Splunk IT Service Intelligence (ITSI)

Splunk IT Service Intelligence (ITSI) helps us monitoring the performance of the services we are providing to the customer & other organization members. It also helps us in monitoring the performance of the services we offer and troubleshooting the issues which arise. To monitor we have created several dashboards so that we have the real time data and reports as per our requirement.

• Splunk IT Service Intelligence (ITSI) has improved our efficiency and accuracy in detecting the attacks and mitigating them.
• It helped us in discovering various kinds of logins within our organization, such as failed logins, interactive logins, admin logins etc etc
• With the help of Splunk IT Service Intelligence (ITSI) we can now keep an eye on real time data as well.

IBM Security QRadar EDR

LogSentinel SIEM, Forcepoint ONE, Fortinet FortiGate

We are utilising ITSI to monitor the health of our business operations and IT services. We use a range of KPI approaches to capture business health for stakeholder reporting, as well as lower level IT Ops monitoring of hardware and microservices.

• Improved visibility across systems
• Easy to pin-point root cause of issues within our services
• Ability to re-use data already ingested as part of other monitoring within Splunk

Amazon CloudWatch and AppDynamics

Splunk Cloud, Slack, AWS Security Hub

Splunk ITSI is being used to mitigate hardware resource issues before they become a problem and troubleshoot issues for our teams.

• Fewer man hours to monitor and react.
• Preemptive response and alerts.

Splunk Enterprise, Splunk Enterprise Security (ES), Trellix ePolicy Orchestrator

Splunk IT has helped revolutionize how we monitor all of our IT devices across the enterprise. Prior to its implementation, monitoring and troubleshooting had no real scope or direction. It was very much an unorganized, ad-hoc type of pursuit that wasted a ton of time and energy tracking problems down. Splunk IT Essentials lets us consolidate our monitoring into a single tool and see real time insights into the health of the enterprise.

• Device level metrics data collection and visualization
• At-a-glance overview of enterprise health
• Easily scalable as new devices are added to the enterprise

• Huge time saver in troubleshooting issues in the environment
• Alerts allow for much quicker response time to certain events that require attention
• Able to leverage this app when transitioning to ITSI

Splunk Enterprise, Splunk Enterprise Security (ES) and Splunk IT Service Intelligence (ITSI)

SAS Enterprise Miner, Tableau Desktop, Azure Blob Storage

We are using Splunk IT Service Intelligence (ITSI) as the centerpiece of our Observability strategy for multiple product lines that provide interactive television services. It helps us to ensure the proper functionality of our services and the surrounding ecosystem as well as reducing mean time to service restoration when outages occur. Our Splunk ITSI system observes telemetry from our data center and clouds infrastructures as well as telemetry collected from our customer media consumption endpoint software on set-top boxes, IPTV streamers, mobile devices and web browsers.

• Splunk ITSI has reduced the number of alerts exposed to our Network Operations Center by 100x while increasing the context around outages.
• Splunk ITSI has increased the accuracy of our incident detection by leveraging the Event Analytics system to weigh the behavior of the many characteristics of each component together instead of independently.
• Splunk ITSI has reduced our incident MTTR (mean time to restore) by detecting issues faster, presenting them more clearly, and surfacing the salient details about the underlying issue.

BigPanda, Amazon CloudWatch, Prometheus, Icinga, Zabbix and AppDynamics

Splunk Enterprise, BigPanda, Zabbix, Grafana, Amazon CloudWatch