Splunk Education, Training and Professional Services Provider Kubernetes Monitoring with Splunk Observability Cloud Summary This virtual course targeted to SREs and DevOps enables you to monitor and troubleshoot your Kubernetes clusters with Splunk Observability Cloud. Through discussions and hands-on activities, learn to explore and use the Kubernetes Navigator, built-in dashboards, and AutoDetect to monitor the health of your cluster. Create custom dashboards and detectors to monitor and troubleshoot common Kubernetes trouble conditions. This course assumes basic knowledge of Kubernetes and familiarity with navigating Splunk IM. This lab-oriented class is designed to help you learn best practices and tips to use Splunk Observability Cloud to monitor and troubleshoot Kubernetes clusters. All hands-on labs are performed in the Observability Cloud UI. Description Describe common scenarios for monitoring Kubernetes Use Splunk Observability Cloud's built-in tools to monitor Kubernetes Create custom dashboards and detectors to monitor Kubernetes Troubleshoot common Kubernetes issues Enjoyable presenter and easy to understand for an intermediate Splunk user pursuing Admin certification. Thanks from Massachusetts! Participant, Splunk Fundamentals 2 Splunk Credit Value: 50 Duration: 3 hours Time: 9am – 12pm AET Objectives Topic 1: Exploring Kubernetes Clusters with Splunk Observability Cloud Describe common scenarios for monitoring Kubernetes Describe how to send Kubernetes data Use the Kubernetes Navigator to view cluster data Use Kubernetes Dashboard to view cluster data Topic 2: Monitoring Kubernetes with Built-in Content Use the Kubernetes Navigator to investigate problems with nodes, pods, and containers Use the Cluster Analyzer to pinpoint the root of some problems Use built-in Kubernetes Dashboards to investigate and troubleshoot Use AutoDetect to investigate and troubleshoot Topic 3: Monitor Kubernetes with Custom Dashboards and Detectors Use the Metrics Finder to research Kubernetes metrics Create custom charts, dashboards, and dashboard groups to monitor Kubernetes Create custom detectors to monitor Kubernetes metrics Customize alert messages Prerequisites Required: Splunk Infrastructure Monitoring Fundamentals (ILT) Introduction to Splunk IM (eLearning) Basic knowledge of Kubernetes Strongly recommended Experience managing a Kubernetes cluster and using it in a production environment Enquiry Form Let us know what you're after Courses for me Certifications for me Courses for my team Dedicated courses for my teams Training Tracks for my Company Dedicated courses for my Company Training Packs Using Splunk Training Credits Submit Thanks for submitting! Splunk Course Schedules and Timezones Ingeniq Course are delivered live and in English and provide access to customers spanning multiple timezones. Dates and times displayed for each course are relative to Australian Eastern Time (AET). AM Marked Splunk Courses AM marked courses start at AET 9:00am and finish at AET 1:30pm (4.5 hour sessions over 1 or more days) and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) PM Marked Splunk Courses PM marked courses start at AEDT 12:00pm and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West)

Comparing Values - Splunk Education Single Subject Course Training. Comparing Values The Splunk Education single-subject course module, Comparing Values is for power users who want to learn how to compare field values using eval functions and eval expressions. Topics will focus on using the comparison and conditional functions of the eval command, and using eval expressions with the field format and where commands. Splunk Credit Value : 50 Duration : 3 hours Time : 9:00 am - 12:00 pm AEST Please use the currency convertor above to check for course pricing in your local currency. Enquiry Form Let us know what you're after Courses for me Certifications for me Courses for my team Dedicated courses for my teams Training Tracks for my Company Dedicated courses for my Company Training Packs Using Splunk Training Credits Submit Thanks for submitting! The instructor was very responsive to questions and queries both private and Communal.. Final module collaborative lab walkthrough on screen was particularly helpful. Participant, Splunk Fundamentals 2 Comparing Values - Course Topics Using eval to Compare Filtering with where Using Fields in Searches Comparing Temporary versus Persistent Fields Enriching Data Class Format Instructor-led lecture with labs. Delivered via virtual classroom or at your site Course Prerequisites To be successful, students must have completed these Splunk Education course(s) or have equivalent working knowledge: Intro to Splunk Using Fields Visualizations Working with Time Statistical Processing Comparing Values - Audience People who would like to complete the Search Expert learning path or for Splunk Power Users. Comparing Values - Course Objectives Topic 1 – Using eval to Compare Understand the eval