Description
Course info
Level
Beginner
Updated
Dec 17, 2018
Duration
1h 13m
Description

In this course, Streamlining Your Incident Response Process with Splunk, Ryan Chapman and Aaron Rosenmund discuss how Splunk can help streamline your incident response (IR) process. Learn the benefits and importance of log aggregation, why Splunk is the best tool for the job, and how Splunk works and which logs you’ll need. By the end of this course, you’ll have a solid understanding of the true benefits Splunk brings to the IR realm.

About the author
About the author

Ryan is a certified incident response analyst and reverse engineer who also wears the hats of forensic analyst and developer. He enjoys speaking at conferences and performing stand-up comedy. Ryan spent six years as a technical trainer, and he is passionate about life-long learning.

More from the author
Hands-On Incident Response Fundamentals
Beginner
3h 22m
Jan 20, 2017
About the author

Aaron M. Rosenmund is a system security and administration subject matter expert for several Federal systems, with a background in business administration and is recognized as subject matter expert in various technologies including virtualization and scripted automation. He is passionate about enabling the workforce to fully leverage the technologies.

More from the author
Hunting for Fileless Malware
Intermediate
1h 40m
Dec 18, 2018
More courses by Aaron Rosenmund