Splunk for Security Analytics and Monitoring

Offered By: LinkedIn Learning

Tags

Linux Courses Windows Courses Splunk Courses Security Information and Event Management (SIEM) Courses Cloud Security Courses Data Ingestion Courses Network Monitoring Courses Log Management Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!

Learn how to plan the deployment and management of a Splunk ecosystem.

Syllabus

Introduction

Splunk explained
What you should know

1. The Splunk Ecosystem

SIEM and SOAR overview
Splunk overview
Splunk components
Splunk data ingestion

2. Deploying Splunk

Splunk deployment planning
Installing Splunk on Linux
Installing Splunk on Windows
Splunk users and roles
Using the Splunk web GUI
Using the Splunk CLI

3. Splunk and the Cloud

Deploying the AWS Splunk AMI
Deploying Splunk Cloud

4. Splunk Data Ingestion

Forwarding Linux logs to Splunk
Forwarding Windows log events to Splunk
Monitoring Windows files
Monitoring Windows printers
Configuring Snort IDS alerts for Splunk
Configuring an HTTP Event Collector (HEC)
Forwarding Microsoft AD events to Splunk Cloud

5. Splunk Insights

Splunk searching overview
Performing Splunk queries
Working with Splunk dashboards and reports
Managing Splunk alerts

Conclusion

What's next?

Taught by

Daniel Lachance

Related Courses

Deep Dive into Amazon Glacier
Amazon via Independent Preparing for your Professional Data Engineer Journey
Google Cloud via Coursera Building Resilient Streaming Systems on Google Cloud Platform en Français
Google Cloud via Coursera IBM AI Enterprise Workflow
IBM via Coursera Introduction to Designing Data Lakes on AWS
Amazon Web Services via edX