Overview

This 13.5-hour course prepares security practitioners to use Splunk Enterprise Security (ES). Students identify and track incidents, analyze security risks, use predictive analytics, and discover threats.

Skills Covered

Please refer to course overview.

Who Should Attend

Everyone can attend.

Course Curriculum

Prerequisites

  • Splunk Fundamentals 1
  • Splunk Fundamentals 2
  • Or the following single-subject courses:

  • What is Splunk?
  • Intro to Splunk
  • Using Fields
  • Scheduling Reports and Alerts
  • Visualizations
  • Leveraging Lookups and Sub-searches
  • Search Under the Hood
  • Introduction to Knowledge Objects
  • Enriching Data with Lookups
  • Data Models
  • Introduction to Dashboards

Download Syllabus

Course Modules