Splunk Enterprise Security: Big Picture
Splunk has a security tool for SOC operations and incident detection. Learn how Splunk Enterprise Security can help transform your SOC into an efficient, more effective one through streamlined investigations, correlation searches, and intelligence.
What you'll learn
Splunk Enterprise Security (ES) solves many problems that we face inside SOC environments today. It helps to streamline investigations, perform automated correlation, and give intelligence to your team in a useful interface. In this course, Splunk Enterprise Security: Big Picture, you will develop an understanding of how Splunk Enterprise Security fits into your organization and assists your cyber security team. First, you will learn what Splunk Enterprise Security is and does. Next, you will discover how the useful features that Splunk ES provides will help transform your operations. Finally, you will explore the many use cases of Splunk ES and how it would be used in your environment. When you are finished with this course, you will have the skills and knowledge of Splunk ES needed to fully understand its capabilities and features.
Table of contents
About the author
Joe Abraham, CCIE #62417, is a Cybersecurity Architect working in the public sector space, assisting customers develop and implement functional and secure network architectures. He graduated from Excelsior College with an M.S. in Cybersecurity and a B.S. in Information Technology (Network Management). He currently holds many IT certifications to include CCIE, CISSP, GSEC, and CCNP Security. Joe is a mentor to IT professionals and a blogger who spends his time either with his wife and three child... more