When you think of Boston, you might picture colonial charm, world-class universities, or even the crack of a bat at Fenway. This September, you can add one more to the list: a one-of-a-kind opportunity to sharpen your Splunk skills and connect with our most seasoned technical instructors at .conf25 and Splunk University.
This year’s event, being held at the Boston Convention & Exhibition Center, isn’t just about big keynotes and bold innovations—it’s about rolling up your sleeves and diving into the interactive, hands-on learning that defines Splunk Education. As part of the experience, our experts will be leading a dynamic lineup of Interactive Workshop Sessions, where attendees solve real security challenges, explore automation, and gain technical insights that can immediately be put to use.
These sessions aren’t your typical talks. Interactive Workshops are designed to simulate live environments, guiding participants through product use cases, real scenarios, and active demos. Bring your laptop and get ready to work alongside the best in the business. Here’s a quick look at what’s in store:
Monday, Sep 8 | 1:45 PM – 3:00 PM EDT
Instructors: Sarah Joy & Daniella Herrera
Follow a single clue and trace the steps of a sophisticated data exfiltration attack in AWS. This hands-on session will challenge you to think like a threat hunter as you uncover privilege escalations, evasions, and hidden S3 secrets.
Tuesday, Sep 9 | 10:30 AM – 11:30 AM EDT
Instructors: Dace McPherson & Lauri Harris
Learn how to accelerate your SOC response using new detection and investigation capabilities in Splunk Enterprise Security. This workshop will walk you through every step of the investigation—from alert to analysis to action.
Tuesday, Sep 9 | 12:30 PM – 1:45 PM EDT
Instructors: Rao Durvasula & Matthew Dami
Discover how to amplify your risk-based alerting strategy using machine learning. You’ll learn techniques to cluster risky objects, calculate scores, and uncover threat patterns like firewall exploitation by malware.
Wednesday, Sep 10 | 3:45 PM – 5:00 PM EDT
Instructors: Chris Huryn & Kasia Lelonek
Build effective SOAR playbooks using the Visual Playbook Editor—no Python needed. Learn how to query and update threat intelligence via REST APIs and turn Splunk Enterprise Security into an orchestration powerhouse.
If you’re looking to gain practical, high-impact skills that will set you apart, this is the moment. Whether you're attending Splunk University (Sept 6–8) for immersive training or diving into workshops during .conf25, you’ll walk away better prepared to tackle today’s toughest data and security challenges.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.