I learned Splunk for the role I have now. Jumping into an already built environment is rough because everyone has already contributed to the fields. Figuring out the already added fields is a struggle in itself and using a wildcard search would give you everything meaning nothing 😮💨
Learn Splunk from Kenneth at ECA here: mailchi.mp/techualconsulting.com/eca-academy
I learned Splunk for the role I have now. Jumping into an already built environment is rough because everyone has already contributed to the fields. Figuring out the already added fields is a struggle in itself and using a wildcard search would give you everything meaning nothing 😮💨
This is right on time. I have an interview on Wednesday for a cybersecurity position. One of the job responsibilities is triaging alerts.
Check out my SOC interview questions on my LinkedIn page
Good stuff. Preciate your time. #keep going..
Thanks bro
Splunk is ok you can look at the raw logs using it but they are others.
@@Jupiterxice lol
@@TechTualChatter whats funny?
@@Jupiterxice your comment is funny. You enrich logs with SIEMs
@@TechTualChatter Well the raw logs or logs get fwd to splunk depending on the your set up.
What about Sumologic?
I’ve never used that
Ok. I just started working there and I was curious to hear how you thought it stacks up. Maybe you’ll run into a use case for it in the near future.