Splunk [Enterprise Cloud and Splunk Cloud Services] 2019 .conf Videos w/ Slides

So you saw the new Splunk Dashboards framework and PNG export on the main stage and want to know more? You want to understand what this will mean for your Enterprise, Cloud, ITSI, ES and/or IAI deployments? You've come to the right place. In this session, we'll provide an overview and extended demo of the new dashboarding framework and context export service. We'll cover what's different about this new framework in comparison to both SimpleXML and Glass Tables. We'll also cover the support roadmap for Simple XML and Glass Tables as well as what you need to know in order to migrate. If you're planning to attend any of the other dashboard deep dive sessions, we recommend attending this one first. Speaker(s) Nachi Mistry, Sr. Engineering Manager, Splunk Miranda Luna, Product Management, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1815.pdf?podcast=1577146254 Product: Splunk Enterprise, Splunk IT Service Intelligence, Splunk Developer Cloud Track: Foundations/Platform Level: Intermediate

Seeking guidance to help create amazing Splunk dashboards? Want to wow your team as well as your execs and become THE dashboard master? Come learn about Splunk's new dashboarding capabilities, and experience rich dashboard examples as well as the art of the possible. We will demo a variety of dashboards, and we’ll share tips and tricks, tutorials and templates to ensure you can build your own. Attend this session and you’ll be on the path to becoming a Splunk dashboard ninja in no time.  Speaker(s) Stephen Luedtke, Sr. Data Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1933.pdf?podcast=1577146254 Product: Splunk Enterprise, Splunk Cloud, Splunk IT Service Intelligence Track: Foundations/Platform Level: Good for all skill levels

Vectra customers and security researchers respond to some of the world’s most consequential threats. And they tell us that there’s a consistent set of questions they must answer when investigating any attack scenario.Yet, security data today is broken and unable to effectively answer those questions. It is either incomplete or storage and performance intensive. Most teams don’t have the information necessary to properly answer the questions required to support their use cases; whether it be for threat hunting, investigations or supporting custom tools and models.In this session, hear about real-world use cases where security teams use machine learning engines to derive unique security attributes and how it is embedded into security workflows. Speaker(s) Kevin Sheu, Vectra Slides PDF link - https://conf.splunk.com/files/2019/slides/SEC2589.pdf?podcast=1577146254 Product: Splunk Enterprise, Splunk Cloud Track: Security, Compliance and Fraud Level: Good for all skill levels

Do you wish to modify your incoming data before ingestion? How about using Splunk's real-time search feature more efficiently? Splunk Data Stream Processor (DSP) can help. DSP allows you to analyze, transform and act on your data in real-time before it is indexed by Splunk indexers.Join us in this session to learn more about how you can use DSP as an alerting and action engine and transform your incoming data in real-time! Speaker(s) Dirk Nitschke, Staff Sales Engineer, Splunk Bashar Abdul-Jawad, Principal Software Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN2033.pdf?podcast=1577146254 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Intermediate

How about having an immersive data experience on your mobile device via augmented reality? Think about being in a data center where you just need to scan the QR code/NFC tag on your stacked devices to know the critical device metrics on your mobile. This session will show you how Splunk AR can be used to visualize the dashboard data that users create on the Splunk platform. Visit this session and you will learn how to create apps, dashboards and immersively reflect the data on your mobile using Splunk AR.  Speaker(s) Sulabh Agarwal, Network Consulting Engineer, Cisco Systems Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1486.pdf?podcast=1577146254 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Intermediate

This session will be all about exciting Foundations/Platform related content that we'll announce .conf19. We can't tell you about it now, but trust us — it's awesome.  Speaker(s) Alex James, Sr. Principal Architect, Splunk Andrew Peters, Senior Principal Software Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1740.pdf?podcast=1577146254 Product: Splunk Cloud Track: Foundations/Platform Level: Good for all skill levels

This session will detail new innovations and features included in the .conf19 release of Splunk Cloud and Splunk Enterprise. This is one of the most well-attended .conf19 sessions. Be sure to add it to your agenda. Speaker(s) Sundeep Gupta, Director, Splunk Cloud, Splunk Skip Bacon, VP, Enterprise Products, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN2516.pdf?podcast=1577146254 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Good for all skill levels

