Contact sales

Learning Paths

Skills

Splunk Enterprise Security Administration

6 courses
11 hours
Skill IQ

A Splunk Enterprise Security (ES) Admin manages a Splunk Enterprise Security environment, including ES event processing and normalization, deployment requirements, technology add-ons, settings, risk analysis settings, threat intelligence and protocol intelligence configuration, and customization's.

This skill demonstrates an individual's ability to install, configure, and manage a Splunk Enterprise Security deployment.

Courses in this path

Beginner

In this section, you will review the features and concepts of Splunk Enterprise Security, as well as, how to install, deploy, and configure Splunk Enterprise Security.

Splunk Enterprise Security: Big Picture

by Joe Abraham
51m 30s
4.1 (44)

Planning, Deploying, and Configuring Splunk Enterprise Security

by Joe Abraham
1h 34m 40s
4.5 (17)

Intermediate

In this section, you will learn to configure and manage Splunk ES dashboards. Next, you will learn how to tune and create correlation searches in Splunk ES. Last, you will learn how to configure threat intelligence in Splunk ES.

Managing Splunk Enterprise Security Data and Dashboards

by Joe Abraham
2h 20m 37s
4.8 (12)

Designing and Creating Add-ons for Splunk Enterprise Security

by Joe Abraham
1h 39m 11s

Tuning and Creating Correlation Searches in Splunk Enterprise Security

by Muhammad Awan
2h 43m 56s
4.3 (20)

Configuring Threat Intelligence in Splunk Enterprise Security

by Joe Abraham
1h 44m 17s

Try this learning path for free

Access this learning path and other top-rated tech content with a free trial.

Free individual trial Free team trial

Have questions?

Get them answered now.

Start a live chat

What you will learn

Review of the features and concepts of Splunk Enterprise Security
Configure Splunk ES dashboards to reveal insights, monitor, and investigate
Manage Splunk Enterprise Security dashboards
Deploy Splunk Enterprise Security to your SOC environment
Install and Configure Splunk Enterprise Security
Customize Splunk Enterprise Security data
Create custom add ons to enhance visibility
Tune correlation searches for use in Splunk Enterprise Security
Create correlation searches for use in Splunk ES
Add context to data using lookups and identities
Deploy Splunk ES security intelligence tools
Use the Splunk threat inteligence framework

Experience

Knowledge of basic networking concepts (CompTIA Network+)
Knowledge of the fundamental information security concepts (CompTIA Security+)
Knowledge and skill of security event triage
Knowledge and skill of incident response and handling
Basic competence of using Splunk Enterprise

Learn with the best

Joe Abraham

Joe Abraham, CCIE #62417, is a Cybersecurity Architect working in the public sector space, assisting customers develop and implement functional and secure network architectures. He graduated from Excelsior College with an M.S. in Cybersecurity and a B.S. in Information Technology (Network Management). He currently holds many IT certifications to include CCIE, CISSP, GSEC, and CCNP Security. Joe is a mentor to IT professionals and a blogger who spends his time either with his wife and three child... more

Muhammad Awan

Muhammad Awan is a Senior Splunk Admin in working in Public Sector. Has been associated with Splunk and data science related technologies for a decade. Splunk Certified Admin and Splunk Certified Power User. Microsoft Certified Solutions Exert and Microsoft Certified Solutions Associate (Office 365) MCSA (Messaging). Experience with Networks and Security technologies. He has been mentoring and teaching at various universities as a visiting faculty in the past. Loves to acquire new skills and dis... more

Join our learners and upskill
in leading technologies

Ready to skill up
your entire team?

Subscriptions

Continue to checkout Continue to checkout

Cancel

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Access thousands of videos to develop critical skills
Give up to 50 users access to thousands of video courses
Practice and apply skills with interactive courses and projects
See skills, usage, and trend data for your teams
Prepare for certifications with industry-leading practice exams
Measure proficiency across skills and roles
Align learning to your goals with paths and channels

Ready to skill up
your entire team?

Subscriptions

Continue to checkout

Cancel

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Access thousands of videos to develop critical skills
Give up to 50 users access to thousands of video courses
Practice and apply skills with interactive courses and projects
See skills, usage, and trend data for your teams
Prepare for certifications with industry-leading practice exams
Measure proficiency across skills and roles
Align learning to your goals with paths and channels

Splunk Enterprise Security Administration

Courses in this path

Beginner

Splunk Enterprise Security: Big Picture

Planning, Deploying, and Configuring Splunk Enterprise Security

Intermediate

Managing Splunk Enterprise Security Data and Dashboards

Designing and Creating Add-ons for Splunk Enterprise Security

Tuning and Creating Correlation Searches in Splunk Enterprise Security

Configuring Threat Intelligence in Splunk Enterprise Security

Learn with the best

Join our learners and upskill in leading technologies

Ready to skill upyour entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Ready to skill upyour entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Join our learners and upskill
in leading technologies

Ready to skill up
your entire team?

Ready to skill up
your entire team?