Administering Splunk Enterprise Security (ASES)

 

Who should attend

This 13.5-hour course prepares architects and systems administrators to install and configure Splunk Enterprise Security (ES).

Certifications

This course is part of the following Certifications:

Prerequisites

Course Objectives

  • Provide an overview of Splunk Enterprise Security (ES)
  • Customize ES dashboards
  • Examine the ES Risk framework and Risk-based Alerting (RBA)
  • Customize the Investigation Workbench
  • Understand initial ES installation and configuration
  • Manage data intake and normalization for ES
  • Create and tune correlation searches
  • Configure ES lookups
  • Configure Assets & Identities and Threat Intelligence

Course Content

The course covers ES event processing and normalization, deployment requirements, technology add-ons, dashboard dependencies, data models, managing risk, and customizing threat intelligence.

Please note that this class may run over three days, with 4.5 hour sessions each day, to achieve the full 13.5 hours of course content.

Preise & Trainingsmethoden

Online Training

Dauer
3 Tage

Preis
  • CHF 1'650.–
  • Splunk Training Units: 150 SPC
Klassenraum-Training

Dauer
2 Tage

Preis
  • Schweiz: CHF 1'650.–
  • Splunk Training Units: 150 SPC
 

Kurstermine

Instructor-led Online Training:   Dies ist ein Instructor-led Online Training, das über WebEx in einer VoIP Umgebung durchgeführt wird. Sollten Sie Fragen zu einem unserer Online-Kurse haben, können Sie uns jederzeit unter +41 44 832 50 80 oder per E-Mail an info@flane.ch kontaktieren.

Deutsch

Europäische Zeitzonen

Online Training 2 Tage Kurssprache: Deutsch
Online Training 1 Tag Kurssprache: Deutsch
Online Training 2 Tage Kurssprache: Deutsch
Online Training 2 Tage Kurssprache: Deutsch