This session will be all about exciting Foundations/Platform-related content that we'll announce at .conf19. We can't tell you about it now, but trust us — it's awesome. Speaker(s) Geoffrey hendrey, Sr Principal Engineer, splunk Aditi Nath, Software Development Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1735.pdf?podcast=1577146254 Product: Splunk Enterprise, Splunk Developer Cloud Track: Foundations/Platform Level: Intermediate

Too many tools, too many silos between data and collaboration, Outages take too long to Identify Root Cause and There is So Much Noise Abstract:  TIAA had a goal – to replace Legacy Monitoring with an AIOps approach.  What did that mean?  They had to find a better way to break down the silos between data and collaboration and start focusing attention on the right things with the right people.  Monitoring had become about MTTI (mean time to innocence) instead of fixing the fight issues more quickly and finding a way to move from ‘reacting’ to outages to ‘preventing’ them.  ITSI has become the ‘aggregator’ of monitoring data and will help TIAA move from the old Dinosaur Approach of being event driven to the AiOps approach of Service and Priority Driven.  Learn about the Journey, the Lessons Learned, and the Best Practices to Ensure Success.   Speaker(s) Emily Duncan, ITOA Specialist, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/IT1346.pdf?podcast=1577146254 Product: Splunk Enterprise, Splunk Cloud, Splunk IT Service Intelligence Track: IT Operations Level: Good for all skill levels

Never used Splunk before, have no Splunk admins and you’ve just bought Splunk Enterprise Security? That was us, and now we're using Splunk in ways that we could've only dreamed of using IBM QRadar. In this session we’ll share our implementation story, how we worked with Splunk to accelerate our learning curve, and how we went from 0 to 3TB in 3 months with no Splunk admins. We'll also cover how Splunk allows us to onboard data sources that we couldn't with QRadar. Speaker(s) Nick Ho, Sales Engineer, Splunk Ross Rutherford, Information Security Engineer, Western Union Slides PDF link - https://conf.splunk.com/files/2019/slides/SEC1264.pdf?podcast=1577146254 Product: Splunk Cloud, Splunk Enterprise Security Track: Security, Compliance and Fraud Level: Beginner

Does your small team also run a full-featured SOC that supports a global company? In this session we’ll show you how we’ve used Splunk Cloud and Splunk Enterprise Security to bring together all the relevant security intelligence from our technology stack, transforming our security operations from ad hoc and tactical to strategic and compliance-driven. We’ll discuss key takeaways from our journey, such as the benefits of ingesting data properly from the outset so you can reap the rewards as you scale; how we leverage multiple use cases out of single data sources; and how we created easy-to-understand visualizations that convey our firm’s security posture to management. Speaker(s) Edward Asiedu, Senior Professional Services Consultant, Splunk Craig Gilliver, Head Of SecOps, Johnson Matthey Slides PDF link - https://conf.splunk.com/files/2019/slides/SEC1511.pdf?podcast=1577146254 Product: Splunk Cloud, Splunk Enterprise Security, Phantom Track: Security, Compliance and Fraud Level: Good for all skill levels

“There’s always a tension between one’s individual self—one’s million data points—and the statistical breakdown of your existence. It’s the awareness of this tension that I navigate each day.” I wrote this in response to the reveal that black employee representation across Splunk’s U.S. offices was only 3%. #RepresentationMatters and having a “seat at the table” are critical frameworks and tactics to improve diversity, and this panel discussion brings together a diverse cross-section of Splunkers to further explore these topics. Specifically, panel participants will use there statistical data points (e.g., 3%) as a foil to reflect on how they’ve leveraged their individual motivations to push for and create change within their particular role. We intend for the audience to leave stirred by the ideas this conversation will open up, and moved to ask themselves what they can do to create change or elevate others who’ve been underrepresented in their workplace. Speaker(s) Keegan Dubbs, Senior Product Manager, Splunk Kara Gillis, Director of Product Management, Splunk Christopher Russell, Product Marketing Manager, Splunk Marvin Green, Principal Product Manager, Mobile, Splunk Alyssa Niles, Product Marketing Manager, Splunk Vidhi Agrawal, Principal Product Manager, Core products portfolio, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FND1745.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Good for all skill levels

