TrustRadius: an HG Insights company

Splunk IT Service Intelligence (ITSI)

Score10 out of 10

56 Reviews and Ratings

Learn More

What is Splunk IT Service Intelligence (ITSI)?

Splunk supports IT operations analytics with the Splunk IT Service Intelligence premium offering, a software application available to subscribers to Splunk Cloud or Splunk Enterprise log analytics and SIEM platforms.

Categories & Use Cases

Reviews

What users are saying about Splunk IT Service Intelligence (ITSI).
View all reviews

Splunk IT Service Intelligence (ITSI) - Expensive but best in the market

Jai Raj Sharma
Information Technology Manager in Information Technology at National Engineering Industries (1001-5000 employees employees)

Use Cases and Deployment Scope

Splunk IT Service Intelligence (ITSI) helps us monitoring the performance of the services we are providing to the customer & other organization members. It also helps us in monitoring the performance of the services we offer and troubleshooting the issues which arise. To monitor we have created several dashboards so that we have the real time data and reports as per our requirement.

Pros

  • Customized reports
  • Real time data
  • Detail analysis of the data
  • Discovery of new local admin account
  • Detects several attacks

Cons

  • Expensive deployement
  • Various kind of installation
  • Optimizing the search is complex

Return on Investment

  • Splunk IT Service Intelligence (ITSI) has improved our efficiency and accuracy in detecting the attacks and mitigating them.
  • It helped us in discovering various kinds of logins within our organization, such as failed logins, interactive logins, admin logins etc etc
  • With the help of Splunk IT Service Intelligence (ITSI) we can now keep an eye on real time data as well.

Usability

Alternatives Considered

IBM Security QRadar EDR

Other Software Used

LogSentinel SIEM, Forcepoint ONE, Fortinet FortiGate

Great way to correlate notable events from existing Splunk datasets as well as external systems

Incentivized
Verified User
Consultant in Engineering (1-10 employees employees)

Use Cases and Deployment Scope

We are utilising ITSI to monitor the health of our business operations and IT services. We use a range of KPI approaches to capture business health for stakeholder reporting, as well as lower level IT Ops monitoring of hardware and microservices.

Pros

  • Reducing alerting noise
  • Improving visibility of services
  • Great for finding root cause of issues

Cons

  • Should be easier to build notable events with rich data
  • It should be possible to build custom dashboards with standard ITSI UI components

Return on Investment

  • Improved visibility across systems
  • Easy to pin-point root cause of issues within our services
  • Ability to re-use data already ingested as part of other monitoring within Splunk

Alternatives Considered

Amazon CloudWatch and AppDynamics

Other Software Used

Splunk Cloud, Slack, AWS Security Hub

ITSI - worth it.

Incentivized
Peter Luyten
Splunk Administrator in Information Technology at Netsimco (51-200 employees employees)

Use Cases and Deployment Scope

Splunk ITSI is being used to mitigate hardware resource issues before they become a problem and troubleshoot issues for our teams.

Pros

  • Asset group overview.
  • Detailed metrics.
  • Customization to meet customer requirements.

Cons

  • Easier navigation for new users.
  • KPI responses.
  • Deconflicting multiple entity IDs.

Return on Investment

  • Fewer man hours to monitor and react.
  • Preemptive response and alerts.

Other Software Used

Splunk Enterprise, Splunk Enterprise Security (ES), Trellix ePolicy Orchestrator

Enterprise Health with Splunk IT Essentials

Incentivized
Kendal DroddyView profile
Senior System Engineer in Engineering at General Dynamics Information Technology (201-500 employees employees)

Use Cases and Deployment Scope

Splunk IT has helped revolutionize how we monitor all of our IT devices across the enterprise. Prior to its implementation, monitoring and troubleshooting had no real scope or direction. It was very much an unorganized, ad-hoc type of pursuit that wasted a ton of time and energy tracking problems down. Splunk IT Essentials lets us consolidate our monitoring into a single tool and see real time insights into the health of the enterprise.

Pros

  • Real time enterprise health monitoring
  • Metrics ingest, parsing, and visualization
  • Investigating and troubleshooting problems that arise with devices

Cons

  • Currently need to special request this app on Splunk Cloud
  • Not compatible with older versions of Splunk

Most Important Features

  • Device level metrics data collection and visualization
  • At-a-glance overview of enterprise health
  • Easily scalable as new devices are added to the enterprise

Return on Investment

  • Huge time saver in troubleshooting issues in the environment
  • Alerts allow for much quicker response time to certain events that require attention
  • Able to leverage this app when transitioning to ITSI

Alternatives Considered

Splunk Enterprise, Splunk Enterprise Security (ES) and Splunk IT Service Intelligence (ITSI)

Other Software Used

SAS Enterprise Miner, Tableau Desktop, Azure Blob Storage

Splunk ITSI in Practice

Todd Kulick
in Engineering at Xperi (1001-5000 employees employees)

Use Cases and Deployment Scope

We are using Splunk IT Service Intelligence (ITSI) as the centerpiece of our Observability strategy for multiple product lines that provide interactive television services. It helps us to ensure the proper functionality of our services and the surrounding ecosystem as well as reducing mean time to service restoration when outages occur. Our Splunk ITSI system observes telemetry from our data center and clouds infrastructures as well as telemetry collected from our customer media consumption endpoint software on set-top boxes, IPTV streamers, mobile devices and web browsers.

Pros

  • Modeling low-level machine, device, and network metrics into high-level ecosystem services
  • Powerful adaptive thresholds for detecting Service and KPI anomalous behavior
  • Powerful toolbox for canned and customized event analytics pipeline providing true AI operations
  • Direct access to (integration with) all of the numerous and varied Splunk ecosystem data sources and types

Cons

  • Better integrations with "infrastructure as code" workflows via tools like Terraform
  • More support for adaptive thresholding with numerous and changing dynamic entities
  • Better ability to surface details of unhappy or anomalous KPIs and entities that contributed to episode production

Return on Investment

  • Splunk ITSI has reduced the number of alerts exposed to our Network Operations Center by 100x while increasing the context around outages.
  • Splunk ITSI has increased the accuracy of our incident detection by leveraging the Event Analytics system to weigh the behavior of the many characteristics of each component together instead of independently.
  • Splunk ITSI has reduced our incident MTTR (mean time to restore) by detecting issues faster, presenting them more clearly, and surfacing the salient details about the underlying issue.

Alternatives Considered

BigPanda, Amazon CloudWatch, Prometheus, Icinga, Zabbix and AppDynamics

Other Software Used

Splunk Enterprise, BigPanda, Zabbix, Grafana, Amazon CloudWatch

Related Products

Products similar to Splunk IT Service Intelligence (ITSI) that may also meet your needs.
All comparisons
ScienceLogic SL1
CompareLearn more
Datadog
CompareLearn more
Sumo Logic
CompareLearn more
BigPanda
CompareLearn more
Moogsoft
CompareLearn more
Dynatrace
CompareLearn more
BMC Helix Discovery
CompareLearn more
BMC Helix Monitor, discont
CompareLearn more