Abstract

Datadog Notebooks support complex log analysis by combining data from multiple sources. This course teaches you how to use reference tables, transformation cells, and SQL queries to investigate issues that span logs, customer data, and security intelligence.

You'll work through two scenarios at Storedog Electronic Accessories: identifying customers associated with suspicious IP addresses, and analyzing which high-value transaction failures represent the greatest revenue loss. You'll learn when to use transformations versus SQL, how to chain analysis steps, and how to visualize patterns in your findings.

Learning Objectives

By the end of this course, you will be able to:

  • Upload CSV files as reference tables and add them as datasources in notebooks
  • Configure datasource columns and data types for SQL queries
  • Use transformation cells to join logs with reference tables
  • Chain transformations and SQL queries to build multi-step analysis
  • Write SQL queries with aggregate functions (SUM, COUNT, AVG) and GROUP BY
  • Filter data at different stages using WHERE, HAVING, and LIMIT
  • Use calculated fields in transformations to categorize data
  •  Create tree map and timeseries visualizations from analysis results
  •  Export notebook findings for stakeholder reporting

Primary Audience

This course is designed for:

  • Security analysts investigating suspicious activity by correlating security intelligence with customer data
  • Product analysts and business analysts analyzing transaction patterns and calculating business impact
  • DevOps engineers and SREs performing root cause analysis that requires joining data from multiple sources
  • Operations analysts building investigations that combine logs, metrics, and business data

Prerequisites

To complete this course, you need:

  •  Experience creating notebooks and adding data sources
  • Basic understanding of log querying and filtering
  • Basic SQL knowledge helpful but not required

Required courses:


Recommended courses:

Technical Requirements

In order to complete the course, you will need:

  • Google Chrome or Firefox
  • Third-party cookies must be enabled to access labs

Course Navigation

At the bottom of each lesson, click MARK LESSON COMPLETE AND CONTINUE button so that you are marked complete for each lesson and can receive the certificate at the end of the course.

Course Enrollment Period

Please note that your enrollment in this course ends after 30 days. You can re-enroll at any time and pick up where you left off.

Course curriculum

    1. Log Analytics with Notebooks Overview

    1. Lab: Log Analytics with Notebooks

    1. Summary

    2. Feedback Survey

Log Analytics with Notebooks

  • 1 hours to complete
  • Beginner
Enroll for free