Unit 1: Understanding the SOC
Unit 2: Splunk and the SOC
Unit 3: Security Threats and Incidents
Splunk for SOC Analyst: Zero to Security Operations Hero
Master Splunk for SOC analysis: from beginner to incident response expert in this comprehensive course.
Unit 1: Splunk Installation Basics
Unit 2: Configuring Splunk
Unit 3: Users, Roles, and Permissions
Unit 1: Splunk Web Interface Fundamentals
Unit 2: Searching and Exploring Data
Unit 3: Apps, Dashboards, and Customization
Unit 1: SPL Fundamentals
Unit 2: Filtering and Refining Results
Unit 3: Extracting and Sorting Data
Unit 1: Filtering with the 'where' Command
Unit 2: Comparison and Boolean Operators
Unit 3: Transforming Data with 'eval'
Unit 4: Advanced Transformations
Unit 1: Visualizing Data: The Basics
Unit 2: Advanced Visualization Techniques
Unit 3: Dashboards and Best Practices
Unit 1: Understanding Splunk Alerts
Unit 2: Creating Basic Splunk Alerts
Unit 3: Configuring Alert Actions
Unit 4: Managing and Prioritizing Alerts
Unit 5: Scheduling and Maintaining Alerts
Unit 1: Incident Investigation Fundamentals
Unit 2: Correlation and Timeline Analysis
Unit 3: Identifying Affected Systems and Users
Unit 1: Introduction to Splunk Reporting
Unit 2: Advanced Reporting Techniques
Unit 3: Dashboard Creation and Customization
Unit 1: Understanding Threat Intelligence
Unit 2: Integrating Threat Intelligence into Splunk
Unit 3: Leveraging Threat Intelligence in Splunk
Unit 4: Responding to Threats with Intelligence
Unit 5: Managing and Maintaining Threat Intelligence
Unit 1: Understanding Splunk ES
Unit 2: Navigating the ES Interface
Unit 3: Correlation Searches and Configuration
Unit 4: Views and Customization
Unit 1: Understanding Advanced Analytics in Splunk ES
Unit 2: Incident Review Workflow and Correlation Searches
Unit 3: Risk Framework and Threat Intelligence
Unit 4: Integration and Customization
Unit 1: Introduction to Incident Management in Splunk ES
Unit 2: Incident Assignment and Tracking
Unit 3: Collaboration and Investigation
Unit 4: Documentation and Reporting
Unit 5: Advanced Incident Management
Unit 1: Understanding Compliance Reporting in Splunk ES
Unit 2: Generating and Customizing Compliance Reports
Unit 3: Scheduling and Automating Compliance Reporting
Unit 4: Compliance Monitoring and Auditing