To tame an event queue that's ballooning out of control, you need to know first which rules and data sources are generating a disproportionate number of alerts, and second the security value you're getting from those rules and data sources. Any changes made to rules or telemetry analyzed without that knowledge risk making your organization more vulnerable. In this session we'll discuss how Splunk empowers us to perform advanced analytics on everything from alert conversion rates to human time expenditure on alerts so that we can optimize all processes related to alerting. As long as we know what to measure and where to look, Splunk can help us tune our security operations centers to reduce monotony and false positives without diminishing our ability to detect actual threats. Speaker(s) Keshia LeVan, Detection Engineer, Red Canary Slides PDF link - https://conf.splunk.com/files/2019/slides/SEC2105.pdf?podcast=1577146253 Product: Splunk Cloud, Splunk Machine Learning Toolkit Track: Security, Compliance and Fraud Level: Advanced

Splunk’s metric index has changed a lot since we launched it back in Splunk Enterprise 7.0. In this latest iteration, we have upgraded our data model and metric index to natively ingest and store multiple metrics in a single event to further reduce its storage footprint and lower total cost of ownership. This session with provide a deep-dive into our latest metric index layout, its evolution since introduction in Splunk Enterprise 7.0, and how it varies from a log index storage layout. Speaker(s) Murugan Kandaswamy, Senior software engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN2268.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Advanced

Curious about how to efficiently onboard and analyze metric data in Splunk? This talk will teach you the basic design and best practices for Splunk's Metric Indexes. Since they were introduced two years ago, Splunk's metric capabilities have quickly evolved. Now there is support for rollups, richer logs-to-metrics conversion capabilities, and a more efficient data representation formats. We also will discuss planned future enhancements and how you may best prepare for them today. Speaker(s) Steve Zhang, Chief Scientist, Splunk ILAM Siva, Product Management, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1266.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Beginner

Transform your SOC into a Cyber Fusion Center. Learn how to address alert fatigue and cut down on missed alerts by implementing AI technology in your SOC. Speaker(s) Lesly White, Sr. Director, Cyber Operations SIEM and Sensor, Optiv Slides PDF link - https://conf.splunk.com/files/2019/slides/ITS2583.pdf?podcast=1577146253 Product: Splunk Cloud, Splunk Enterprise Security Track: IT Operations Level: Good for all skill levels

You think data ingestion into Splunk is cumbersome today? Don’t enjoy writing Technology Add-ons (TA) for specific use cases? Then this talk is for you!  We will walk through data ingestion using the data sources supported by the new Splunk Investigate wizard. This allows users of all levels to configure their data source and perform various manipulation functions on the ingested data to make sure it meets their use case. We will also go over the guiding principles of the underlying Data Stream Processing (DSP) pipeline which empowers the user to add their own customizations and send data to a variety of destinations.   We will compare this with current Splunk Enterprise data ingestion process by configuring a TA for a specific use case and then alter the ingested data to the desired format before sending it to an index. The user will be able to draw a contrast between the two approaches and see how it does not have to take up to 6 weeks to acquire and prepare data for analytics in Splunk. We hope this session leaves the user excited about data ingestion and prep.    Speaker(s) Asmita Puri, Sr. Software Engineer, Splunk Eric Sammer, Distinguished Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/DEV1140.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Developer Cloud Track: Developer Level: Intermediate

Come join two old school Splunkers as we talk about our journey building our first app on Splunk Developer Cloud. We'll discuss the fun parts and the foibles, and hopefully show you that you can teach an old Pony new tricks. Speaker(s) Raanan Dagan, Principal SE Architect, Splunk Kyle Champlin, Senior Product Manager, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/DEV1377.pdf?podcast=1577146253 Product: Splunk Cloud, Splunk Developer Cloud Track: Developer Level: Intermediate

In this session, we’ll explore how companies can adapt to multi-cloud environments using Google Cloud Anthos and Splunk Enterprise to maintain end-to-end visibility into these hybrid workloads. Google Kubernetes Engine (GKE) On-Prem part of Anthos brings the efficiency, speed, and scale of cloud to manage Kubernetes clusters in your datacenter. Combined with Splunk Connect for Kubernetes, we’ll show you how you get a single pane of glass to manage, monitor & secure your Kubernetes clusters across your organization. We’ll also do a deep dive on Google Cloud Platform (GCP) security controls and how to export security findings from Cloud Security Command Center and cloud asset changes from Cloud Asset Inventory all into Splunk Enterprise for further forensic analysis, to accelerate incident resolution and ensure compliance. Speaker(s) Alex Cain, Sr. Product Manager | Getting Data In, Splunk Nic Stone, Solutions Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN2132.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Intermediate

