Splunk for Security — Enterprise Security 8.0 Discovery Workshop
Explore how Splunk Enterprise Security 8.0 delivers organisation-wide visibility and security intelligence to strengthen your threat detection and response.
- Wed, July 9
- 🇬🇧 10:00 AM - 2:00 PM BST / 🇦🇪 1:00 PM - 5:00 PM GST
- Virtual, Microsoft Teams
- Microsoft Teams hardware requirements for desktop and web apps
Splunk's Market-Leading SIEM
Join Ben Marrable, Somerford's Splunk Security Strategist (CISSP), along with Jake Hammacott and Oliver Knapp, both Splunk Security Experts at Somerford, to explore the latest capabilities in Splunk Enterprise Security (ES) 8.0. Discover where ES fits within Splunk's end-to-end security portfolio, and how version 8.0 helps strengthen your organisation's detection, investigation, and response workflows.
Splunk Enterprise Security (ES) 8.0 acts as the central nervous system of the modern Security Operations Centre (SOC), delivering organisation-wide visibility and real-time security intelligence. It enables teams to proactively detect and respond to internal and external threats through improved workflows, advanced risk-based alerting, and data-driven insights. ES streamlines threat management, reduces risk exposure, and provides both security practitioners and executives with actionable context and visibility across the business.
Agenda
- An Overview of the Splunk Platform for Security
- What’s New in Splunk Enterprise Security 8.0
- Introduction to Splunk ES and its role within the Splunk Ecosystem
- Defining Security Events and Creating Correlation Searches
- Conducting Investigations Using Splunk ES
- Security Hunting with Enterprise Security
- Introduction to Risk-Based Alerting (RBA) and Enhanced Threat Detection
Who Should Attend?
- Security professionals looking to elevate their use of Splunk for real-time security intelligence
- SOC analysts focused on improving threat detection, investigation, and response workflows
- Security leaders seeking greater visibility into their organisation’s risk posture
Additional Information
- To attend this workshop, you should already be a user of Splunk or have attended one of our Splunk on AWS Workshops.
- We aim to provide a highly interactive experience. Please join us at the start of the session to engage in hands-on labs.
- To get the most from the session, we ask for respectful and focused participation throughout the workshop. Our hosts are here to guide you and answer any questions.
- After completing the workshop and hands-on labs, you will be eligible to receive a certificate of participation.
- If you cannot complete the labs, we offer future sessions to support your certification journey.
If you need any assistance or have questions, please contact us at marketing@somerfordassociates.com.