Splunk ES: April 21 Webcast
A Splunk Enterprise Security webcast on streamlined detection, presented by Hurricane Labs, is scheduled for April 21 and was promoted in SOC and Splunk community roundups this week. (x.com) Community posts compiling SOC projects and Splunk SIEM labs also circulated alongside the webcast announcement, pointing to hands‑on detection exercises as part of current practitioner learning. (x.com)
A Hurricane Labs webcast on Splunk Enterprise Security is scheduled for Tuesday, April 21, at 11 a.m. Pacific and 2 p.m. Eastern. (virtualizationreview.com) The session is billed as “Splunk Enterprise Security Unmasked: Cybersecurity Insights From the Shadows,” and its pitch is blunt: alert fatigue, tool sprawl, and writing detections from scratch are burning out analysts. (virtualizationreview.com) Splunk Enterprise Security is Splunk’s security operations product for threat detection, investigation, and response, and Splunk says it combines security information and event management, user and entity behavior analytics, security orchestration, automation and response, and artificial intelligence features in one platform. (splunk.com) The April 21 pitch lands as Splunk is also publishing fresh detection content for the product. Splunk Research updated its PowerShell 4104 hunting analytic on March 10, 2026, and its Security Content site lists 349 detections, 86 analytic stories, and 2,020 downloads in the latest update. (research.splunk.com 1) (research.splunk.com 2) (beta.splunkresearch.com) Hurricane Labs is not just marketing around Splunk Enterprise Security. Its Splunkbase listings include Hurricane Labs Content+, a content delivery app for Enterprise Security correlation searches, with version 1.3.6 posted on December 27, 2025, plus a separate threat intelligence feed app for Enterprise Security. (splunkbase.splunk.com 1) (splunkbase.splunk.com 2) That helps explain why community roundups paired the webcast with hands-on lab material. Public project repositories and blog posts circulating this month show practitioners building home Security Operations Center labs in Splunk Enterprise, forwarding Windows event logs, and testing detections against common protocols and attack activity. (github.com) (medium.com) The same pattern is visible across the wider market. SANS scheduled a 2026 Security Operations Center, Security Information and Event Management, and Security Orchestration, Automation and Response forum last month around “real-world experiences” and “proven practices” for modern security operations teams. (sans.org) For now, the immediate date is April 21: a vendor-led webcast aimed at teams deciding whether to keep building detections by hand or lean harder on packaged Splunk Enterprise Security content. (virtualizationreview.com)
