VIRTUAL
Welcome to the EMEA Virtual Workshop Series. These 3 - 4 hour, hands-on workshops are brought to you by the Splunk team via Zoom.
Learn, connect & interact with Splunk subject matter experts, colleagues and industry peers, and have some fun on the way! Virtual hands-on workshops are a convenient, interactive way to build your Splunk skills and knowledge – from the comfort of your work or home office.
From discovering the Splunk platform to learning about specific Observability & Security use cases, our workshops will walk you through real-world scenarios and show first-hand how you can utilise Splunk. There are many different topics to choose from and we cater to a wide range of expertise. You can find all the workshop sessions details at the bottom of this page. We welcome you to join us for one, a few or all of our workshops in this series.
Who should attend?
If you are wanting to gain a better understanding of what Splunk can do and get a feel of the platform in a hands-on environment these sessions are for you.
What you’ll need?
Just you, your laptop, and a browser that can access external websites. You will also need a splunk.com account to access the workshop environment (create an account here). We run these workshops on Zoom, if you don’t have the Zoom client on your device you will be able to access via a web browser.
| Workshop Title | Level | Details |
|---|---|---|
| Splunk4Rookies | Beginner | Go from Splunk Zero to Hero in 3 hours! Splunk4Rookies sessions are a great opportunity for you to discover the value of Splunk… Learn More Splunk4Rookies sessions are a great opportunity for you to discover the value of Splunk hands-on in a matter of hours. Attendees get an introduction to Splunk, along with hands-on experience creating a Splunk app and dashboard based on multiple use cases.
During a session, we will walk you through a series of exercises designed to get you to a point where you understand what Splunk is and how you can use it within your organisation. Attendees will create their own Splunk app, add some data, and then search and analyse that data to create an interactive dashboard. Target Audience Sessions are designed for Splunk beginners. Whether your organisation is just starting to consider using Splunk or you have just joined a team of Splunk users and need to understand the basics, Splunk4Rookies is for you! |
| Splunk4Rookies Dashboards | Beginner | Get an introduction to Splunk Dashboard Studio, along with hands-on experience creating a dashboard based on multiple use cases… Learn More Splunk4Rookies sessions are a great opportunity for you to discover the value of Splunk hands-on in a matter of hours. Attendees get an introduction to Splunk Dashboard Studio, along with hands-on experience creating a Splunk dashboard based on multiple use cases.
Participants will learn the basics of creating a dashboard using Splunk Dashboard Studio, and how to populate the dashboard with visualisations and manipulate them to provide maximum value. Target Audience: Sessions are designed for Splunk beginners. Whether your organisation is just starting to consider using Splunk or you have just joined a team of Splunk users and need to understand the basics of dashboarding, Splunk4Rookies - Dashboard Studio is for you! |
| Splunk4Ninjas SPL Best Practices | Intermediate / Advanced | Deepen your existing Splunk skills in a matter of hours including tips & tricks, best practices and practical examples on how to improve your SPL… Learn More SPL best practices sessions are a great opportunity for you to deepen your existing Splunk skills in a matter of hours. Attendees benefit from lots of useful information including tips & tricks, best practices and practical examples on how to improve their SPL in our hands-on lab environment.
During the session, we will show you how to write better and efficient searches. We’ll share some useful tips & tricks, deal with complex data sets, different commands, macros, multi-value fields, regex and we will provide you with useful resources at the end of the session as well as cover Q&A. Target Audience Sessions are designed for experienced Splunk users looking to take their skills to the next level. |
| Workshop Title | Level | Details |
|---|---|---|
| Splunk4Rookies Observability | Beginner | Experience an issue and discover how you can use Splunk Observability Cloud to troubleshoot and identify the root cause… Learn More Get insights into your applications and infrastructure in real-time with the help of the monitoring, analytics and response tools of the Splunk Observability Cloud. These workshops are going to take you through the best-in-class observability platform for ingesting, monitoring, visualising and analysing metrics, traces and logs.
Target Audience Those wanting to gain an understanding of Splunk Observability in a hands-on environment. This workshop is designed for people with little or no experience with Splunk Observability. |
| IT Foundations | Beginner / Intermediate | Discover IT Service Intelligence and its capabilities for Business Service Monitoring… Learn More The purpose of this workshop is to expose customers and prospects to IT Service Intelligence and its capabilities for Business Service Monitoring. The workshop agenda includes:
The workshop is designed for IT Operations teams, including Tier 1 and Tier 2 Analysts. In addition, Line-of-Business Owners and Service Managers will also leave with a better understanding of how ITSI can help elevate monitoring to view business service health and detect business impacting outages. |
| Workshop Title | Level | Details |
|---|---|---|
| Enterprise Security Hands-on | Intermediate | Familiarise yourself with how to investigate incidents using Splunk Enterprise and Splunk Enterprise Security 7.0… Learn More Enterprise Security Hands-On is a modular, hands-on designed to familiarise participants with how to investigate incidents using Splunk Enterprise and Splunk Enterprise Security 7.0.
