Splunk Boss of the SOC — EMEA Virtual Edition

Hopefully you’ve heard of Boss of the SOC (BOTS) and now it’s time to test your skills against the top Splunk secu­ri­ty experts across Europe, Middle East and Africa in our first ever Virtual EMEA BOTS on Wednesday 30^th September.

BOTS is a blue-team, cap­ture-the-flag-esque (CTF) activ­i­ty where par­tic­i­pants use Splunk — and other tools — to answer a vari­ety of ques­tions about secu­ri­ty inci­dents that have occurred in a real­is­tic but fic­ti­tious enter­prise envi­ron­ment. It’s designed to emu­late how secu­ri­ty teams respond to real secu­ri­ty inci­dents. Imagine that you’ve just been made aware of a breach. The BOTS sce­nario chal­lenges par­tic­i­pants to trace the steps that led to the inci­dent, and deter­mine the extent of the com­pro­mise.

We rec­om­mend teams of four are put for­ward to par­tic­i­pate. If you are a “lone war­rior” don’t worry, we can add you to a team of other Splunk Security enthu­si­ast.

Timezone Schedule:

• 09:30 — 15:00 BST
• 10:30 — 16:00 CEST
• 12:30 — 18:00 GST

Agenda:

• 09:30/10:30/12:30: Welcome & Introduction
• 10:00/11:00/13:00: BOTS Competition
• 14:30/15:30/17:30: Winners Announced 

Upon reg­is­tra­tion you will receive a con­fir­ma­tion email. Please add the event to your cal­en­dar by click­ing on the “add to cal­en­dar button in this email. Closer to the event you will receive intstruc­tions and next steps to com­plete your team within the BOTS portal. Please use the same email you reg­is­ter with in this process. Log on details to the vir­tu­al plat­form will be sent the week before the com­pe­ti­tion.

Happy hunt­ing and we look for­ward to the com­pe­ti­tion!