command Explain evaluation functions Identify and use comparison and conditional functions Use the fieldformat command to format field values Topic 2 – Filtering with where Use the where command to filter results Use wildcards with the where command Filter fields with the information functions, isnull and isnotnull Topic 3 - Using Fields in Searches Use fields correctly in basic searches Use fields with operators Use the rename command Use the fields command to improve search performance Topic 4 – Comparing Temporary versus Persistent Fields Differentiate between temporary and persistent fields Create temporary fields with the eval command Extract temporary fields with the erex and rex commands Topic 5 – Enriching Data Understand how fields from lookups, calculated fields, field aliases, and field extractions enrich data Splunk Course Schedules and Timezones Splunk Course are delivered live and in English and provide access to customers spanning multiple timezones. Dates and times displayed for each course are relative to Australian Eastern Time (AET). AM Marked Splunk Courses AM marked courses start at AET 9:00am and finish at AET 1:30pm and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) PM Marked Splunk Courses PM marked courses usually starts at AEDT 12:00pm or AEST 11:00 am and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) Comparing Values - Upcoming Schedule We don’t have any products to show here right now.

Splunk Enterprise Security Administrator | Splunk Training Pack delivered by INGENIQ Splunk Enterprise Security Administrator Splunk Training Pack#5 Splunk Enterprise Security Admin Learn more, for less.. Ingeniq Splunk Training Packs are a collections of courses that when purchased together qualify for discounts of up to 25%. Splunk Training Packs apply to all Training Tracks and Certifications – in fact to any combination of courses purchased together from Ingeniq. Buy Splunk Training Pack#5 and you’ll sit all the courses you need to be certified as a Splunk Enterprise Security Admin. A Splunk Certified Enterprise Security Admin manages a Splunk Enterprise Security environment, including ES event processing and normalisation, deployment requirements, technology add-ons, settings, risk analysis settings, threat intelligence, protocol intelligence configuration and customisations. Call our Training Consultants now on 1300 245 802 or email sales@ingeniq.com.au to have this training pack tailored to you or your team' s requirements. Splunk Training Pack Courses Splunk Enterprise System Administration This virtual 9 hour course is designed for system administrators who are responsible for managing the Splunk Enterprise environment. The course provides fundamental knowledge of Splunk license manager, indexers and search heads. It covers configuration, management and monitoring core Splunk Enterprise components. Splunk Enterprise Data Administration This virtual 13.5 hour course is designed for system administrators who are responsible for getting data into Splunk Indexers. Administering Splunk Enterprise Security This 13.5 hour course prepares architects and systems administrators to install, configure and manage Splunk Enterprise Security. It covers ES event processing and normalization, deployment requirements, technology add-ons, settings, risk analysis settings, threat intelligence and protocol intelligence configuration, and customizations. Cert Exam - Splunk Enterprise Security Admin [USD 125] There are three ways to purchase a PearsonVUE registration voucher: Directly from PearsonVUE From Splunk (as an individual) From Splunk (as an account) Full instructions below. Addon & Save!! Splunk Fundamentals 2 This course focuses on searching and reporting commands as well as on the creation of knowledge objects. Major topics include using transforming commands and visualizations, filtering and formatting results, correlating events, creating knowledge objects, using field aliases and calculated fields, creating tags and event types, using macros, creating workflow actions and data models, and normalising data with the Common Interface Model (CIM). This course runs over 4 days and focuses on additional search commands as well as advanced use of knowledge objects. Major topics include advanced statistics and eval commands, advanced lookup topics, advanced alert actions, using regex and erex to extract fields, using spath to work with self-referencing data, creating nested macros and macros with event types, accelerating reports and data models. Splunk Fundamentals 3 Architecting Splunk Enterprise Deployments This 9 hour Splunk course focuses on large enterprise deployments. Students will learn steps and best practices for planning, data collection and sizing for a distributed deployment. Workshop-style labs challenge students to make design decisions about an example enterprise deployment. Advanced Searching and Reporting This 13.5 hour Splunk course focuses on more advanced search and