Splunk for Security —
Enterprise Security (ES)
How Splunk ES provides organisation-wide visibility and security intelligence.
- Thu, Jan 23
- 🇬🇧 10:00 AM - 2:00 PM GMT | 🇦🇪 2:00 PM - 6:00 PM GST
- Virtual, Microsoft Teams
- Microsoft Teams hardware requirements for desktop and web apps
The Splunk Platform for Security: ES
Join Ben Marrable, Somerford's Splunk Security Strategist (CISSP), along with Jake Hammacott and Oliver Knapp, both Splunk Security Experts at Somerford, to explore Splunk Enterprise Security (ES). Learn where it fits within Splunk's comprehensive security offerings and how to leverage ES to enhance your security detections and incident response.
Splunk Enterprise Security (ES) serves as the central management interface of the security operations centre, empowering teams with the insights needed to detect and respond swiftly to both internal and external threats. ES simplifies threat management and minimises risk, providing organisation-wide visibility and security intelligence for continuous monitoring, incident response, and SOC operations. Additionally, it offers executives a valuable perspective on business risk.
Agenda
- An Overview of the Splunk Platform for Security
- Introduction to Splunk Enterprise Security and its role within the Splunk Ecosystem
- Defining Security Events and creating Correlation Searches
- Conducting Investigations using Splunk ES
- Security Hunting with Enterprise Security
- Introduction to Risk-Based Alerting (RBA)
Who Should Attend?
- Security professionals seeking to enhance their use of Splunk for security insights
- Security operations centre (SOC) analysts interested in more efficient threat detection and response
- Security leaders wanting better visibility into their organisation’s risk profile
Additional Information
- To attend this workshop, you should already be a user of Splunk or have attended one of our Splunk on AWS Workshops.
- We aim to provide a highly interactive experience. Please join us at the start of the session to engage in hands-on labs.
- To get the most from the session, we ask for respectful and focused participation throughout the workshop. Our hosts are here to guide you and answer any questions.
- After completing the workshop and hands-on labs, you will be eligible to receive a certificate of participation.
- If you cannot complete the labs, we offer future sessions to support your certification journey.
If you need any assistance or have questions, please contact us at marketing@somerfordassociates.com.
Register Below
Complete the short form below to complete your registration for our workshop: