techforward llc
Splunk Enterprise Security(ES) Training
Splunk Enterprise Security(ES) Training
About the Training
Course Goals
● Use Splunk ES to detect and investigate security-related threats
● Know the root cause of malicious or anomalous events
● Discover previously unknown types of potential threats
● Create reports relevant to security requirements
TBD
- Security monitoring and incident investigation
- Investigating assets and identities
- Risk and network analysis
- Internal and external threat analysis
- Using investigation timelines
- Practice Practice Practice
- Be able to monitor and investigate a security incident
- Examine and understand assets and identities in ES
- Be able to investigate network anomalies
- Be able to investigate potential internal and external threats. Examine the threat activity dashboard
- Use skills from previous weeks to start an investigation. You will add to the investigation timeline as analysis proceeds.
- The goal this week is to practice more
registration
"*" indicates required fields
TechForward is a full-service Minority Cybersecurity Company specializing in cutting-edge technologies such as Splunk, Cribl, and SEIM. With a strong focus on providing comprehensive cybersecurity solutions, TechForward is approved to conduct business with the United States Federal Government.