Do you want to be an ally but don't know where or how to start? Diversity and inclusion in technology workplaces is not a women’s issue, or an issue relevant only to other underrepresented groups. Diversity and inclusion are business issues, and they are human issues. We know that businesses profit from the many benefits that diverse perspectives bring to innovation and company competitiveness. In this panel discussion, we aim to facilitate a conversation to better understand the barriers to advocacy, to promote best-practices for effective advocacy, and to enable sharing of first-hand experiences of successful advocacy. Speaker(s) Ammar Maraqa, SVP Strategy and Corp Dev, Splunk Asmita Puri, Sr. Software Engineer, Splunk Marvin Green, Principal Product Manager, Mobile, Splunk Josh Klahr, VP of Product Management, Splunk Robin Barre, Senior Director of Engineering, Splunk Katrina Reid, VP Technical Program Management, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FND1829.pdf?podcast=1577146253 Product: Splunk Developer Cloud Track: Foundations/Platform Level: Good for all skill levels

You knew it had to happen, Splunk is migrating to Python 3! We want this migration to be as painless as possible for apps and scripts developers, but it necessitates some compatibility requirements. This talk will dive into what parts of your apps and scripts will have to become Python 3 compatible. You’ll explore approaches to using Python community supplied backporting libraries as well as Python 2/3 compatible native syntax. By examining common and uncommon gotchas we found while migrating Splunk Enterprise, we will make sure you are prepared to run your code in the future generations of Splunk Enterprise! Speaker(s) Cory Burke, Principal Software Engineer, Splunk Samat Jain, Senior Software Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/DEV1173.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: Developer Level: Advanced

Join this session to learn the do’s and dont’s of rolling an effective cloud security visibility platform for a global organization. We will cover topics such as why we moved away from our previous SIEM provider, deploying and managing a cloud-based SIEM, and effectively using a third party organization to provide tier 1 and 2 event and incident support. Speaker(s) Simon O’Brien, Principal Sales Engineer, Splunk Grant Slender, Chief Information Security Officer, QIC Slides PDF link - https://conf.splunk.com/files/2019/slides/SEC1205.pdf?podcast=1577146253 Product: Splunk Cloud, Splunk Enterprise Security, Splunk Machine Learning Toolkit, AI/ML Track: Security, Compliance and Fraud Level: Intermediate

Women are underrepresented across all levels of the technology industry. Find out how these four female leaders advanced their careers to lead the industry. Join us for an in-depth discussion about female diversity and the importance of including women in leadership from those who've made it to the top. Speaker(s) Suzanne McGovern, Chief Diversity Officer & Head of Talent, Splunk Jane Hite-Syed, NGS CIO, National Government Services Patty Morrison, Splunk Board Member, Splunk Monika Panpaliya, Senior Director, Digital Common Services, Boeing Carol Jones, CIO, Sandia National Laboratories Slides PDF link - https://conf.splunk.com/files/2019/slides/FND1268.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud, Splunk Enterprise Security Track: Foundations/Platform Level: Good for all skill levels

Data is growing exponentially; however IT budgets are not.  Growth in internal use cases and additional data sources can put organizations under intense pressure to manage spiraling costs. The good news is that help is on the way. We will show how to size and configure Splunk SmartStore to yield significant cost savings, for both current and future data growth. In addition, learn how to configure the Splunk deployment for optimal search performance. Spare a few minutes of your time at .conf19 and see it yield big returns for your organization. Speaker(s) Bharath Aleti, Director, Product Management, Splunk Jon Rust, Splunk Architect, ADP Jane Jokl, Offering Manager, IBM Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1435.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Good for all skill levels

Dive into the inner workings of SmartStore. In this talk we'll go over how SmartStore works internally with ties to Indexer Clustering, and what decisions the CacheManager makes, e.g., when do we upload/download from the remote storage, etc. We'll also go over the performance numbers that we've seen! Speaker(s) Da Xu, Senior Engineering Manager, Splunk Bill Ern, Splunk Product Owner, Lockheed Martin Slides PDF link - https://conf.splunk.com/files/2019/slides/FN2168.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Intermediate