reporting commands. Scenario-based examples and hands-on challenges enable users to create robust searches, reports, and charts. Students are coached step by step through complex searches to produce final results. Splunk Certifications Exam When you’re ready to take a Splunk Certification exam, please view the Exam-Registration-Tutorial for registration assistance. As a reminder, each exam attempt costs US$125. Bulk registration vouchers can be purchased at a discounted price of five registrations for US$500. How to register for your exam There are three ways to purchase a PearsonVUE registration voucher: 1) Directly from PearsonVUE This is the most streamlined approach. Follow the steps for account creation and exam registration provided at www.pearsonvue.com/splunk Payment will be collected at the time of registration. You can also visit the Pearson VUE voucher store for direct purchase. 2) From Splunk (as an individual) Log into your existing account at Splunk.com/Education to purchase a registration code. Payment can be made via credit card or existing Splunk Education credits. Splunk will email you a unique registration code, which can be used for registration at www.pearsonvue.com/splunk . 3) From Splunk (as an account) Your Splunk Sales Rep can add certification exams to any deal. Once the number of vouchers has been requested, Splunk will email your unique registration codes, which can be used for registration at www.pearsonvue.com/splunk All scheduled exams are subject to a minimum 24-hour cancellation and/or rescheduling policy. Failure to cancel or reschedule an exam within this timeframe results in forfeiture of registration fee. One of the best trainers I've had - keeps content relevant & explains the tasks in easily understood language. Extremely knowledgeable in all fields relating to the content. Well paced & accommodated to everyone's questions & progress. Participant, Splunk Enterprise Data Administration

Splunk Education, Training and Professional Services Provider Configuring Tracing and Profiling for Splunk APM Summary This single subject course targeted to DevOps enables you to learn configuration techniques to send traces to Splunk APM. Through in-person discussions and hands-on activities, learn to deploy the Splunk OpenTelemetry Collector on a Linux host. Use the OpenTelemetry Collector to configure processor components to modify trace metadata. Use auto-instrumentation to send in traces without altering your code. Enable AlwaysOn profiling to monitor code performance. This course assumes familiarity with navigating Splunk APM which is covered in the course Using Splunk Application Performance Monitoring. This lab-oriented class is designed to help you learn the fundamentals of configuring your code to send in traces and trace metadata. All hands-on labs are in Python and Java. Description Deploy the Splunk OTel Collector Configure the Splunk OTel Collector processor components Use Auto-Instrumentation to Send Traces Add metadata to your traces Enable AlwaysOn Profiling Enquiry Form Let us know what you're after Courses for me Certifications for me Courses for my team Dedicated courses for my teams Training Tracks for my Company Dedicated courses for my Company Training Packs Using Splunk Training Credits Submit Thanks for submitting! Enjoyable presenter and easy to understand for an intermediate Splunk user pursuing Admin certification. Thanks from Massachusetts! Participant, Splunk Fundamentals 2 Splunk Credit Value: 50 Duration: 3 hours Time: 11am - 2 pm AEST Objectives Topic 1 – Deploy and Configure the Otel Collector Deploy the Splunk OTel Collector Configure the OTel Collector Topic 2 – Auto-Instrument Applications To Send Traces Describe instrumentation options Use auto-instrumentation to send in traces Topic 3 – Configure the OTel Collector to Modify Trace Attributes Describe the OTel Collector architecture Configure processor components to modify trace metadata Topic 4 – Enable Splunk AlwaysOn Profiling Enable AlwaysOn Profiling in applications Prerequisites Required: Using Splunk Application Performance Monitoring Familiarity with using the command line terminal Strongly recommended: Basic knowledge of programming languages (e.g. Python, Java) Splunk Course Schedules and Timezones Ingeniq Course are delivered live and in English and provide access to customers spanning multiple timezones. Dates and times displayed for each course are relative to Australian Eastern Time (AET). AM Marked Splunk Courses AM marked courses start at AET 9:00am and finish at AET 1:30pm (4.5 hour sessions over 1 or more days) and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) PM Marked Splunk Courses PM marked courses start at AEDT 12:00pm and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West)

