Learning Objectives
ES Overview and Security Intelligence
[10%] Understand the core features and concepts of Splunk Enterprise Security, including its security intelligence tools and their applications.
Monitoring, Investigation, and Forensics
[20%] Utilize ES dashboards and tools to monitor security posture, manage notable events, conduct investigations, and analyze forensic data through glass tables and navigation controls.
Deployment, Installation, and Configuration
[35%] Plan and execute ES deployment by identifying topologies, preparing the Splunk environment, installing ES, configuring user roles, and performing post-installation tasks.
Data Validation, Add-ons, and Threat Intelligence
[20%] Validate ES data inputs, configure technology add-ons, design custom add-ons, manage lookups and identity data, and implement the threat intelligence framework.
Correlation Searches and Adaptive Responses
[15%] Create and tune correlation searches, configure adaptive responses, and manage the export and import of search configurations to enhance security detection capabilities.
- The Splunk Enterprise Certified Admin Training Course at Intellectual Point is tailored to equip you with the essential skills and knowledge required to proficiently manage and configure a Splunk Enterprise environment. This comprehensive program covers everything from configuring Splunk indexes and managing data inputs to setting up and managing users and security within a Splunk deployment. With an emphasis on hands-on labs and real-world exercises, the course prepares you to handle administrative tasks efficiently and ensures readiness for the Splunk Enterprise Certified Admin exam. You will also explore advanced topics such as data management and system monitoring to enhance your operational capabilities.
- Throughout the training, you will delve into configuration of Splunk components, learn data loading techniques, and apply best practices for maintaining a reliable Splunk deployment. The course emphasizes practical skills like index management and troubleshooting through interactive labs. By the end, you will have a robust understanding of how to deploy, manage, and support a Splunk implementation efficiently. By the end of this course, participants will:
- 1) Successfully configure and manage Splunk components and deployments.
- 2) Optimize index settings and data inputs to ensure system performance.
- 3) Implement effective security measures by managing users and roles proficiently.
- 4) Enhance operational stability through best practices in system monitoring and troubleshooting.
- 5) Prepare confidently for the Splunk Enterprise Certified Admin exam to validate expertise.
Tuition & Hours
Tuition is charged by course. The cost of the certification exam is not included in the tuition and is a separate cost based on the current rates as set by the vendor.
Course | Total Hours | Tuition |
---|---|---|
DATA-202: Splunk Enterprise Certified Admin | 72 | $4,499.00 |
Books & Supplies
There are no additional charges for books or supplies.
Indirect Costs
Should a student wish to obtain the Splunk Enterprise Certified Admin exam, the cost is an additional fee not covered in tuition. While encouraged, the exam is not a required expense to be paid at the time of enrollment. To obtain a voucher for the certification exam, you will need to purchase it separately.
Course | Exam | Exam Fee |
---|---|---|
DATA-202: Splunk Enterprise Certified Admin | Splunk Enterprise Certified Admin | $130 |
Program Award
Upon successful completion of the course, the student will receive a Certificate of Completion for Splunk Enterprise Certified Admin Training.
* Exam fees are quoted based on time of publication. Voucher prices may change based on vendor rates and are updated accordingly. Please contact Intellectual Point to verify exam fee charges.
Class Registration
Date |
Price |
Location |
|
---|---|---|---|
October: 27, 2025 - Nov 21, 2025 - 6 PM - 10 PM (ET) Schedule: Mon - Fri |
$4,499.00 | In-Person & Virtual | Register |
May: 16, 2026 - Jun 7, 2026 - 8 AM - 6 PM (ET) Schedule: Sat & Sun |
$4,499.00 | In-Person & Virtual | Register |
April: 19, 2027 - May 14, 2027 - 6 PM - 10 PM (ET) Schedule: Mon - Fri |
$4,499.00 | In-Person & Virtual | Register |
NOT SURE WHERE TO START?
Private Team Training
Enrolling at least 3 people in this course? Consider bringing this (or any course that can be custom designed) to your preferred location as a private team training
For details, call 703-554-3827

Come Learn With Intellectual Point
Price Match Guarantee!
We will match Competitor’s Price Quote.
Call for more details 703-554-3827
A Splunk Phantom Certified Admin Course at Intellectual Point Includes:
- Live instructor-led training in modern classrooms
- A thorough review of Splunk topics by industry experts
- 24 x 7 access to the real labs in classrooms and remotely
- 100% latest material & unlimited live hands-on labs & 600 practice questions
- Confidence building hands-on training
- Study material, notes, videos, lab book, and practice questions included in the course price
happy clients
What Our Customers Say - Based on over 600+ Reviews!






