Endpoint security is more than detecting malware.  Most insider threats, however, don’t involve malware, but other security issues associated with the user and endpoint.  Learn how Cisco’s own InfoSec team uses Cisco Endpoint Security Analytics Built on Splunk and Cisco NGFW integration to increase its endpoint security and threat visibility. Speaker(s) Scott Pope, Cisco Slides PDF link - https://conf.splunk.com/files/2019/slides/SECS2899.pdf?podcast=1577146253 Product: Splunk Cloud, Splunk Enterprise Security, Phantom Track: Security, Compliance and Fraud Level: Good for all skill levels

Have you ever wondered how people with disabilities use Splunk ? Ever wondered what it would be like to perform searches in Splunk using a screen reader or a speech recognition application ? Then come to this session to learn about the enhancements made to the Splunk platform that makes it easy to use with assistive technology tools. We will delve into the experience of performing investigation in Splunk using a screen reader and discuss the enhancements made to the platform to make this a superior experience. You will learn about the work we are doing at Splunk to address compliance to the WCAG, Section 508, and EN 301 549 accessibility standards. Finally you will hear how our customers are using Splunk with assistive technology tools to accomplish their day-to-day work. Speaker(s) Kumar Varun, Sr. Product Manager, Splunk Sean Kugler, Accessibility Analyst, Northern Arizona University Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1986.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Good for all skill levels

You already know Splunk is amazing, but now you have to prove this to someone in your organization before you get the keys to your Splunky Supercar. Good news - we've got a solution that gets your data - not fake data - into Splunk Cloud, and makes it immediately accessible, useable and valuable to everyone in your organization. You'll be able to kick-the-tires on your new data analytics engine for 30 days at no cost. Attend this session to learn more.... Let me introduce you to the Autobahn, Splunk-style. Speaker(s) Ken Tallman, Sr Sales Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1452.pdf?podcast=1577146253 Product: Splunk Cloud, Splunk Enterprise Security, Splunk IT Service Intelligence Track: Foundations/Platform Level: Beginner

This session will cover how to overcome any missing insights in services and processes in Splunk Cloud. You'll learn how to develop alerts and dashboards to show performance and infrastructure health, and an API framework to retrieve data from the cloud infrastructure. We also will show you how to automate retrieval of all entry points to the Splunk on-premises infrastructure, and monitor connections to the intermediate forwarders, deployment servers, HEC and DBX servers, and syslog. In addition, we will address the lack of standardization principles for your on-premises Splunk Infrastructure, how to create gold standard alerts and dashboards, and how to create scripted inputs to gather system information. Finally, we will show you how to address the lack of a centralized view for managing your Splunk deployment server infrastructure, and how to automate the retrieval of deployment clients, server classes, and TA’s from deployment servers and feed the output to Splunk Cloud. Speaker(s) Ray Mateo, Solutions Engineer, Liberty Mutual Michael Anderson, Senior Software Engineer, Liberty IT Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1995.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Intermediate

Are you considering moving to Splunk Cloud? This session will show you the benefits of migrating to Splunk Cloud and letting Splunk do all the heavy lifting so you can focus on getting value from your data. We also will go into what makes the Splunk Cloud service unique. Speaker(s) Kyle Hourihan, Principal Cloud Architect, Splunk Kam Amir, Cloud Architect, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1647.pdf?podcast=1577146253 Product: Splunk Cloud, Splunk Enterprise Security, Splunk IT Service Intelligence Track: Foundations/Platform Level: Beginner

Many Fortune 500 companies use Pivotal Cloud Foundry to push its high-quality code into production faster. While this helps companies enforce enterprise logging and application development standards, the traditional monitoring tools used to monitor development environments become the bottleneck because they are not architected to handle a firehose-nozzle connection. Learn how to use the new Splunk ITSI module for PCF, along with the new version of Splunk Firehose Nozzle for PCF to gain operational insight into PCF platform and increase developer satisfaction. Speaker(s) Kirk Kirk, ITOA Architect , Splunk Shubham Jain, Software Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/IT1388.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud, Splunk IT Service Intelligence Track: IT Operations Level: Beginner

Stressed about Python 2.7 end-of-life? Terrified about how your Splunk deployment or apps will be impacted? Don’t be...we got you covered. It’s out with the old and in with the new, because Splunk is migrating to Python 3.7. As part of this migration, Splunk is also removing a handful of deprecated features. What’s the best way to learn if and what is changing for your Splunk? This session! Learn how to identify what’s impacted in your deployment or app and let us share our Python migration best practices. Soon, you too will be able to take advantage of the benefits of Python 3. Speaker(s) Aditya Tammana, Product Manager, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1172.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Good for all skill levels

