Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Splunk Platform 2020 & Beyond


Published on

Looking into 2020 and beyond, we are certainly going to continue this trend of strategic technology investment and architecture evolution. This session’s aim is to highlight Splunk platform evolutionary approach to address key technology trends. Additionally, many customers are adopting Serverless cloud services to deliver their cloud solutions. This session will include a live demo of a new library of functions which provides Google Cloud Platform (GCP) serverless “push” capability to send data into Splunk, via HTTP Event Collector (HEC).

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Splunk Platform 2020 & Beyond

  1. 1. © 2 0 2 0 S P L U N K I N C . Splunk platform 2020 and beyond — Trends and Observations March 2020 Paul Davies | Principal SE Architect EMEA Yuval Tenenbaum | Director SE Architects EMEA
  2. 2. During the course of this presentation, we may make forward‐looking statements regarding future events or plans of the company. We caution you that such statements reflect our current expectations and estimates based on factors currently known to us and that actual events or results may differ materially. The forward-looking statements made in the this presentation are being made as of the time and date of its live presentation. If reviewed after its live presentation, it may not contain current or accurate information. We do not assume any obligation to update any forward‐looking statements made herein. In addition, any information about our roadmap outlines our general product direction and is subject to change at any time without notice. It is for informational purposes only, and shall not be incorporated into any contract or other commitment. Splunk undertakes no obligation either to develop the features or functionalities described or to include any such feature or functionality in a future release. Splunk, Splunk>, Data-to-Everything, D2E, and Turn Data Into Doing are trademarks and registered trademarks of Splunk Inc. in the United States and other countries. All other brand names, product names, or trademarks belong to their respective owners. © 2020 Splunk Inc. All rights reserved. Forward- Looking Statements © 2 0 2 0 S P L U N K I N C .
  3. 3. © 2 0 2 0 S P L U N K I N C . • A new decade brings a new wave of technological change — and unprecedented opportunity • Algorithms may decide who gets a job interview • Automation could kill your org culture, or it can unlock human creativity • 5G, AI, NLP New Decade — New Predictions
  4. 4. © 2 0 2 0 S P L U N K I N C . This not a roadmap… Not a Roadmap!
  5. 5. © 2 0 2 0 S P L U N K I N C . • Getting Cloudier and Cloudier • Expanding beyond the Index • Massive QueryAcceleration • Open Source and Observability Back to the future
  6. 6. © 2 0 2 0 S P L U N K I N C . Elastic, highly agile experience Modern architecture, self- service & 3 pillars of Observability with metrics, logs and events. If you only had to remember 3 Things… SPL Everywhere Refine, modify and adjust data mid-stream and in milliseconds, & query data source outside of Splunk. Multi and Hybrid CloudBeyond the IndexCloud Native Choice and simplicity Take control of sprawling cloud infrastructures. High-scale monitoring
  7. 7. © 2 0 2 0 S P L U N K I N C . Container Runtime “Among all organizations using containers in production, 68% use K8s” — HEPTIO THE STATE OF K8S REPORT, 2018
  8. 8. © 2 0 2 0 S P L U N K I N C . Industry: • K8s evolved as the default open-source platform for managing containerized workloads & services • Use of operators as a standard pattern for managing applications in K8s Splunk Platform: • Splunk Operator for K8s (EKS, GKE, OpenShift, Docker EE, OSK) • A more containerized approach (self-healing & auto scaling) Splunk Admin: • Traditional admin roles will evolve around K8s & its ecosystem Container Runtime and Operators kubectl apply -f
  9. 9. © 2 0 2 0 S P L U N K I N C . Open Source Software
  10. 10. © 2 0 2 0 S P L U N K I N C . Investing more in OSS Industry: • Open source going “mainstream” with IBM buying RH • Abstraction and simplicity is needed Splunk Platform: • Doubling down on Open Source • Abstract and simplify complexity • Accelerate efforts in real-time stream processing Splunk Admin: • Going beyond splunkd • Getting data in & out as well as OSS integrations
  11. 11. © 2 0 2 0 S P L U N K I N C . Cloud Native
  12. 12. © 2 0 2 0 S P L U N K I N C . The journey to Cloud Native Industry: • Stateless architectures will continue to accelerate the pace of innovation • Developers requires the ability to monitor and observe in real time Splunk Platform: • Serverless data collection • Elastic, highly agile experience • 3 Pillars of Observability (logs, metrics, traces) Splunk Admin: • Logs, metrics, traces but also events, errors, RPC’s, core dumps Tweeter sentiments…
  13. 13. © 2 0 2 0 S P L U N K I N C . Multi and Hybrid Cloud
  14. 14. © 2 0 2 0 S P L U N K I N C . Industry: • 2020 will continue the multi-cloud aspiration journey • Accelerated by Cloud Native innovation Splunk Platform: • Integrations into Cloud native sources • Security, Performance and Cost • SaaS and Federated capabilities Splunk Admin: • Understand GDI complexities • Compliance and Data Residency Multi and Hybrid Cloud Dev Team Dev Team Security Team Tools Tools Tools Dev Team Tools $20,000 $10,000 $40,000 $60,000 On-Prem Hybrid with Brokers Cloud
  15. 15. © 2 0 2 0 S P L U N K I N C . Expanding beyond the Index
  16. 16. © 2 0 2 0 S P L U N K I N C . Beyond the Index Industry: • From Batch into Streaming Data • Complex data landscape – Martini of data Splunk Platform: • Unbounded learning • Distributed processing of external compute resources • Real time Splunk Admin: • SPL everywhere • More Data-Architecting, less administrating Splunk > Librarians vs. Admins
  17. 17. © 2 0 2 0 S P L U N K I N C . GDI-Serverless demo with GCP
  18. 18. © 2 0 2 0 S P L U N K I N C . Load Balancer & Splunk HTTP Event Collector Splunk Cluster (Enterprise, or Cloud) Stackdriver DashboardsCloud Functions Google Cloud Store Getting GCP Data In – Serverless Functions Alerts Asset Inventory Any Log Logs Topic Subscriptions Metrics PubSub
  19. 19. © 2 0 2 0 S P L U N K I N C . Key Takeaways • Elastic, highly agile experience • Beyond the Index • Hybrid and Multi Cloud
  20. 20. © 2 0 2 0 S P L U N K I N C . You! Thank