA for advanced behavioral anomaly detection and entity modeling. Configuration work focused on correlation searches, automated alerting workflows, and reporting pipelines to feed SOC triage and incident response processes. Automation of detection to notification flows and scheduled reporting reduced manual analyst effort.
Operational coverage was scoped to Aflac security operations in the United States and targeted SOC workflows, incident response, and threat intelligence synthesis. The deployment integrated analytics outputs into SOC triage and investigation processes to prioritize alerts and contextualize events.
The deployment produced fast ROI and explicitly blocked over 2 million security threats in a six month period while saving roughly 40 hours per month through automation and streamlined reporting. Splunk UBA and Splunk Enterprise Security together formed the core of Aflac's Threat Intelligence System, improving detection fidelity and reducing analyst time spent on routine reporting.
|
 |
Navy Federal Credit Union | Banking and Financial Services | 24000 | $12.5B | United States | Splunk | Splunk UBA | Analytics and BI | 2021 | n/a |
In 2021, Navy Federal Credit Union deployed Splunk UBA alongside Splunk Enterprise Security within its Cybersecurity Operations Center. Splunk User Behavior Analytics (UBA) is implemented to support insider-threat detection and SOC analytics across its U.S. operations, placing the deployment squarely in the Analytics and BI category and tied to cybersecurity operations and insider-threat functions.
The implementation leverages Splunk Enterprise Security SIEM capabilities together with Splunk UBA behavior-based anomaly detection, user and entity scoring, and investigation workflows to surface insider-risk signals for triage. Configuration work focuses on behavioral baselining, correlation-driven alerts, and investigative playbooks that feed SOC analyst workflows and incident response processes.
Operational coverage is across Navy Federal Credit Union U.S. operations with deployment centered in the Cybersecurity Operations Center and explicit inclusion of Splunk ES and UBA skills in public CSOC and insider-threat job postings. Those hiring requirements indicate governance and role-level competency expectations have been established to operationalize Splunk User Behavior Analytics (UBA) within SOC staffing, detection responsibilities, and ongoing security analytics.
|
 |
Shunkhlai Holding | Manufacturing | 7500 | $850M | Mongolia | Splunk | Splunk UBA | Analytics and BI | 2023 | Unity |
In 2023, Shunkhlai Holding centralized its security operations by deploying Splunk UBA alongside Splunk Enterprise and Splunk Enterprise Security under the Analytics and BI category. The initiative consolidated SOC visibility and standardized detection and response workflows across the company’s Mongolian businesses within the manufacturing group, using Splunk as the vendor platform for behavior driven detections.
Splunk UBA was implemented to provide user behavior analytics, anomaly detection, risk scoring, and behavior-analytics driven detections that augment SIEM alerts and support investigator workflows. Configuration focused on behavioral baselining, enrichment of event context, and automated evidence capture to prioritize alerts and accelerate triage and investigation.
Architecturally, the deployment centralized telemetry ingestion into Splunk Enterprise with detection and investigative layers executed in Splunk Enterprise Security and Splunk UBA, integrated across security monitoring feeds, endpoint telemetry, and network data sources. Unity acted as the system integrator for rollout, handling configuration, deployment coordination, and operational handover to the centralized SOC.
Governance and process changes standardized incident response playbooks and centralized alert routing into the SOC, embedding behavior-analytics driven detections into escalation and investigation procedures. According to Splunk’s case study, the implementation produced enhanced threat detection driven by user behavior analytics, two to three times faster incident response and a 50 percent reduction in downtime.
|
 |
|
Manufacturing | 40 | $5M | United States | Splunk | Splunk UBA | Analytics and BI | 2017 | n/a |
|
Buyer Intent: Companies Evaluating Splunk UBA
Discover Software Buyers actively Evaluating Enterprise Applications
| Logo | Company | Industry | Employees | Revenue | Country | Evaluated | ||
|---|---|---|---|---|---|---|---|---|
| No data found | ||||||||