SIEM-1

You have just been hired as an SOC Analyst by Vandalay Industries, an importing and exporting company. Vandalay Industries uses Splunk for their security monitoring and have been experiencing a variety of security issues against their online systems over the past few months. You are tasked with developing searches, custom reports and alerts to monitor Vandalay's security environment in order to protect them from future attacks. System Requirements You will be using the Splunk app located in the Ubuntu VM. Your Objective Utilize your Splunk skills to design a powerful monitoring solution to protect Vandaly from security attacks. After you complete the assignment you are asked to provide the following: Screen shots where indicated. Custom report results where indicated. Topics Covered in This Assignment Researching and adding new apps Installing new apps Uploading files Splunk searching Using fields Custom reports Custom alerts Let's get started!