Splunk Search Expert Fast Start (SE-FS) - english - virtual



Kursarrangør: Glasspaper AS
Sted: Nettkurs / Nettstudie
Hele landet
Type:Nettkurs og nettstudie
Studie / yrkesutdanning
Undervisningstid: kl 09:00 - 17:00
Varighet: 3 days
Pris: 34.500
Neste kurs: 09.11.2026 | Vis alle kursdatoer

We provide virtual course about Splunk Search Expert Fast Start (SE-FS) in english. This "Fast Start" course covers over 60 commands and functions and prepares students to be search experts.

Course description:
Students will learn how to effectively utilize time in searches, work with different time zones, use transforming commands and eval functions to calculate statistics, compare field values with eval functions and eval expressions, manipulate output, normalize fields and field values, use lookups and subsearches to enrich results, and correlate and filter data from multiple sources.

Course objectives:
• Working with Time (WWT)
• Statistical Processing (SSP)
• Comparing Values (SCV)
• Result Modification (SRM)
• Leveraging Lookups and Subsearches (LLS)
• Correlation Analysis (SCLAS)

Course outline:
Module 1 - Working with Time:
• Searching with Time
• Formatting Time
• Comparing index Time versus Search Time
• Using Time Commands
• Working with Time Zones

Module 2 - Statistical Processing:
• What is a Data Series
• Transforming Data
• Manipulating Data with eval
• Formatting Data

Module 3 - Comparing Values:
• Using eval to Compare
• Filtering with where

Module 4 - Result Modification:
• Manipulating Output
• Modifying REsults Sets
• Managing Missing Data
• Modifying Field Values
• Normalizing with eval

Module 5 - Leveraging Lookups and Subsearches:
• Using Lookup Commands
• Adding a Subsearch
• Using the return Command

Module 6 - Correlation Analysis:
• Caclulate Co-Occurance Between Fields
• Analyze Multiple Datasets

Target audience:
Anyone who want virtual course about Splunk Search Expert Fast Start (SE-FS)

Prerequisites:
To be successful, students should have a solid understanding of the following:
• How Splunk Works
• Creating Search queries
• Knowledge objects (specifically reports, lookups, and fields)

OR have taken the following:
• Foundation Fast Start OR
• What is Splunk? (Retired), Intro to Splunk (ITS) and [Using Fields (SUF)

Language:
• English course material and english speaking instructor

Course material:
The course fee includes digital course documentation and hands-on labs