back to day 13
WEEK_2 · DAY_13 · LAB
Lab 13 — Build a SOC Dashboard
Build SOC dashboards with Studio, tokens, drilldowns, scheduled PDFs
LAB PROGRESS0/4 steps · 0%
Lab Objectives
- ›Build a SOC dashboard from scratch in Dashboard Studio
- ›Wire time pickers and dropdowns with tokens
- ›Configure drilldowns for click-through investigation
- ›Schedule reports as PDF for executives
Lab Instructions
- 1Open Splunk → Posture (or Search → New Dashboard).
- 2Build 4 panels: notable count by urgency, trend over 7d, top 10 sources, top 10 ATT&CK techniques.
- 3Add a time picker that updates all panels.
- 4Configure drilldown from any bar → Incident Review filtered.