Leveraging Lookups and Subsearches - Splunk Education Single Subject Course Training. Leveraging Lookups and Subsearches The Splunk Education single-subject course module, Leveraging Lookups and Subsearches is designed for power users who want to learn how to use lookups and subsearches to enrich their results. Topics will focus on lookup commands and explore how to use subsearches to correlate and filter data from multiple sources. Splunk Credit Value : 50 Duration : 3 hours Time : 9:00 am - 12:00 pm AEST Please use the currency convertor above to check for course pricing in your local currency. Enquiry Form Let us know what you're after Courses for me Certifications for me Courses for my team Dedicated courses for my teams Training Tracks for my Company Dedicated courses for my Company Training Packs Using Splunk Training Credits Submit Thanks for submitting! The instructor was very responsive to questions and queries both private and Communal.. Final module collaborative lab walkthrough on screen was particularly helpful. Participant, Splunk Fundamentals 2 Leveraging Lookups and Subsearches - Course Topics Using Lookup Commands Adding a Subsearch Using the return Command Class Format Instructor-led lecture with labs. Delivered via virtual classroom or at your site Course Prerequisites To be successful, students must have completed these Splunk Education course(s) or have equivalent working knowledge: Intro to Splunk Using Fields Visualizations Working with Time Statistical Processing Comparing Values Result Modification Scheduling Reports and Alerts Introduction to Dashboards Leveraging Lookups and Subsearches - Audience Search Expert learning path Leveraging Lookups and Subsearches - Course Objectives Topic 1 – Using Lookup Commands Understand lookups Use the inputlookup command to search lookup files Use the lookup command to invoke field value lookups Invoke geospatial lookups in search Topic 2 – Adding a Subsearch Define subsearch Use subsearch to filter results Identify when to use subsearch Understand subsearch limitations and alternatives Topic 3 - Using the return Command Use the return command to pass values from a subsearch Compare the return and fields commands Splunk Course Schedules and Timezones Splunk Course are delivered live and in English and provide access to customers spanning multiple timezones. Dates and times displayed for each course are relative to Australian Eastern Time (AET). AM Marked Splunk Courses AM marked courses start at AET 9:00am and finish at AET 1:30pm and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) PM Marked Splunk Courses PM marked courses usually starts at AEDT 12:00pm or AEST 11:00 am and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) Leveraging Lookups and Subsearches - Upcoming Schedule We don’t have any products to show here right now.

Splunk Enterprise System Administration Training delivered by INGENIQ Splunk Enterprise System Administration The Splunk Enterprise System Administration (Version 9) course is designed for system administrators who are responsible for managing the Splunk Enterprise environment. The Splunk Enterprise System Administration course provides fundamental knowledge of Splunk license manager, indexers and search heads. It covers configuration, management and monitoring core Splunk Enterprise components. Splunk Credit Value : 150 Duration : 12 hours over 2 days Time : 9:00 - 4:00 pm AET *Course discounts apply for Splunk Partners. Please use the currency convertor above to check for course pricing in your local currency. Enquiry Form Let us know what you're after Courses for me Certifications for me Courses for my team Dedicated courses for my teams Training Tracks for my Company Dedicated courses for my Company Training Packs Using Splunk Training Credits Submit Thanks for submitting! Splunk Enterprise System Administration - Course Topics Splunk Deployment Overview License Management Splunk Apps Splunk Configuration Files Index Management Users, Roles and Authentication Basic Forwarding Distributed Search Course Prerequisites To be successful, students must have completed these Splunk Education course(s) or have equivalent working knowledge: Intro to Splunk Using Fields Intro to Knowledge Objects Creating Knowledge Objects Creating Field Extractions Enriching Data with Lookups Data Models Related Certifications Splunk Enterprise Certified Admin Splunk Enterprise Certified Architect Splunk Certified Enterprise Security Admin Splunk IT Service Intelligence Certified Admin Splunk Enterprise System Administration - Audience Anyone within a technical role who is involved in the management of Splunk within their organisation or are looking to become Splunk certified. Previous attendees have included IT Administrators, DevOps, Security Analysts and Solution Architects. Class Format Instructor-led lecture with labs. Delivered via virtual classroom or at your site After completing Splunk Enterprise System Administration course you will be able to Build and manage a production Splunk environment Administer licences Install and configure forwarders Understand the basics of getting data into Splunk Maintain and optimise