Splunk Services Accreditations Core Implementation
16332
page-template-default,page,page-id-16332,page-child,parent-pageid-16296,ajax_fade,page_not_loaded,,qode-theme-ver-1.5,wpb-js-composer js-comp-ver-4.3.5,vc_responsive

Splunk Services Accreditations ES Implementation

Design and implement Splunk’s Enterprise Security (ES) application following best practices.

Implementation Fundamentals - Required Accreditation

To achieve Core Implementation Accreditation you need to have gained your Implementation Fundamentals Accreditation.
You will then need to complete the following virtual instructor led course, there is no free self-paced e-learning option for this class.

Core Implementation - Required Accreditation

To achieve ES Implementation Accreditation you need to have gained your Core Implementation Accreditation.
You will then need to complete the following virtual instructor led course, there is no free self-paced e-learning option for this class.

Using Enterprise Security - Required Course

This 3 virtual day course (13.5 hours) prepares security practitioners to track security incidents, analyse security risks, use predictive analytics, and threat discovery. It covers the use of Enterprise Security’s dashboards, forms and workflow to identify, find root cause and resolve security issues.

Administrating the Splunk app for Enterprise Security - Required Course

This 13.5 hour course prepares architects and systems administrators to install, configure and manage Splunk Enterprise Security. It covers ES event processing and normalization, deployment requirements, technology add-ons, settings, risk analysis settings, threat intelligence and protocol intelligence configuration, and customizations.

ES Implementation Course

Splunk Enablement Live Instructor-led Class (developed and designed by the Splunk Services team). See Splunk Learning or Splunk Partner Learning for registration).

Questions can be addressed to Splunk Services Accreditations Core Implementation.

In this course you will learn how to;

  • Onboard data following Splunk’s Common Information Model (CIM)
  • Correctly install Enterprise Security and configure with necessary correlation data
  • Implement basic security use cases in the ES product

On completion you can then take the Enterprise Security Implementation online exam.