Plan
-
Review business requirements
-
Design a best-practices foundation for stability and future growth
-
Align deployment with data retention and security policies
Implement
-
Install and Configure Splunk Premium Apps (listed below)
-
Data onboarding and normalization
-
Install and Configure Splunk Premium Apps (listed below)
-
Build Visualizations. reports, alerts, and Key Performance Indicators
Scale
-
High availability, and multi-site disaster recovery
-
Increased data ingestion requirements
-
Increased number of concurrent users
-
Additional sources of data (endpoint, syslog, HEC)