This workshop provides users an opportunity to walk through multiple scenarios and see first-hand how Enterprise Security can be used from the creation of a notable event to investigate all the way to the raw event that identifies the adversaries action. The workshop leverages the popular Boss of the SOC (BOTS) dataset and is laid out in an interactive format. Users will leave with a better understanding of how Splunk and Enterprise Security can be used to generate notable events and investigate them as they occur in the enterprise. Target Audience The workshop is designed for personas with Splunk experience on a Security Operations team responsible for security monitoring and incident response. |
| Building Correlation Searches for Enterprise Security | Intermediate | Discover how to leverage Splunk to develop your own correlation searches… Learn More Building Correlation Searches with Splunk Enterprise Security is a modular, hands-on workshop designed to familiarise participants with how to leverage Splunk to develop their own correlation searches.
This workshop provides users a way to gain familiarity with building correlation searches in Splunk, as well as introducing data models and the tstats command that can provide a user a method to further optimise their correlation searches. The workshop leverages the popular Boss of the SOC (BOTS) dataset with hands-on exercises that build on one another. Users will come away with a better understanding of how to build their own correlation searches in Splunk as well as how to customise their associated notable events to provide more immediate insights to their analysts. Target Audience The workshop is designed for personas on a Security Operations team that are responsible for content creation, specifically correlation searches. |
| Security Operations Suite Hands-on | Intermediate | Learn how to investigate incidents using Splunk Enterprise, Enterprise Security, UBA and SOAR… Learn More The Security Products Hands-On is a modular, hands-on workshop designed to familiarise participants with how to investigate incidents using Splunk Enterprise, Enterprise Security, UBA and Splunk SOAR.
This workshop provides users an opportunity to walk through multiple scenarios and see first- hand how Splunk Security Products can be used to take notable events and investigate, hunt and orchestrate actions based on what is uncovered. The workshop leverages the popular Boss of the SOC (BOTS) dataset and is laid out in an interactive format. Users will leave with a better understanding of how Splunk, Enterprise Security, UBA and SOAR can be used within security operations to process notable events and investigate as they occur in the enterprise. Target Audience The workshop is designed for all personas on a Security Operations teams responsible for security monitoring and incident response. |
| Security Orchestration, Automation, and Response (SOAR) Hands-on | Intermediate / Advanced | Uncover how to respond to incidents, manage cases and artifacts, as well as automate your incident response with Splunk SOAR… Learn More The SOAR Hands-On workshop is designed to familiarise participants with how to respond to incidents, manage cases and artifacts, as well as automate your incident response and standard operating procedures. This workshop provides users an opportunity to walk through a real-world scenario and see first-hand how Splunk SOAR can be used from the creation of a notable event to enriching alerts by automatically gathering data, all the way to managing and resolving the incident.
Target Audience The workshop is designed for all personas on a Security Operations teams responsible for security monitoring and incident response. |
| Splunk Security Essentials Hands-on | Intermediate | Familiarise yourself with how to set up & use Security Essentials… Learn More Security Essentials Hands-on is a modular, hands-on designed to familiarise participants with how to setup and use Security Essentials in multiple security scenarios. The workshop leverages the popular Boss of the SOC (BOTS) dataset and is laid out in an interactive format. Users will leave with a better understanding of how Splunk and Security Essentials can be used to find security content, develop a content strategy, report on security progress and coverage as you would in a real environment.
|
| Risk-Based Alerting Hands-On | Intermediate / Advanced | At the end of the workshop have a clear path for getting started with Risk Based Alerting in Your Environment Learn More The Risk-Based Alerting (RBA) hands-on workshop is designed to guide Detection Engineers or other content creators with the RBA process used in Splunk Enterprise Security. Our journey will begin with a review of ES fundamentals as a foundation for RBA then proceeds through Risk Factors, Risk Rule creation, and Risk Notable creation. The workshop leverages the popular Boss of the SOC (BOTS) dataset with hands-on exercises that build on one another and expose the participants to detecting a complex APT attack. The participants will depart with a clear path for getting started with RBA in their environment.
Target Audience The workshop is designed for personas on a Security Operations team that are responsible for content creation, usually the Detection Engineering team. |