indexes Create and manage users & roles Understand Splunk scaling using distributed search and management Splunk Enterprise System Administration - Course Objectives Module 1 – Deploying Splunk Provide an overview of Splunk Identify Splunk Enterprise components Identify the types of Splunk deployments List the steps to install Splunk Use Splunk CLI commands Module 2 – Monitoring Splunk Use Splunk Health Report Enable the Monitoring Console (MC) Use Splunk Assist Use Splunk Diag Module 3 - Licensing Splunk Identify Splunk license types Describe license violations Add and remove licenses Module 4 - Using Configuration Files Describe Splunk configuration directory structure Understand configuration layering process Use btool to examine configuration settings Module 5 - Using Apps Describe Splunk apps and add-ons Install an app on a Splunk instance Manage app accessibility and permissions Module 6 – Creating Indexes Apply a data retention policy Backup data on indexers Delete data from an index Restore frozen data Module 7 – Managing Index Review Splunk Index Management basics Identify data retention recommendations Identify backup recommendations Move and delete index data Describe the use of the Fishbucket Restore a frozen bucket Module 8 – Managing Users Add Splunk users using native authentication Describe user roles in Splunk Create a custom role Manage users in Splunk Module 9 – Configuring Basic Forwarding Identify forwarder configuration steps Configure a Universal Forwarder Understand the Deployment Server Module 10 – Configuring Distributed Search Describe how distributed search works Describe the roles of the search head and search peers Splunk Course Schedules and Timezones Ingeniq Course are delivered live and in English and provide access to customers spanning multiple timezones. Dates and times displayed for each course are relative to Australian Eastern Time (AET). AM Marked Splunk Courses AM marked courses start at AET 9:00am and finish at AET 1:30pm and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) PM Marked Splunk Courses PM marked courses usually starts at AEDT 12:00pm or AEST 11:00 am and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) Splunk Enterprise System Administration - Upcoming Courses Splunk Enterprise System Administration V9: Starts June 15 and 16, 2026 Price USD 1,500.00 Splunk Enterprise System Administration V9: Starts May 11 and 12, 2026 Course Closed Splunk Enterprise System Administration V9: Starts April 13 and 14, 2026 Course Closed Splunk Enterprise System Administration V9: Starts March 9 and 10, 2026 Course Closed

Splunk Education, Training and Professional Services Provider Advanced SOAR Implementation Summary This 13.5 hour course is intended for experienced SOAR consultants who will be responsible for complex SOAR solution development, and will prepare the attendee to integrate SOAR with Splunk as well as develop playbooks requiring custom coding and REST API usage. Potential attendees have received a passing grade in all prerequisite courses, and must ensure they can devote all of their attention to the class, as the course work is very challenging. Students will develop a custom solution with SOAR, Splunk and custom Python code. The labs provide requirements for the solution; the student must plan and execute the development. This will require thoughtful focus, experimentation and problem-solving skills. Description Using external search in SOAR Sending events from Splunk to SOAR Updating Splunk events from SOAR Running SOAR reports on Splunk Executing SOAR playbooks from Splunk Searching Splunk from SOAR playbooks Writing custom code in SOAR playbooks Using the SOAR REST API in Phantom playbooks Enquiry Form Let us know what you're after Courses for me Certifications for me Courses for my team Dedicated courses for my teams Training Tracks for my Company Dedicated courses for my Company Training Packs Using Splunk Training Credits Submit Thanks for submitting! Enjoyable presenter and easy to understand for an intermediate Splunk user pursuing Admin certification. Thanks from Massachusetts! Participant, Splunk Fundamentals 2 Splunk Credit Value: 150 Duration: 3 days Time: 11am – 3.30pm AEST Objectives Module 1 – Implementing Splunk and SOAR Review of SOAR UI and concepts Describe interactions between Splunk and SOAR Identify key concepts and data flows Pre-requisites for integration Module 2 – Configuring External Splunk Search Describe the benefits of externalizing search to Splunk Configure the SOAR instance for externalization Configure the Splunk instance for externalization Use the Splunk app for SOAR Reporting Module 3 – Sending Splunk Events to SOAR Configure the SOAR Add-on for Splunk Map CIM fields to CEF Send Enterprise Security notables to SOAR Automatically trigger SOAR playbooks for Splunk notables Module 4 – Accessing Splunk from SOAR Install and configure the SOAR App for Splunk Ingest Splunk events into SOAR Use Splunk search from