Get in Touch

Course Outline

Open-Source Search and Analytics Sovereignty

  • Examination of Elastic license changes and subsequent forks.
  • Feature parity between OpenSearch and Elasticsearch in 2025-2026.
  • Application scenarios: enterprise search, log analytics, SIEM, and observability.

Cluster Architecture

  • Node roles: master, data, coordinating, and ingest.
  • Security plugin features: TLS internode communication, certificates, and PKI.
  • Preventing split-brain scenarios through discovery.seed_hosts and minimum master nodes configurations.

Data Ingestion

  • REST API indexing, bulk loading procedures, and mapping definitions.
  • Utilizing Beats, Fluent Bit, and Logstash pipelines.
  • Employing the OpenTelemetry Collector for traces and metrics.

Search and Dashboards

  • Query DSL capabilities: match, term, range, aggregations, and nested fields.
  • Creating visualizations and dashboards in OpenSearch Dashboards.
  • SIEM applications: configuring alert rules and anomaly detection.

Index Management

  • ILM operations: rollover, shrinking, and deletion.
  • Implementing the hot-warm-cold data architecture.
  • Optimizing mappings and text analysis.

Security and Access Control

  • RBAC implementation involving users, roles, and tenants.
  • Authentication via SAML and OpenID Connect.
  • Document-level security and field masking techniques.

Backup and Recovery

  • Configuring snapshot repositories to MinIO, S3, or NFS.
  • Automating snapshots using Curator or ISM.
  • Restoring specific indices and achieving cluster-wide disaster recovery.

Requirements

  • A foundational understanding of search engines and inverted indexes.
  • Practical experience with REST APIs and JSON.
  • Basic Linux administration skills, including familiarity with systemd, logs, and packages.

Target Audience

  • Search and log analytics engineers.
  • Teams transitioning from managed Elasticsearch or Splunk solutions.
  • Security analysts developing sovereign SIEM backends.
 14 Hours

Number of participants


Price per participant

Open Training Courses require 5+ participants.

Testimonials (1)

the trainer was very good and made the training perfect for my needs

Florentin - EXPERIS
Course - Search and Analytics with Amazon OpenSearch

Provisional Upcoming Courses (Require 5+ participants)

OpenSearch: Replacing Amazon OpenSearch and Elastic Cloud In-House

2026-05-21 09:30
14 hours
Wellington, Plimmer Towers
5440 NZD (Online)
12880 NZD (Classroom)

OpenSearch: Replacing Amazon OpenSearch and Elastic Cloud In-House

2026-06-04 09:30
14 hours
Te Pou Toetoe Linwood
5440 NZD (Online)
5440 NZD (Classroom)

OpenSearch: Replacing Amazon OpenSearch and Elastic Cloud In-House

2026-06-18 09:30
14 hours
Auckland, ANZ Centre
5440 NZD (Online)
13440 NZD (Classroom)

OpenSearch: Replacing Amazon OpenSearch and Elastic Cloud In-House

2026-07-02 09:30
14 hours
Wellington, Plimmer Towers
5440 NZD (Online)
12880 NZD (Classroom)

OpenSearch: Replacing Amazon OpenSearch and Elastic Cloud In-House

2026-07-16 09:30
14 hours
Te Pou Toetoe Linwood
5440 NZD (Online)
5440 NZD (Classroom)

Related Courses

Search and Analytics with Amazon OpenSearch

 21 Hours

This instructor-led, live training in New Zealand (online or on-site) is designed for developers and administrators who wish to use OpenSearch to perform distributed search and data analytics within a unified and secure system.

By the end of this training, participants will be able to:

  • Set up the necessary development environment to begin building search and analytics solutions using OpenSearch and OpenSearch Dashboards.
  • Understand the three approaches (snapshot, restart, and rolling) for upgrading from Elasticsearch OSS to OpenSearch.
  • Learn how to index data, create data streams, run queries, and streamline cross-cluster operations in OpenSearch.
  • Explore and utilise plugins, APIs, clients, and ingestion tools (such as Beats, Logstash, Grafana, etc.) to optimise the search experience while maintaining cluster security.
  • Use OpenSearch Dashboards to centralise data management, visualisation, logging, monitoring, and maintenance.
Read more...

OpenSearch Fundamentals

 21 Hours

OpenSearch is an open-source search and analytics suite derived from Elasticsearch 7.10 and Kibana 7.10, originally developed by AWS to maintain a fully open alternative following licensing changes by Elastic NV.

This instructor-led, live training (available online or onsite) is designed for intermediate-level engineers and architects who wish to deploy, configure, and manage OpenSearch clusters for search, observability, and analytics workloads, while gaining a clear understanding of its relationship with AWS OpenSearch Service.

By the end of this training, participants will be able to:

  • Understand the architecture, components, and capabilities of OpenSearch and its dashboards.
  • Deploy and configure OpenSearch clusters both on-premises and in the cloud.
  • Integrate OpenSearch with AWS OpenSearch Service and other enterprise data systems.
  • Optimise performance, security, and scalability for production-grade deployments.

Course Format

  • Instructor-led explanations combined with live demonstrations.
  • Hands-on labs and real-world configuration exercises.
  • Collaborative discussions focused on troubleshooting and industry best practices.

Course Customisation Options

  • To tailor the content or focus of this OpenSearch training to your organisation’s specific needs, please contact us to arrange a customised session.
Read more...

OpenSearch at Scale

 21 Hours

OpenSearch is a scalable, open-source search and analytics suite designed for high-volume data indexing, observability, and real-time analytics across distributed systems.

This instructor-led, live training (online or onsite) is aimed at advanced-level engineers and architects who wish to design, deploy, and manage OpenSearch clusters capable of handling large-scale data ingestion and analytics workloads, both on-premises and using AWS OpenSearch Service.

By the end of this training, participants will be able to:

  • Design and deploy highly scalable OpenSearch clusters across multiple environments.
  • Optimise indexing, search, and storage for performance at scale.
  • Integrate OpenSearch with AWS OpenSearch Service for hybrid and managed deployments.
  • Implement observability, high availability, and automated recovery strategies.

Format of the Course

  • Instructor-led theory sessions with guided discussions.
  • Extensive hands-on exercises simulating real-world scaling challenges.
  • Practical lab work on distributed deployment and performance tuning.

Course Customisation Options

  • This course can be adapted to emphasise your organisation's data size, performance goals, and deployment environment.
Read more...

Related Categories

OpenSearch
OpenSearch