Administering Splunk SOAR

Administering Splunk SOAR

Administering Splunk SOAR

Upcoming Classes

Online

Instructor-led online training

Location Oct 2022 Nov 2022 Dec 2022 Jan 2023 Feb 2023 Mar 2023 Apr 2023
AMER Pacific Time - Virtual Oct 27
 Nov 15
 Dec 12
 Jan 10
Jan 27
AMER Eastern Time - Virtual Oct 28
 Nov 8
Nov 22
 Dec 9
Dec 20
 Jan 6
Jan 17
Jan 27
APAC Singapore - Virtual Nov 2
Nov 25
 Dec 9
 Jan 2
Jan 31
EMEA UK Time - Virtual Nov 29
 Jan 10

Summary

This 3 hour course prepares IT professionals to configure and manage SOAR.

Description

  • SOAR concepts
  • Initial configuration
  • Apps and assets
  • Configuring automation
  • User management
  • Ingesting Data
  • Customization and monitoring

Duration

3 hours

Objectives

Topic 1 –Initial Configuration
  • Describe SOAR operating concepts
  • Identify documentation and community resources
  • SOAR & Splunk Architecture
  • Product settings
  • Access control
  • Authentication settings
  • Response settings
  • Understanding roles
  • Creating users
  • Managing user access

Topic 2 – Apps, Assets and Playbooks
  • Add and configure apps and assets
  • Manage playbooks
  • Ingesting Data
  • Labels and tags
  • Event settings

Topic 3 – Customization and Monitoring
  • Create custom severity levels
  • Create custom status levels
  • Add custom fields and CEF settings
  • Create custom workbooks
  • Run reports
  • Use SOAR audit tools
  • Monitor system health

Prerequisites

Classes:

  • Investigating Incidents with Splunk SOAR

 

Onsite Training

For groups of three or more

Request Quote

Public Training

AMER Pacific Time - Virtual

  • Confirmed
    9:00 AM - 12:00 PM PDT
    $ 500.00 USD
  • Confirmed
    9:00 AM - 12:00 PM PST
    $ 500.00 USD
  • Confirmed
    2:00 PM - 5:00 PM PST
    $ 500.00 USD
  • Confirmed
    9:00 AM - 12:00 PM PST
    $ 500.00 USD
  • Confirmed
    2:00 PM - 5:00 PM PST
    $ 500.00 USD

AMER Eastern Time - Virtual

  • Confirmed
    2:00 PM - 5:00 PM EDT
    $ 500.00 USD
  • Confirmed
    9:00 AM - 12:00 PM EST
    $ 500.00 USD
  • Confirmed
    9:00 AM - 12:00 PM EST
    $ 500.00 USD
  • Confirmed
    9:00 AM - 12:00 PM EST
    $ 500.00 USD
  • Confirmed
    9:00 AM - 12:00 PM EST
    $ 500.00 USD
  • Confirmed
    2:00 PM - 5:00 PM EST
    $ 500.00 USD
  • Confirmed
    9:00 AM - 12:00 PM EST
    $ 500.00 USD
  • Confirmed
    2:00 PM - 5:00 PM EST
    $ 500.00 USD

APAC Singapore - Virtual

  • Confirmed
    9:00 AM - 12:00 PM SGT
    $ 500.00 USD
  • Confirmed
    2:00 PM - 5:00 PM SGT
    $ 500.00 USD
  • Confirmed
    9:00 AM - 12:00 PM SGT
    $ 500.00 USD
  • Confirmed
    2:00 PM - 5:00 PM SGT
    $ 500.00 USD
  • Confirmed
    9:00 AM - 12:00 PM SGT
    $ 500.00 USD

EMEA UK Time - Virtual

  • Confirmed
    9:00 AM - 12:00 PM GMT
    $ 500.00 USD
  • Confirmed
    9:00 AM - 12:00 PM GMT
    $ 500.00 USD

Don't see a date that works for you?

Request Class

Sitemap
Privacy
Website Terms of Use
Splunk Licensing Terms
Export Control
Modern Slavery Statement
Splunk Patents

© 2005- Splunk Inc. All rights reserved.

Splunk, Splunk>,Turn Data Into Doing, Data-to-Everything, and D2E are trademarks or registered trademarks of Splunk Inc. in the United States and other countries. All other brand names,product names,or trademarks belong to their respective owners.