Course Code: splunkysecure
Duration: 35 hours
Prerequisites:
  • Experience with business intelligence and data visualization.
  • Knowledge of Splunk fundamentals

Audience

  • Business managers
  • Business analysts
  • Data analysts
  • Data scientists
  • Data engineers
Overview:

Splunk is a software platform used for searching, analyzing and visualizing machine-generated big data.

This instructor-led, live training (online or onsite) is aimed at business managers and business analysts who wish to search, analyze, and visualize data using Splunk.

By the end of this training, participants will be able to:

  • Install and configure Splunk.
  • Collect and index all kinds of machine data.
  • Implement real-time search, analysis and visualization of large datasets.
  • Create and share complex dashboards and reports.

Format of the Course

  • Interactive lecture and discussion.
  • Lots of exercises and practice.
  • Hands-on implementation in a live-lab environment.

Course Customization Options

  • This training is based on the latest version of Splunk.
  • To request a customized training for this course, please contact us to arrange.
Course Outline:

Introduction

Setting up Splunk

Overview of Splunk Features and Architecture

Navigating the Splunk User Interface

Performing Searches Using SPL (Search Processing Language)

Using Transforming Commands and Visualization

Building Your Own Dashboards and Creating Reports

Understanding Data Models and Pivot

Working with the Common Information Model (CIM)

Integrating Splunk with Different Databases

Getting to Know Advanced Splunk Concepts

Introduction

Review of Basic Features and Architecture of Splunk

Developing a Splunk Application and a Technology Add-on

Connecting Data to Splunk

  • Understanding various data input methods and sources
  • Processing data
  • Improving the input process

Conducting Advanced Data Analytics

  • Manipulating and filtering data
  • Combining searches and using subsearches
  • Working with time and multivalue fields
  • Creating advanced reports
  • Using geography and location
  • Using advanced transactions
  • Dealing with anomalies
  • Predicting and trending
  • Understanding machine learning

Performing Advanced Visualization

  • Drilldown
  • Sunburst Sequence
  • Geospatial visualization
  • Punchcard visualization
  • Calendar heatmap visualization
  • Sankey diagram

Customizing Dashboard

  • Using Dashboard controls
  • Managing multi-search
  • Customizing tokens
  • Customizing layout, look and feel
  • Implementing the custom alert action

Integrating Splunk with Other Enterprise Systems

  • Working with the Splunk SDK
  • Splunk with Python and R for analytics
  • Splunk with Tableau for visualization

Troubleshooting