Overview
This 13.5-hour course prepares security practitioners to use Splunk Enterprise Security (ES). Students identify and track incidents, analyze security risks, use predictive analytics, and discover threats.
Skills Covered
Please refer to course overview.
Who Should Attend
Everyone can attend.
Course Curriculum
Prerequisites
- Splunk Fundamentals 1
- Splunk Fundamentals 2
- What is Splunk?
- Intro to Splunk
- Using Fields
- Scheduling Reports and Alerts
- Visualizations
- Leveraging Lookups and Sub-searches
- Search Under the Hood
- Introduction to Knowledge Objects
- Enriching Data with Lookups
- Data Models
- Introduction to Dashboards
Or the following single-subject courses:
Course Modules
Exam & Certification
This course is not associated wth any Certification.