Get in Touch

Course Outline

Achieving Sovereignty in Open-Source Search and Analytics

  • Impact of Elastic license changes and subsequent forks.
  • Feature parity between OpenSearch and Elasticsearch in 2025-2026.
  • Use cases: enterprise search, log analytics, SIEM, and observability.

Cluster Architecture

  • Node roles: master, data, coordinating, and ingest nodes.
  • Security plugin: TLS for inter-node communication, certificates, and PKI.
  • Preventing split-brain scenarios using discovery.seed_hosts and minimum master nodes settings.

Data Ingestion

  • REST API indexing, bulk loading, and mapping definitions.
  • Utilizing Beats, Fluent Bit, and Logstash pipelines.
  • Employing the OpenTelemetry Collector for traces and metrics.

Search and Dashboards

  • Query DSL: match, term, range, aggregations, and nested fields.
  • Creating visualizations and dashboards in OpenSearch Dashboards.
  • SIEM use cases: defining alert rules and detecting anomalies.

Index Management

  • Index Lifecycle Management (ILM): rollover, shrinking, and deletion.
  • Implementing hot-warm-cold data architecture.
  • Optimizing mappings and text analysis.

Security and Access Control

  • RBAC implementation with users, roles, and tenants.
  • Authentication via SAML and OpenID Connect.
  • Document-level security and field masking.

Backup and Recovery

  • Configuring snapshot repositories for MinIO, S3, or NFS.
  • Automating snapshots using Curator and ISM.
  • Restoring specific indices and establishing cluster-wide disaster recovery.

Requirements

  • Understanding of search engines and inverted indexes.
  • Experience with REST APIs and JSON.
  • Basic Linux administration skills: systemd, logs, and packages.

Target Audience

  • Search and log analytics engineers.
  • Teams migrating away from managed Elasticsearch or Splunk solutions.
  • Security analysts constructing sovereign SIEM backends.
 14 Hours

Number of participants


Price per participant

Open Training Courses require 5+ participants.

Testimonials (1)

the trainer was very good and made the training perfect for my needs

Florentin - EXPERIS
Course - Search and Analytics with Amazon OpenSearch

Upcoming Courses

OpenSearch: Replacing Amazon OpenSearch and Elastic Cloud In-House

2026-05-26 09:30
14 hours
Bratislava CBC
770 EUR (Online)
1170 EUR (Classroom)

OpenSearch: Replacing Amazon OpenSearch and Elastic Cloud In-House

2026-06-09 09:30
14 hours
Bratislava CBC
770 EUR (Online)
1170 EUR (Classroom)

OpenSearch: Replacing Amazon OpenSearch and Elastic Cloud In-House

2026-06-23 09:30
14 hours
Bratislava CBC
770 EUR (Online)
1170 EUR (Classroom)

OpenSearch: Replacing Amazon OpenSearch and Elastic Cloud In-House

2026-07-07 09:30
14 hours
Bratislava CBC
770 EUR (Online)
1170 EUR (Classroom)

OpenSearch: Replacing Amazon OpenSearch and Elastic Cloud In-House

2026-07-21 09:30
14 hours
Bratislava CBC
770 EUR (Online)
1170 EUR (Classroom)

Related Courses

Search and Analytics with Amazon OpenSearch

 21 Hours

This instructor-led, live training in Slovakia (online or onsite) is designed for developers and administrators who wish to utilize OpenSearch for distributed search and data analytics in a unified and secure system.

By the end of this training, participants will be able to:

  • Set up the necessary development environment to start building search and analytics solutions with OpenSearch and OpenSearch Dashboards.
  • Understand the three approaches (snapshot, restart, and rolling) in upgrading from Elasticsearch OSS to OpenSearch.
  • Learn how to index data, create data streams, run queries, and streamline cross-cluster operations in OpenSearch.
  • Explore and use plugins, APIs, clients, and ingestion tools (Beats, Logstash, Grafana, etc.) to optimize search experience while keeping clusters secure.
  • Use OpenSearch Dashboards to centralize data management, visualization, logging, monitoring, and maintenance.
Read more...

OpenSearch Fundamentals

 21 Hours

OpenSearch is an open-source search and analytics suite derived from Elasticsearch 7.10 and Kibana 7.10, originally developed by AWS to maintain a fully open alternative after licensing changes by Elastic NV.

This instructor-led, live training (online or onsite) is aimed at intermediate-level engineers and architects who wish to deploy, configure, and manage OpenSearch clusters for search, observability, and analytics workloads, while understanding its relationship with AWS OpenSearch Service.

By the end of this training, participants will be able to:

  • Understand the architecture, components, and capabilities of OpenSearch and its dashboards.
  • Deploy and configure OpenSearch clusters on-premises and in the cloud.
  • Integrate OpenSearch with AWS OpenSearch Service and other enterprise data systems.
  • Optimize performance, security, and scalability for production-grade deployments.

Format of the Course

  • Instructor explanations combined with live demonstrations.
  • Hands-on labs and real-world configuration exercises.
  • Collaborative discussions focused on troubleshooting and best practices.

Course Customization Options

  • To tailor the content or focus of this OpenSearch training to your organization’s specific needs, please reach out to arrange a customized session.
Read more...

OpenSearch at Scale

 21 Hours

OpenSearch is a scalable, open-source search and analytics suite designed for high-volume data indexing, observability, and real-time analytics across distributed systems.

This instructor-led, live training (online or onsite) is aimed at advanced-level engineers and architects who wish to design, deploy, and manage OpenSearch clusters capable of handling large-scale data ingestion and analytics workloads, both on-premises and using AWS OpenSearch Service.

By the end of this training, participants will be able to:

  • Design and deploy highly scalable OpenSearch clusters across multiple environments.
  • Optimize indexing, search, and storage for performance at scale.
  • Integrate OpenSearch with AWS OpenSearch Service for hybrid and managed deployments.
  • Implement observability, high availability, and automated recovery strategies.

Format of the Course

  • Instructor-led theory sessions with guided discussions.
  • Extensive hands-on exercises simulating real-world scaling challenges.
  • Practical lab work on distributed deployment and performance tuning.

Course Customization Options

  • This course can be adapted to emphasize your organization’s data size, performance goals, and deployment environment.
Read more...

Related Categories

OpenSearch
OpenSearch