When: April 15th 8:30 AM - 2:30 PM
Where: Downtown Des Moines
What: Splunk: Boss of The SOC (BOTS)
Please find below more information on the upcoming Boss of the SOC (BOTS) event on April 15th hosted in Downtown Des Moines:
Splunk Boss of The SOC (BOTS) Event Overview
The Boss of The SOC (BOTS) event is a hands-on, interactive workshop designed to immerse participants in real-world security operations center (SOC) scenarios using Splunk. It leverages a popular dataset based on simulated cyber attack scenarios to provide a practical learning experience for security analysts and SOC teams.
Key Features:
• Realistic Security Scenarios: Participants investigate incidents such as Advanced Persistent Threats (APT) and ransomware attacks using Splunk, mirroring challenges faced in actual SOC environments.
• Hands-On Learning: The workshop includes guided exercises where users develop searches and queries in Splunk to answer investigative questions and advance their incident response.
• Data Sources: The event uses comprehensive datasets including network and host data from sources like Suricata, Fortinet NGFW, Windows Event Logs, Microsoft Sysmon, and Splunk for Stream.
• Target Audience: Designed for all roles within security operations teams responsible for monitoring, threat detection, and incident response.
• Workshop Duration: Typically runs 4 to 6 hours depending on the module, providing ample time for participants to engage with the data and tools.
• Expert Guidance: Led by Splunk security subject matter experts, offering insights into both Splunk usage and security best practices.
• Benefits: Enhances participants' ability to ask the right investigative questions, identify relevant data, and develop effective Splunk searches to detect and respond to threats.
• Winners: Winning participants will be presented with apparel and/or tech accessories.
For more information and/or to signup, please email kohahn@cisco.com.
Thank you!
Korey Hahn
Regional Sales Manager - Splunk
Des Moines, IA