SplunkLive! Chicago

May 5th, 2016


Please join us at SplunkLive! Chicago- and learn how more than 11,000 enterprises, government agencies, universities and service providers in over 100 countries use Splunk® software to deepen business and customer understanding, mitigate cybersecurity risk, prevent fraud, improve service performance and reduce cost.

SplunkLive! Chicago Speakers

Is your mind already churning with ways Splunk can help you to address challenges in your environment? Our customers share their stories to provide further inspiration.

Director, Americas Market Specialist
Senior Security Systems Engineer
The Climate Corporation
Director, Information Security
Financial Services Organization

SplunkLive! Chicago Agenda

  • 8:00am – Registration
  • 9:00am – Welcome, Agenda, Overview
  • 12:00pm – Lunch
  • 1:15pm – Breakout Sessions 1-4
  • Getting Started with Splunk Enterprise
    What is Splunk? At the end of this session you’ll have a high-level understanding of the pieces that make up the Splunk Platform, how it works, and how it fits in the landscape of Big Data. You’ll see practical examples that differentiate Splunk while demonstrating how to gain quick time to value.
  • Splunk Ninjas: New Features and Search Dojo
    In addition to seeing the latest features in Splunk Enterprise, learn some of the top commands that will solve most search and analytics needs. Ninja’s can use these blindfolded. New features will be demonstrated in the following areas: TCO & Performance Improvements, Platform Management and New Interactive Visualizations.
  • Prescribe the Right Data Sources to Maximize Your Value
    Whether you’re new to Splunk or a current user, you’re probably wondering what value other organizations are realizing with Splunk and what data sources are most commonly indexed to achieve this value. Come learn about the most common value drivers as reported by Splunk customers and gain insight into common data sources for IT Operations, Application Delivery, Security and Compliance. You’ll see a live demo and receive a free Splunk Interactive Data Assessment tool at the end of the session to help you gain more value from your data and better understand the applicability of data sources across different groups.
  • AWS on Splunk, Splunk on AWS
    In this session, you’ll learn about security on AWS and why logging in the cloud is different than on-premises. We’ll explore AWS Cloudtrail, the logging service built into AWS. We’ll discuss Amazon Cloudwatch, a monitoring service for AWS cloud resources and the applications you run on AWS. We’ll also talk about Amazon Inspector, which is the recently announced application security assessment service from AWS. We’ll examine the AWS Config service and how you can use it to improve security and resource management on AWS. Finally, we will look at how the Splunk App for AWS ties all of these services together into deep insight and useful visualizations.
  • 2:30pm – Breakout Sessions 5-7
  • Splunk for Enterprise Security featuring User Behavior Analytics
    This session will review Splunk’s two premium solutions for information security organizations: Splunk for Enterprise Security (ES) and Splunk User Behavior Analytics (UBA). Splunk ES is Splunk's award-winning security intelligence solution that brings immediate value for continuous monitoring across SOC and incident response environments – allowing you to quickly detect and respond to external and internal attacks, simplifying threat management while decreasing risk. Splunk UBA is a new technology that applies unsupervised machine learning and data science to solving one of the biggest problems in information security today: insider threat. You’ll learn how Splunk UBA works in tandem with ES, or third-party data sources, to bring significant automated analytical power to your SOC and Incident Response teams. We’ll discuss each solution and see them integrated and in action through detailed demos.
  • Splunk for Monitoring and Diagnostics in the Industrial Environment
    Splunk software provides a scalable and versatile platform for the machine data generated by automation and control systems and connected industrial assets and infrastructure. Learn how our customers, including manufacturers, use Splunk software to improve performance, reduce downtime and increase security in their critical industrial environments. In this session, we will cover industrial data collection, best practices for storage and enrichment, and how you can use Splunk’s advanced visualizations and analytics to become more data-driven in your industrial operations.
  • How to Align Your Daily Splunk Activities to Key Business Services for Increased Value and Visibility
    Service Intelligence models are most effective when they are aligned with specific business objectives, strategies and key initiatives and continuously measure the achievement of business goals. To accelerate your Service Intelligence initiatives, this session covers best practices and techniques for designing an effective model by codifying the domain knowledge of your subject experts and capturing key value metrics. We’ll review key aspects of an effective Service Intelligence model and then design a sample model that achieves business objectives through service decomposition and building in the measurement of business value goals.
  • 3:30pm – Happy Hour is sponsored by Amazon Web Service, Carbon Black, Cisco, Datalink, EMC, Eview Technologies, Evolven, Hurricane Labs, Nutanix, and Syncsort.

Event Details


Thursday, May 5th, 2016
From 9:00am to 4:30pm


Hyatt Regency O'Hare
9300 Bryn Mawr Ave
Rosemont, IL 60018

T: (847) 696-1234
Hotel Website


SplunkLive! Chicago is sponsored by Amazon Web Services, Carbon Black, Cisco, Datalink, EMC, Eview Technologies, Evolven, Hurricane Labs, Nutanix, and Syncsort


  • Do I need to pay to attend? No, SplunkLive! is free to all. Join us in the morning to learn how other Splunk Customers are using Splunk then stay for detailed workshops in the afternoon.
  • Should I bring my laptop? Yes! Make sure to download Splunk first: http://www.splunk.com/download
  • Will there be wireless internet? Yes! There will be an announcement at the beginning of the day covering network and passwords.
  • What time should I show up? We start promptly at 9:00am - make sure to arrive by 8:30am to snag a good seat!
  • Is there a dress code? Dress code is business casual. If you want show your Splunk pride by wearing your favorite Splunk t-shirt—that's also welcome!
  • Will parking be included? Unfortunately Splunk doesn't cover parking expenses but we'll include lunch and a collector's t-shirt!