Excellent tool for alert correlation and enrichment
Use Cases and Deployment Scope
BigPanda ingests alerts from multiple monitoring tools as it is being used across the whole organization. We use both native as well as custom REST API integration. After ingestion alerts are correlated and then sent to Ticketing and alerting tools based on the alert priority. The tool provides a single platform for the Operations team for visibility of all alerts. The tool has a feature to create multiple environments and provide visibility and access based on roles. The alert enrichment feature is very helpful as some monitoring tools provide very few customization options on their end.
Pros
- Alert correlation feature helps in grouping similar alerts together
- Alert Enrichment to enhance the data after it arrives on the tool
- Integration with multiple tools
- The console is very user friendly and provides ease of administration
Cons
- Tool should have a feature to query the data
- The dashboard feature needs improvement
- It should have a dark mode
Likelihood to Recommend
If the organization has a proper CMDB asset record then BigPanda features can be utilized to their true potential as it has alert correlation capability. The alert can be redirected to the proper support team using the auto-share feature. This wouldn't be the case where asset records are not updated and the Operations have to manually assign the alerts to support groups.