playbooks Update Splunk notable events Module 5 – Custom Coding in Playbooks SOAR coding best practices Writing, using and managing custom functions Using the SOAR API in custom code Store and retrieve persistent data Module 6 – Using SOAR REST Use Django queries to search for data in SOAR Use REST to access SOAR data Use the HTTP app to execute REST from playbooks Prerequisites Attendees for this class must ensure that they meet all course prerequisites. This is a challenging, advanced class that draws on technical knowledge from many areas in Splunk and SOAR, and the demanding labs and course schedule leave little time to learn the basics. To be successful, students should have a solid understanding of the following: Experience with Python programming Administering Splunk SOAR Developing Splunk SOAR Playbooks Enterprise Splunk Data Administration Enterprise Splunk System Administration Either Using or Administering Splunk Enterprise Security Splunk Course Schedules and Timezones Ingeniq Course are delivered live and in English and provide access to customers spanning multiple timezones. Dates and times displayed for each course are relative to Australian Eastern Time (AET). AM Marked Splunk Courses AM marked courses start at AET 9:00am and finish at AET 1:30pm (4.5 hour sessions over 1 or more days) and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) PM Marked Splunk Courses PM marked courses start at AEDT 12:00pm and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West)

Splunk IT Service Intelligence Certified Administrator Splunk Certification | INGENIQ Splunk IT Service Intelligence Certified Administrator As part of Splunk Certification, a Splunk IT Service Intelligence Certified Admin installs and configures Splunk’s app for IT Service Intelligence (ITSI), including ITSI architecture, deployment planning, service design and implementation, notable events and developing glass tables and deep dives. This Splunk Certification demonstrates an individual’s ability to deploy, manage and utilise Splunk ITSI to monitor mission-critical services. Please note: There are two approved coursework paths for this Splunk Certification track. Candidates may complete either Splunk Enterprise System Administration and Splunk Enterprise Data Administration or Splunk Cloud Administration as part of this certification track. Enquiry Form Let us know what you're after Courses for me Certifications for me Courses for my team Dedicated courses for my teams Training Tracks for my Company Dedicated courses for my Company Training Packs Using Splunk Training Credits Submit Thanks for submitting! Learning Path Free Training Paid Training Paid Cert Exam Splunk Enterprise System Administration Splunk Enterprise Data Administration Splunk Cloud Administration Implementing Splunk IT Service Intelligence Cert Exam - Splunk IT Service Intelligence Certified Admin Splunk Certifications Exam When you’re ready to take a Splunk Certification exam, please view the Exam-Registration-Tutorial for registration assistance. As a reminder, each exam attempt costs US$125. Bulk registration vouchers can be purchased at a discounted price of five registrations for US$500. How to register for your exam There are three ways to purchase a PearsonVUE registration voucher: 1) Directly from PearsonVUE This is the most streamlined approach. Follow the steps for account creation and exam registration provided at www.pearsonvue.com/splunk Payment will be collected at the time of registration. You can also visit the Pearson VUE voucher store for direct purchase. 2) From Splunk (as an individual) Log into your existing account at Splunk.com/Education to purchase a registration code. Payment can be made via credit card or existing Splunk Education credits. Splunk will email you a unique registration code, which can be used for registration at www.pearsonvue.com/splunk . 3) From Splunk (as an account) Your Splunk Sales Rep can add certification exams to any deal. Once the number of vouchers has been requested, Splunk will email your unique registration codes, which can be used for registration at www.pearsonvue.com/splunk All scheduled exams are subject to a minimum 24-hour cancellation and/or rescheduling policy. Failure to cancel or reschedule an exam within this timeframe results in forfeiture of registration fee. One of the best trainers I've had - keeps content relevant & explains the tasks in easily understood language. Extremely knowledgeable in all fields relating to the content. Well paced & accommodated to everyone's questions & progress. Participant, Splunk Enterprise Data Administration