Be the Hero by bringing in your organization’s most important system into the world of Splunk! Join the team from RHONDOS as they show off real world use cases of how clients have leveraged SAP PowerConnect for Splunk to create a paradigm shift when it comes to monitoring SAP. Learn how to gain real-time visibility into system performance, monitor mission critical data flows and improve the security posture of your organization’s SAP environments. Speaker(s) Brant Hubbard, CEO, RHONDOS Slides PDF link - https://conf.splunk.com/files/2019/slides/ITS2726.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud Track: IT Operations Level: Good for all skill levels

Are you frustrated with the task of configuring syslog servers yourself to properly ingest data into Splunk? Take control of the syslog beast once and for all and point your "514" traffic to the new Splunk Connect for Syslog! This new Splunk-supported connector makes quick work of past struggles with syslog servers, sourcetyping, data enrichment, and scale. In this session we will dive into the configuration of the Splunk Connect for Syslog to properly filter, sourcetype, and format your data. We will demonstrate several out-of-the-box examples, highlighting new functionality such as HEC and Kafka transport for resiliency and scale, simple extensions for new device types, and data enrichment that extends far beyond simple sourcetyping of the raw message. Lastly, we will look forward to the integration of syslog with Splunk's new Data Stream Processor, and highlight appropriate use cases for each solution. By the time we wrap up, you will know how to tame the syslog beast! Speaker(s) Ryan Faircloth, Security Product Manager, Splunk Mark Bonsack, Staff Sales Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1651.pdf?podcast=1577146253 Product: Splunk Enterprise, Splunk Cloud, Splunk Data Fabric Search and Data Stream Processor Track: Foundations/Platform Level: Good for all skill levels

If you are a customer, when you want an app installed in Splunk Cloud, it is required for the app to pass cloud vetting process. Why does Splunk enforce this? What is in it for you as our customer? Who triggers cloud vetting process for an app and how are cloud vetting requests prioritized?If you are an app developer, it is frustrating receiving messages from customers saying that the app that you developed fails Splunk cloud vetting, and they want you to help to fix. How to fix? How to develop an app that has the biggest chance of passing cloud vetting? What are the common failures that Splunk cloud vetting engineers saw in history and what are the best practices?Come to this session, you will get answers to all the questions above. Speaker(s) Yinqing Hao, Software engineer, Splunk Samuel Ni, Principal Software Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/DEV1881.pdf?podcast=1577146252 Product: Splunk Cloud Track: Developer Level: Good for all skill levels

More than 200,000 military service members return to civilian life each year in the United States alone, with many thousands more around the globe. Many are looking to build on their experiences, leveraging the technical training and skills acquired while working in the service to their country. Thousands more are looking to change direction. Both paths can lead to the Splunk community, where we have provided access to free training for thousands of veterans through our customers, partners, and more. Join us for a discussion with some of our leading partners, including the Wounded Warrior Project, WithYouWithMe Academy, and Npower, about how veterans can navigate the transition to technology careers with help from a growing network of partners, and how Splunk can provide new and exciting career opportunities. Speaker(s) Corey Marshall, Director, Splunk Bertina Ceccarelli, Npower Bryan Rollins, Warriors to Work Director, Wounded Warrior Project Adam Renfree, With You With Me Slides PDF link - https://conf.splunk.com/files/2019/slides/FN2241.pdf?podcast=1577146252 Product: Splunk Enterprise, Splunk Cloud Track: Foundations/Platform Level: Good for all skill levels

Collect Service is a new scalable method with high availability to collect data for Splunk Cloud Platform or Splunk Enterprise with Data Stream Processor(DSP). This session will cover the basic principles to show you how the Collect Service operates and why you need to use it, how the service is different from modular inputs, and how to leverage Collect Service’s REST API to automate data collection jobs efficiently. Speaker(s) Jove Zhong, Director, Engineering, Splunk Poornima Devaraj, Technical Product Manager, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/Dev2236.pdf?podcast=1577146252 Product: Splunk Data Fabric Search and Data Stream Processor, Splunk Developer Cloud Track: Developer Level: Beginner

