From the course: SIEM: Event Management with Splunk Security
Join today to access over 24,900 courses taught by industry experts.
Create event management to delegate and collaborate - Splunk Tutorial
From the course: SIEM: Event Management with Splunk Security
Create event management to delegate and collaborate
- Now that we have a risk assessment handy and our company's inventory list ready to go, we're all set to begin configuring the Splunk Security Essentials app for event management. It's time to prepare a system for Splunk. To get started, we need a server or virtual machine with 16 CPUs and 32 gigabytes worth of RAM. There's also a cloud version of Splunk. Certainly explore Splunk's website for more specific details, especially if running a custom installation. Splunk lets us produce a collaborative environment for fighting off threats and managing risks. You don't even have to pay anything for Splunk's Security Essentials app. It'll work with any version of Splunk you have access to. When building event management for SIEM, it's important to practice and run exercises with your team away from your production environment. This is where the Splunk Security Essentials app becomes handy for producing labs and exercises and…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
The power of a good goal3m 8s
-
(Locked)
Prioritize your security goals2m 35s
-
(Locked)
Create event management to delegate and collaborate2m 50s
-
(Locked)
Plan a case management strategy2m 37s
-
(Locked)
How to use regex for custom event filtering3m 2s
-
(Locked)
How to use GRC as a starting point2m 3s
-
-
-
-
-