Learning Objectives

Intellectual Point
ES Overview and Security Intelligence

[10%] Understand the core features and concepts of Splunk Enterprise Security, including its security intelligence tools and their applications.

Intellectual Point
Monitoring, Investigation, and Forensics

[20%] Utilize ES dashboards and tools to monitor security posture, manage notable events, conduct investigations, and analyze forensic data through glass tables and navigation controls.

Intellectual Point
Deployment, Installation, and Configuration

[35%] Plan and execute ES deployment by identifying topologies, preparing the Splunk environment, installing ES, configuring user roles, and performing post-installation tasks.

Intellectual Point
Data Validation, Add-ons, and Threat Intelligence

[20%] Validate ES data inputs, configure technology add-ons, design custom add-ons, manage lookups and identity data, and implement the threat intelligence framework.

Intellectual Point
Correlation Searches and Adaptive Responses

[15%] Create and tune correlation searches, configure adaptive responses, and manage the export and import of search configurations to enhance security detection capabilities.

  • The Splunk Enterprise Certified Admin Training Course at Intellectual Point is tailored to equip you with the essential skills and knowledge required to proficiently manage and configure a Splunk Enterprise environment. This comprehensive program covers everything from configuring Splunk indexes and managing data inputs to setting up and managing users and security within a Splunk deployment. With an emphasis on hands-on labs and real-world exercises, the course prepares you to handle administrative tasks efficiently and ensures readiness for the Splunk Enterprise Certified Admin exam. You will also explore advanced topics such as data management and system monitoring to enhance your operational capabilities.
  • Throughout the training, you will delve into configuration of Splunk components, learn data loading techniques, and apply best practices for maintaining a reliable Splunk deployment. The course emphasizes practical skills like index management and troubleshooting through interactive labs. By the end, you will have a robust understanding of how to deploy, manage, and support a Splunk implementation efficiently. By the end of this course, participants will:
  • 1) Successfully configure and manage Splunk components and deployments.
  • 2) Optimize index settings and data inputs to ensure system performance.
  • 3) Implement effective security measures by managing users and roles proficiently.
  • 4) Enhance operational stability through best practices in system monitoring and troubleshooting.
  • 5) Prepare confidently for the Splunk Enterprise Certified Admin exam to validate expertise.

Tuition & Hours

Tuition is charged by course. The cost of the certification exam is not included in the tuition and is a separate cost based on the current rates as set by the vendor.

Course Total Hours Tuition
DATA-202: Splunk Enterprise Certified Admin 72 $4,499.00

Books & Supplies

There are no additional charges for books or supplies.

Indirect Costs

Should a student wish to obtain the Splunk Enterprise Certified Admin exam, the cost is an additional fee not covered in tuition. While encouraged, the exam is not a required expense to be paid at the time of enrollment. To obtain a voucher for the certification exam, you will need to purchase it separately.

Course Exam Exam Fee
DATA-202: Splunk Enterprise Certified Admin Splunk Enterprise Certified Admin $130

Program Award

Upon successful completion of the course, the student will receive a Certificate of Completion for Splunk Enterprise Certified Admin Training.

* Exam fees are quoted based on time of publication. Voucher prices may change based on vendor rates and are updated accordingly. Please contact Intellectual Point to verify exam fee charges.

Class Registration

Date

Price

Location

October: 27, 2025 - Nov 21, 2025 - 6 PM - 10 PM (ET)
Schedule: Mon - Fri
$4,499.00 In-Person & Virtual Register
May: 16, 2026 - Jun 7, 2026 - 8 AM - 6 PM (ET)
Schedule: Sat & Sun
$4,499.00 In-Person & Virtual Register
April: 19, 2027 - May 14, 2027 - 6 PM - 10 PM (ET)
Schedule: Mon - Fri
$4,499.00 In-Person & Virtual Register

Download Course PDF

Private Team Training

Enrolling at least 3 people in this course? Consider bringing this (or any course that can be custom designed) to your preferred location as a private team training

For details, call 703-554-3827

Meetup

Come Learn With Intellectual Point

Price Match Guarantee!

We will match Competitor’s Price Quote.
Call for more details 703-554-3827

A Splunk Phantom Certified Admin Course at Intellectual Point Includes:

  • Live instructor-led training in modern classrooms
  • A thorough review of Splunk topics by industry experts
  • 24 x 7 access to the real labs in classrooms and remotely
  • 100% latest material & unlimited live hands-on labs & 600 practice questions
  • Confidence building hands-on training
  • Study material, notes, videos, lab book, and practice questions included in the course price

happy clients

What Our Customers Say - Based on over 600+ Reviews!

Our Top Customers
Training and Testing Partners