Splunk Track for Architects - Ingeniq Training Courses
Learn concepts and best practices for sizing, scaling, and deploying Splunk across your organisation.
Splunk Track for Architects, splunk Architects track, ingeniq splunk training for Architects
13441
page-template-default,page,page-id-13441,page-child,parent-pageid-13126,ajax_fade,page_not_loaded,,qode-theme-ver-1.5,wpb-js-composer js-comp-ver-4.3.5,vc_responsive

For Splunk Architects

Learn concepts and best practices for sizing, scaling, and deploying Splunk across your organisation.

Click on a course below to view a course description, class schedules, and register.

Splunk Fundamentals 1

This courses teaches you how to search and navigate in Splunk, use fields, get statistics from your data, create reports, dashboards, lookups, and alerts. It will also introduce you to Splunk’s datasets features and Pivot interface.

Splunk Fundamentals 2

This course focuses on searching and reporting commands as well as on the creation of knowledge objects. Major topics include using transforming commands and visualizations, filtering and formatting results, correlating events, creating knowledge objects, using field aliases and calculated fields, creating tags and event types, using macros, creating workflow actions and data models, and normalizing data with the Common Interface Model (CIM).

Splunk Fundamentals 3

This course runs over 4 days and focuses on additional search commands as well as advanced use of knowledge objects. Major topics include advanced statistics and eval commands, advanced lookup topics, advanced alert actions, using regex and erex to extract fields, using spath to work with self-referencing data, creating nested macros and macros with event types, accelerating reports and data models.

Creating Dashboards with Splunk

This two-day course is designed for power users who want to create fast and efficient views that include customized charts, drilldowns, advanced behaviors and visualizations. Major topics include using tokens, global searches, event handlers, dynamic drilldowns and simple XML extensions for JavaScript and CSS.

Advanced Searching and Reporting

This 18 hour course focuses on more advanced search and reporting commands. Scenario-based examples and hands-on challenges enable users to create robust searches, reports, and charts. Students are coached step by step through complex searches to produce final results. Major topics include the Splunk search process, using sub-searches, additional statistical commands and functions, formatting and calculating results, charting commands and options, correlating events, creating advanced lookup, and using DB Connect.

Splunk Enterprise System Administration

This virtual 9 hour course is designed for system administrators who are responsible for managing the Splunk Enterprise environment. The course provides the fundamental knowledge of Splunk license manager, indexers and search heads. It covers configuration, management, and monitoring core Splunk Enterprise components.

Splunk Enterprise Data Administration

This virtual 13.5 hour course is designed for system administrators who are responsible for getting data into Splunk Indexers. The course provides the fundamental knowledge of Splunk forwarders and methods to get remote data into Splunk indexers. It covers installation, configuration, management, monitoring, and troubleshooting of Splunk forwarders and Splunk Deployment Server components.

Architecting Enterprise Deployments

This 12 hour course focuses on large enterprise deployments. Students will learn steps and best practices for planning, data collection, sizing and documenting a distributed deployment. Workshop-style labs offer students an opportunity to design a deployment based on a common distributed use case.

Troubleshooting Splunk

This 2-virtual day course is designed for Splunk administrators. It covers topics and techniques for troubleshooting a standard Splunk distributed deployment using the tools available on Splunk Enterprise 6.6.

Splunk Cluster Administration

This 12 hour course is for advanced Splunk administrators. The course provides the fundamental knowledge of deploying and managing a Splunk cluster environment. It covers installation, configuration, management,  monitoring, and troubleshooting of Splunk clusters.

Administering Enterprise Security

This 13.5 hour course prepares architects and systems administrators to install, configure and manage Splunk Enterprise Security. It covers ES event processing and normalization, deployment requirements, technology add-ons, settings, risk analysis settings, threat intelligence and protocol intelligence configuration, and customizations.