Administering Splunk Enterprise Security
This training course Administering Splunk Enterprise Security construct architects and the systems administrators to install, configure and manage the Splunk ES. This training course will covers ES event method and normalization, deployment needs, settings, risk analysis settings, threat intelligence, and the protocol intelligence configuration, and customizations.
Splunk is a complex system of multiple interoperating components, as such, it offers many configuration options. Other Splunk administrative tasks involve creating and managing alerts and planning server capacity. In this training course, you will learn how to configure the Splunk to meet your needs. You’ll also learn how to set up alerts, plan server capacity, and manage Splunk servers.
-
Module 1 – ES Introduction
-
Module 2 – Monitoring and Investigation
-
Module 3 – Security Intelligence
-
Module 5 – ES Deployment
-
Module 6 – Installation and Configuration
-
Module 7 – Validating ES Data
-
Module 8 – Custom Add-ons
-
Module 9 – Tuning Correlation Searches
-
Module 10 – Creating Correlation Searches
-
Module 11 – Lookups and Identity Management
-
Module 12 – Threat Intelligence Framework
0.00 average based on 0 ratings
