SPLUNK TRAINING

Enhance your Splunk knowledge with our hands-on instruction and exercises to allow for the extrapolation of solutions based upon foundational principles.

Splunk Training Overview

This two-week, hands-on Splunk Training Course will incorporate the most useful and impactful topics found in Splunk  EDU Classes. Attendees will learn:

  • Splunk Fundamentals
  • Splunk General Architecture
  • Installation & Configuration
  • Administration
  • Basic Searching
  • Monitoring
  • Data Modeling
Talk to an Expert

Learn from Our Splunk Experts

Professional instruction is provided by GuidePoint Security engineers who have achieved the highest levels of Splunk certification, and combine that expertise with their vast experience from both the commercial and government sectors to provide an immersive view into the Splunk experience.  Our subject matter experts will guide students through an intensive program designed to empower them to quickly and efficiently apply the varied capabilities of Splunk as it relates to their own security environments.

service-icon-check

Splunk Training Differentiators

There are many Splunk courses available from which to choose. Our in-person Splunk training course offers additional cost savings over traditional Splunk EDU training and covers material from 8+ Splunk EDU classes with the content prioritized by topic. Additionally, our certified Splunk experts:

  • Provide hands-on, practical application vs. hand-fed labs
  • Foster operational teamwork vs. individualized training 
  • Cover the entire stack of Splunk training vs. classes that are focused on single topics

***GuidePoint Security’s Splunk Tactical Training does not follow the full syllabus for Splunk classes and may not necessarily align directly with Splunk certification options. Official CEUs may be available. Please check with your GuidePoint Security contact for more details.***

Become Proficient in Splunk

Practice your newly acquired knowledge and further refine your techniques on your own instance of Splunk. During the course of the Splunk training, you will participate in group exercises that are designed to help you become proficient at:

  • Configuring Splunk environments including Universal forwarders, Deployment servers, Indexers and Search headers 
  • Conducting Basic Searches using regex statements, basic searching criteria and built-in tools within the Splunk Monitoring console / Technical Add-ons 
  • Ingesting Logs from various systems including Firewalls, OS’s, Networking, IDS/IPS, Servers and more
  • Parsing Data utilizing Splunk Application Tools / Technical Add-ons and how to create knowledge objects 
  • Configuring the Splunk Enterprise Monitoring console
  • Creating dashboards, knowledge objects, alerts and reports
  • Using the Splunk Security Essentials App 

Splunk Training Agenda

This 2-week course breaks down into learning the fundamentals of Splunk and then more advanced use cases.

WEEK 1

The Basics

  • Day 1: Basic Splunk Fundamentals
  • Day 2: Basic Knowledge Objects
  • Day 3: Searching & Reporting
  • Day 4: Data & Visualization
  • Day 5: Boss of the SOC

WEEK 2

Advanced

  • Day 1: Splunk Building Apps/Splunk Security Essentials App
  • Day 2: Splunk Admin/Architect
  • Day 3: Splunk Admin/Architect
  • Day 4: Splunk Admin/Architect
  • Day 5: Summary & Evaluations

Requirements: You will be required to provide your own laptop that can either run Linux or can support a virtual instance of Linux. GuidePoint Security provides a CentOS Linux virtual image to run the docker instances that are required for class. You will be instructed on how to install a Splunk instance on Linux and Windows servers. While not a prerequisite, it is highly recommended that students wishing to attend the training have a background in Linux. To accommodate your individual Splunk instance, Splunk will be run locally in docker sessions. Training may be conducted at either your onsite location (must be large enough for training a team and an internet connection for all participants) or at GuidePoint Security Headquarters

Certifications

Put an ELITE Highly-Trained Team on Your Side

More than 70% of our workforce consists of tenured cybersecurity engineers, architects and consultants

Additional Resources

View All

Splunk Enterprise 101: Maximizing The Value Of Your Implementation
Learn about Splunk’s multi-purpose functionality: Access and analyze vital data Evaluate security events Deliver customized success measurements Plus, learn more […]
Download
Splunk Professional Services Overview
GuidePoint’s Splunk certified professionals have extensive knowledge in architecture, deployment, and integration in unique environments throughout the Commercial and Federal […]
Download
Splunk Tactical Training Overview
GuidePoint’s Splunk certified professionals run a two-week course that incorporates the most useful and impactful topics found within Splunk EDU […]
Download