Introduction to Dashboards - Splunk Education Single Subject Course Training. Introduction to Dashboards The Splunk Education single-subject course module, Introduction to Dashboards is designed for power users who want to learn best practices for building dashboards in the Dashboard Studio. This course focuses on dashboard creation, including prototyping, the dashboard definition, layouts types, adding visualizations, and dynamic coloring. Splunk Credit Value : 50 Duration : 3 hours Time : 9:00 am - 12:00 pm AEST Please use the currency convertor above to check for course pricing in your local currency. Enquiry Form Let us know what you're after Courses for me Certifications for me Courses for my team Dedicated courses for my teams Training Tracks for my Company Dedicated courses for my Company Training Packs Using Splunk Training Credits Submit Thanks for submitting! The instructor was very responsive to questions and queries both private and Communal.. Final module collaborative lab walkthrough on screen was particularly helpful. Participant, Splunk Fundamentals 2 Introduction to Dashboards - Course Topics Dashboard Framework Prototyping Visualization Types Modifying the Source Code Dynamic Coloring Class Format Instructor-led lecture with labs. Delivered via virtual classroom or at your site Course Prerequisites To be successful, students must have a solid understanding of these courses: Intro to Splunk Using Fields Search Optimization Introduction to Dashboards - Audience Knowledge Manager learning path Introduction to Dashboards- Course Objectives Topic 1 – Dashboard Framework Describe the dashboard definition Compare classic and dashboard studio dashboards Use dashboard best practices Manage views Use dashboard best practices Topic 2 – Create a Prototype Describe dashboard workflows Compare layout types Identify layout fields Add visualizations Topic 3 - Use Dynamic Coloring Describe dynamic coloring Contrast visualization types Set global time range parameters Apply dynamic coloring Splunk Course Schedules and Timezones Splunk Course are delivered live and in English and provide access to customers spanning multiple timezones. Dates and times displayed for each course are relative to Australian Eastern Time (AET). AM Marked Splunk Courses AM marked courses start at AET 9:00am and finish at AET 1:30pm and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) PM Marked Splunk Courses PM marked courses usually starts at AEDT 12:00pm or AEST 11:00 am and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) Introduction to Dashboards - Upcoming Schedule We don’t have any products to show here right now.

Splunk Education, Training and Professional Services Provider Users The User Learning path takes you from investigative keyword searches to creating rich reports and visualisations to becoming a Splunk search ninja! Notice : The following courses; Using Splunk, Searching and Reporting with Splunk, Creating Splunk Knowledge Objects, and Splunk Infrastructure Overview are now replaced with Splunk Fundamentals 1 and Splunk Fundamentals 2. User Track Courses Splunk Fundamentals 1 Splunk Fundamentals 2 Splunk Fundamentals 3 Creating Dashboards with Splunk Advanced Searching and Reporting Splunk for Analytics and Data Science Splunk Infrastructure Overview Advanced Dashboards and Visualisations One of the best trainers I've had - keeps content relevant & explains the tasks in easily understood language. Extremely knowledgeable in all fields relating to the content. Well paced & accommodated to everyone's questions & progress. Participant, Splunk Enterprise Data Administration

Splunk Education, Training and Professional Services Provider Learning Tracks Certification Tracks provide comprehensive education for Splunk customer and partner personnel according to their areas of responsibility. Classes are designed for specific roles such as User, Splunk Administrator, Application Developer or Architect. Power Users The Ingeniq learning path for power users will not only help you to search, create alerts, rich reports and visualisations but also be able to create and manage knowledge objects used across your organisation. Explore Track App Developers Harness the power of Splunk’s Web Framework. Create rich, interactive dashboards and forms and package Splunk knowledge objects for distribution across your organisation. Explore Track Enterprise Security End Users This path prepares security practitioners to use splunk Enterprise Security (ES). Attendees will use ES to identify and track security incidents, analyse security risks, use predictive analytics and threat discovery. Explore Track Architects Learn concepts and best practices for sizing, scaling, and deploying Splunk across your organisation. These classes prepare you to design and implement a Splunk distributed deployment. Explore Track Splunk Enterprise Administrators Whether you’re responsible for a single Splunk instance or a massive distributed deployment, our Administrator curriculum teaches you the concepts, tasks, and best practices to keep your Splunk easy. Explore Track Enterprise Security Administrators Learn to install, configure, manage, and use the Splunk App for Enterprise Security. This path is intended for Splunk Administrators that manage Splunk Enterprise Security deployments. Explore Track One of the best trainers I've had - keeps content relevant & explains the tasks in easily understood language. Extremely knowledgeable in all fields relating to the content. Well paced & accommodated to everyone's questions & progress. Participant, Splunk Enterprise Data Administration

