Deploying Searching and Reporting in Splunk
Speaker Bio:
Mike Villeneuve has worked as an Information Security Engineer at Cisco for the past 5 years. His current role is in the Foundational Architecture and Security Tech group, whose focus is securing Cisco DevOps environments. His previous role was in the Government Trust and Tech group. One of his duties on that team was deploying and managing a Splunk environment; he will be sharing some of that experience with you in this course.
LinkedIn: https://www.linkedin.com/in/michael-villeneuve/
Twitter: https://twitter.com/thevillem
Course Description:
In this course, we’ll cover Splunk distributed deployment environments. This will include Splunk forwarder installation, remote log forwarding, deployment classes, and applications. Distributed Splunk environments are commonly found in enterprise environments to help gather and manage logs from multiple hosts, network devices, and other parts of your environment.
We’ll leverage Amazon Web Services with Terraform to help with hosting and building the hosts.
In order to get the most out of this course, please come prepared with the following items;
- Amazon Web Services Account – Instructions Here
- An AWS Access Key – Instructions Here
- This account will need administrator access in IAM.
- SplunkBase Account – Link Here
- Terraform – Link Here
For more information about educational opportunities email education@raleighissa.org
January 2019 Back to Basics – Security Policy Basics
PreviousRaleigh ISSA January, 2019, Meeting Pictures – RTP Headquarters
Next