Optimizing Fields, Tags, and Event Types in Splunk
Have you ever wanted to be more in control of your experience within Splunk? This course will give you the knowledge and tools to help you learn more about this SIEM, the objects within it, and how to manipulate them to your advantage.
What you'll learn
Splunk is used for many different applications within our enterprise environments, enabling us to store, analyze, and track machine data and other information within our networks. In this course, Optimizing Fields, Tags, and Event Types in Splunk, you will learn the skills needed to optimize your Splunk environment. First, you will explore knowledge and knowledge objects. Then, you will delve into creating lookups, tags, event types, and workflow actions. Finally, you will use Splunk Fields and create efficiencies within them. When you’re finished with this course, you will have the knowledge to be able to optimize Splunk and share the efficiencies you create with your enterprise.
Table of contents
About the author
Joe Abraham, CCIE #62417, is a Security Technical Solutions Architect working in the public sector space, assisting customers develop and implement functional and secure network architectures. He graduated from Excelsior College with an M.S. in Cybersecurity and a B.S. in Information Technology (Network Management). He currently holds many IT certifications to include CCIE, CISSP, GSEC, and CCNP Security. He is also a member of the GIAC Advisory Board. Joe is a mentor to IT professionals and a b... more