“Our IT-powered business processes are too slow.” Does this sound familiar? If so, that is usually the perfect starting point to dig in and start improving them. Unfortunately, specific data that could help with that effort are not available – normally. In this session we will show you how we at Arvato Supply Chain Solutions got the data we needed and used it to improve the collaboration between IT and business. You will learn how we connected different IT systems such as SAP and conveyor line to Splunk Cloud, and how this helped us to analyze business processes with IT Service Intelligence (ITSI). And, as the icing on the cake, we give you a sneak peak of the machine learning algorithm we implemented to continuously improve our business processes. Speaker(s) Ralf Walkenhorst, ITOA Specialist, Splunk Holger Diekhoff, Manager Operational Intelligence, Arvato Supply Chain Solutions Slides PDF link - https://conf.splunk.com/files/2019/slides/BA1512.pdf?podcast=1577146252 Product: Splunk Cloud, Splunk IT Service Intelligence, Splunk Machine Learning Toolkit Track: Business Analytics Level: Beginner

Kubernetes is the go-to standard for the automation of deployment, management and scaling of containerized applications. From an observability perspective it is extremely difficult to analyze, troubleshoot and gain actionable insights from these containerized applications. We bridge this gap of observability with the open-sourced Splunk Connect for Kubernetes. Splunk Connect for Kubernetes is the Splunk supported integration to ingest logs, metrics and Kubernetes object state information into Splunk. This session is intended for k8s users and developers who want to make their lives easier leveraging Splunk alongside Kubernetes. Come join the developers who built Splunk Connect for Kubernetes and learn how to configure and run Splunk to monitor your Kubernetes environment. Speaker(s) Don Tregonning, Senior Software Engineer, Splunk Shubham Jain, Software Engineer, Splunk Chaitanya Phalak, Software Engineer, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/IT1729.pdf?podcast=1577146252 Product: Splunk Enterprise, Splunk Cloud Track: IT Operations Level: Intermediate

Wouldn't it be great if SPL had a debug mode?! We think so too, which is why we created SPL Rehab. This new app allows you to step through your search on a per-command basis, visualize key figures from the job inspector and search log, and show you how your overall output is affected! We will also show you how the tool works under the covers and how you can apply some useful dashboarding tricks to your own apps! Speaker(s) James Odom, Head of Service Delivery, Converging Data Slides PDF link - https://conf.splunk.com/files/2019/slides/Dev1293.pdf?podcast=1577146252 Product: Splunk Enterprise, Splunk Cloud, Splunk Developer Cloud Track: Developer Level: Intermediate

Unveiled at .conf2018, Splunk Developer Cloud (SDC) gives developers the ability to integrate Splunk data services into their own applications. If you’ve been curious about getting started with SDC, this session is for you. Attendees will discover how to convert a traditional Splunk App to an SDC App, eliminating potential infrastructure resource roadblocks, leveraging more flexible scaling options, and building better visualizations with a modern, React-based framework. We'll also take a deep dive into the differences in the application design and development process between a traditional Splunk App and SDC as we walk you through our internal process of converting one of our homegrown Splunk Apps. Speaker(s) Ashish Bhutiani, CEO, Function1 Kevin Chu, Function1 Slides PDF link - https://conf.splunk.com/files/2019/slides/DEV1667.pdf?podcast=1577146252 Product: Splunk Enterprise, Splunk Developer Cloud Track: Developer Level: Intermediate

How do I get data into Splunk? What is a sourcetype? Does Splunk already know how to handle my data? What app do I use? What if all my data is syslog? If you are asking these questions, then this session is for you. After all, data quality is the foundation of becoming a data-driven organization. This session will walk through onboarding fundamentals. We will discuss the importance of a timestamp and what to do if your data may not have one. We will explain when to use an existing or create a new sourcetype. We will review the process of examining an app from Splunkbase and determining what sourcetype the app expects. By the end of this session you will no longer use syslog as a sourcetype, but as a means of collecting data. Speaker(s) Luke Netto, Staff Professional Services Consultant, Splunk Slides PDF link - https://conf.splunk.com/files/2019/slides/FN1561.pdf?podcast=1577146252 Product: Splunk Enterprise, Splunk Cloud, Splunk Enterprise Security Track: Foundations/Platform Level: Good for all skill levels