Monitoring & More with Splunk:
Will the (RMF) Circle Be Unbroken
Event Details: Everyone is invited to the 26 January free 9:30-11:30 morning meetup of our Information Systems Security Association Northern Virginia chapter (ISSA NoVa) Risk Management Framework (RMF) LifeBoat. We can arrive 30 minutes before and stay 30 minutes after our meeting (9am- 12pm).
On this Saturday ONLY, we will meet at a different location than our usual
wonderful Northern Virginia Community College (NVCC) Reston Center. We will instead meet at Capital Baptist Church. It is close to 66 and the 495 beltway.
There’s lots of parking there. We will meet in Rooms 206 and 208, which can be combined into one large room with two screens. The address is:
3501 Gallows Road, Annandale, VA
On this Saturday ONLY, we will meet at a different location than our usual
wonderful Northern Virginia Community College (NVCC) Reston Center. We will
instead meet at Capital Baptist Church. It is close to 66 and the 495 beltway.
There’s lots of parking there. We will meet in Rooms 206 and 208 that can be
combined into one large room with two screens. The address is:
3501 Gallows Road, Annandale, VA
On this Saturday ONLY, we will meet at a different location than our usual
wonderful Northern Virginia Community College (NVCC) Reston Center. We will
instead meet at Capital Baptist Church. It is close to 66 and the 495 beltway.
There’s lots of parking there. We will meet in Rooms 206 and 208 that can be
combined into one large room with two screens. The address is:
3501 Gallows Road, Annandale, VA
1821 Michael Faraday Drive, Reston, VA 20190
Note: The doors to the building open at 8:00am
Please RSVP SOONEST since space is likely to be limited. Meetup members and nonmembers can RSVP on our “Risk-Management-Framework-LifeBoat” Meetup site or by calling 703-402-4379.
Abstract: The last step of the Risk Management Framework (RMF) is to monitor security controls. Splunk is a software platform that can rapidly ingest and search through large amounts of data for various purposes such as cybersecurity incident detection and monitoring of systems. This presentation will provide a high-level introduction and overview of Splunk architecture, operation, use cases, etc. For reference at your leisure, see below for the link to a page with descriptions and links for three free Splunk training online courses. For reference, see below for the Splunk site link and related information for three free online Splunk courses so you can learn more at your own pace. The courses are accessible anytime, anywhere.
Presenter’s Bio: Mr. Joseph Wang has over 15 years of IT experience including Splunk dashboard development, Oracle database administration, Linux and system configuration of selected controls for PCI audit compliance, and project management. He holds an MBA and certifications including Certified Information Systems Security Professional, AWS Solutions Architect – Associate, and Splunk Administration 6.
***** Free Splunk Training Online Courses – Site Link and Related Information *****
https://www.splunk.com/en_us/training/free-courses/splunk-fundamentals-1.html
Click on the course titles to see the short description, detailed course description, and register link for the free online Splunk courses so you can learn more at your own pace. Here are the short descriptions for courses are accessible anytime, anywhere.
O Splunk Fundamentals 1
This course teaches you how to search and navigate in Splunk, use fields, get statistics from your data, create reports, dashboards, lookups, and alerts. Scenario-based examples and hands-on challenges will enable you to create robust searches, reports, and charts. It will also introduce you to Splunk’s datasets features and Pivot interface.
O Splunk User Behavior Analytics
In this course we tour the UBA interface, look at how UBA defines threats, discuss steps to take when responding to possible threats and how to triage false positives.
O Splunk Infrastructure Overview
This self-paced course gives users an overview of the Splunk Enterprise infrastructure. Users get a high-level look at how to grow a Splunk deployment from a single instance to a distributed environment. With tips and best practices for deploying, extending and integrating Splunk while showing the user what is happening behind the scenes.
Other Logistics:
Everyone may bring in your own snacks and drinks to the “brunch lunch” 9:30am-11:30am meeting. Some people also informally get together for “after the meeting” lunch together at a nearby restaurant.
Besides earning Professional Development Units (PDUs) for participating our ISSA Northern Virginia Chapter (ISSA NoVa) RMF LifeBoat Group meeting, we all receive the encouragement and help we need for our cyber security professional growth. The friendly interactive presentations by our members of the meetup always lead to lively respectful discussions. Members always take away information that they that can be applied on the job in the following weeks! In additional our LifeBoat group meetings provide opportunities for the all-important professional networking. If you have a vexing problem, share with like-minded security professionals. They may have already successfully developed a way forward to resolve it.
+ Google Calendar + iCal Export
Details
Date: January 26 Time: 9:30 AM – 12:00 PM Event Categories: Study Group, upcoming
Venue
Capital Baptist Church
3501 Gallows Road
Annandale,
VA
United States
+ Google Map