Splunk Fundamentals 3 Training Legacy Course Information delivered by INGENIQ Splunk Fundamentals 3 - Legacy Course Information The Splunk Fundamentals 3 course focuses on additional search commands as well as advanced use of knowledge objects. Major topics include advanced statistics and eval commands, advanced lookup topics, advanced alert actions, using regex and erex to extract fields, using spath to work with self-referencing data, creating nested macros and macros with event types, and accelerating reports and data models. This Fundamentals 3 Splunk Courses have been replaced by shorter Splunk single-subject course modules , this page have been retained to assist customers. To see which courses have replaced Splunk Fundamentals 3 and book the equivalent course click here Single-subject to Multi-subject course mapping. Alternatively contact one of our Training Consultants on 1300 245 802 or email sales@ingeniq.com.au Excellent Trainer, Have had the same instructor twice now & he is one of the best i have had. Thank you! Participant, Splunk Fundamentals 3 Splunk Fundamentals 3 - Course Topics Advanced Statistical Commands Advanced eval Commands Advanced Lookups Alert Actions Advanced Field Creation and Management Working with self-Describing Data and Files Advanced Macros Using Acceleration Options Class Format Instructor-led lecture with labs. Delivered via virtual classroom or at your site Course Prerequisites Splunk Fundamentals 1 Splunk Fundamentals 2 Related Certifications Splunk Core Certified Advanced Power User Splunk Core Certified Consultant Splunk Fundamentals 3 - Audience Anyone whose role requires them to create complex search queries, advanced data models and reports with Splunk who have limited exposure to regular expressions. Previous attendees have included Consultants, IT Administrators and Business Intelligence/Business Analysts. After completing Splunk Fundamentals 3 course you will be able to Learn about and use KV store collections and scripted lookups in search and alerts. Inline extractions best practices using regex Working with structured data sources eg JSON and XML and table formatted events. Learn how and when to use report acceleration and summary indexing Learn how to seriously improve performance using tstats and data model acceleration. Splunk Fundamentals 3 - Course Objectives Module 1: Exploring Statistical Commands Performing statistical analysis with functions of the stat command Using fieldsummary Using appendpipe Using eventstats Using streamstats Module 2: Exploring eval Command Functions Using conversion functions Using data and time functions Using string functions Using comparison and conditional functions Using informational functions Using statistical functions Using mathematical functions Using cryptographic functions Module 3: Exploring Lookups Including and excluding events based on lookup values Using KV Store lookups Using external lookups Using geospatial lookups Using database lookups Understanding best practices for lookups Module 4: Exploring Alerts Referencing lookups in alerts Outputting alert results to a lookup Logging and indexing searchable alert events Using a webhook alert action Module 5: Advanced Field Creation and Management Using regex Using the erex command Using the rex command Identifying regex best practices Module 6: Working with Self-Describing Data and Files Using the spath command Using the eval command with the spath function Extracting fields from table-formatted events with multikv Module 7: Advanced Search Macros Using nested search Macros Previewing search macros before executing Using Tags and event types in search macros Module 8: Using Acceleration Options: Reports and Summary Indexing Using report acceleration Using Summary indexing Module 9: Using Acceleration Options: Data Models and tsidx Files Exploring data models using datamodel command Using data model acceleration Working with tsidx files using the tstats command Splunk Course Schedules and Timezones Ingeniq Course are delivered live and in English and provide access to customers spanning multiple timezones. Dates and times displayed for each course are relative to Australian Eastern Time (AET). AM Marked Splunk Courses AM marked courses start at AET 9:00am and finish at AET 1:30pm and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West) PM Marked Splunk Courses PM marked courses usually starts at AEDT 12:00pm or AEST 11:00 am and are optimal for customers in the following countries and areas; UTC+10 including Australia (East Coast) UCT+11/+12 including New Zealand and the Pacific Islands UTC-8 including USA (West Coast), Canada (West Coast) UTC-7 including USA (Mid West)