Prior to beginning the enablement content, please ensure you completed the prerequisite as this will be required to complete the learning path and to receive your accreditation. Prerequisite: Splunk Enterprise Certified Admin
Using Enterprise Security - Required Course
This 3 virtual day course (13.5 hours) prepares security practitioners to track security incidents, analyse security risks, use predictive analytics, and threat discovery. It covers the use of Enterprise Security’s dashboards, forms and workflow to identify, find root cause and resolve security issues.
This 13.5 hour course prepares architects and systems administrators to install, configure and manage Splunk Enterprise Security. It covers ES event processing and normalization, deployment requirements, technology add-ons, settings, risk analysis settings, threat intelligence and protocol intelligence configuration, and customisations.