We use cookies to ensure that we give you the best experience on our website. By continuing your visit on the website, you consent to the use of the cookies. If you want to find out more about the cookies we use, you can access our Privacy Policy.
OK

CIM & Data Models in Splunk ES

Pune Splunk User Group

Thursday, June 24, 2021, 12:30 – 2:00 PM UTC

47
RSVPs

About this event

Please join us on Thursday, June 24th, 06:00 PM IST for Pune Splunk User Group meetup. Suman & Team is going to talk about the importance of CIM & Data Models in Splunk Enterprise Security. Below the basic agenda of the meetup:

1. What is CIM

2. Use CIM to Normalize data

3. Which data models are part of CIM

4. Demo on CIM validator

5. Demo on CIM tags & Event types

6. How to tune CIM data models to reduce false positives

Please RSVP to block your calendar and receive future updates/Events by Pune Splunk User Group.

Also, join Splunk User group on Slack using splk.it/slack and find us in #splunk-pune-user-group channel for collaborations and Q&A for Pune Splunk User Group.

When

When

Thursday, June 24, 2021
12:30 PM – 2:00 PM UTC

Agenda

12:30 PMSoft Start
12:40 PMSession on CIM & Data models