SlideShare a Scribd company logo
Setup	Before	You	Can	Play	
1.  Download	this	presenta2on	slide	deck:	h6ps://splunk.box.com/v/LongBeach-ITSI	
	
2.	If	you	have	not	done	so	already,	Sign	up	for	the	FREE	Splunk	ITSI	Online	Sandbox:	
•  hEp://splunk.com/itsi		
•  Select	"Free	Online	Sandbox"	
	
3.	Please	test	access	to	your	sandbox;	
•  Chrome,	Firefox,	Safari		
are	recommended;	
•  IE	is	NOT	recommended	
	
4.	AOer	logging	in,	select	
IT	Service	Intelligence	from	the	
list	of	apps	at	the	leO	
1	
WiFi	
Splunk	
splunk2017
Copyright	©	2017	Splunk	Inc.	
Building	
Service	Intelligence	with	
Splunk	IT	Service	Intelligence	
Tom	Harrop	
IT	OperaUons	Specialist	
Tuesday,	February	7,	2017		
David	Millis	
ITOA	Architect
Agenda	
3	
u  IntroducUons	and	Set	Up	
u  Splundamentals	–	IT	TroubleshooUng	with	Splunk	
u  What	is	IT	Service	Intelligence?	
u  Service	Intelligence	Design	PracUces		
u  Let's	Play!		
u  What's	Next?	
u  Happy	Hour!
Safe	Harbor	Statement	
During	 the	 course	 of	 this	 presentaUon,	 we	 may	 make	 forward	 looking	 statements	 regarding	 future	
events	or	the	expected	performance	of	the	company.	We	cauUon	you	that	such	statements	reflect	our	
current	expectaUons	and	esUmates	based	on	factors	currently	known	to	us	and	that	actual	events	or	
results	could	differ	materially.	For	important	factors	that	may	cause	actual	results	to	differ	from	those	
contained	in	our	forward-looking	statements,	please	review	our	filings	with	the	SEC.	The	forward-looking	
statements	made	in	this	presentaUon	are	being	made	as	of	the	Ume	and	date	of	its	live	presentaUon.	
If	reviewed	aOer	its	live	presentaUon,	this	presentaUon	may	not	contain	current	or	accurate	informaUon.		
We	do	not	assume	any	obligaUon	to	update	any	forward	looking	statements	we	may	make.	In	addiUon,	
any	informaUon	about	our	roadmap	outlines	our	general	product	direcUon	and	is	subject	to	change	at	
any	Ume	without	noUce.	It	is	for	informaUonal	purposes	only	and	shall	not	be	incorporated	into	any	
contract	 or	 other	 commitment.	 Splunk	 undertakes	 no	 obligaUon	 either	 to	 develop	 the	 features	 or	
funcUonality	described	or	to	include	any	such	feature	or	funcUonality	in	a	future	release.	
4
Key Takeaways
Build	on	what	you	are	already	doing	with	Splunk	
Service	Intelligence	design	and	configuraUon	pracUces	
What	is	possible	with	Splunk	IT	Service	Intelligence
Splundamentals	–	IT	
Troubleshoo2ng	with	
Splunk
Challenging Traditional Methods
Network	
Infrastructure	Layer	
Storage	
Server	
74%
-36%
ApplicaUon	Layer	
SyntheUc	APM	
Byte	Code		
InstrumentaUon	
AdapUve		
Thresholding	
Service	Model	definiUon	
&	CorrelaUon	Engine	
	
Business Layer
Aggregation/Correlation/Visualization
Service Layer
Challenges	
•  Too	many	disparate	components	
•  Difficult	to	define	Service	Model	
•  Labor	intensive	
•  Most	implementaUons	fail	
•  Very	important	source	is	
missing!	(machine	data)
Data-Defined & Driven Service Insights
Infrastructure	Layer	ApplicaUon	Layer	
Splunk>	is	the	missing	link	
•  Data	Fidelity	
•  Single	Repository	for	ALL	data	
•  Easier	to	Manage	Services	
•  Reduced	IntegraUons	
•  Reduced	Point	SoluUons	
•  CollaboraUve	Approach	
•  Quick	Ume	to	value	
Data Fabric Platform
Service Intelligence
Network	
Packet,	Payload,	Traffic,	
UUlizaUon,	Perf	
SyntheUc	APM	
Availability,	Capacity,	
User	Experience	
Byte	Code	InstrumentaUon	
Usage,	Experience,	
Performance,	Quality	
AdapUve	Thresholding	
Apps,	Services,	Systems	74%
-36%
Server	
Performance,	Usage,	
Dependency	
Storage	
UUlizaUon,	Capacity,	
Performance	
MACHINE	DATA
Splunk	Approach	to	Machine	Data	
9	
Structured	
RDBMS	
SQL	
Schema	on	Write	
Tradi2onal	
ETL	
Search	
Schema	on	Read	
Splunk	
Universal	Indexing	
Volume	 Velocity	 Variety	
Unstructured	
	
•  Define	StaUc	schema	
•  ETL	into	Schema	
•  Enrich	at	write	
•  New	data	=	new	columns	
•  New	quesUons	=	new	columns	
•  “Data	at	rest”	(delayed	info)	
•  Labor	Intensive	&	Ume	consuming	
Ideal	for	Repor*ng	
•  “Schema-on-the-Fly”	
•  Data	in	naUve	format	
•  Enrich	at	read	
•  New	data	=	no	changes	needed	
•  New	quesUons	=	no	changes	needed	
•  “Data	in	moUon”	(Real	Ume)	
•  Fast	Ume	to	value	
Ideal	for	Inves*ga*on
Listen	to	your	data	
Let’s	take	a	closer	look	at	IT	troubleshoo2ng	with	Splunk	
10
Machine	learning-powered	analy>cs	for	real->me	service	
insights,	simplified	opera>ons	and	root-cause	isola>on
Defining	Service	Intelligence	
Enabling	a	business-aware	IT	
Measuring	and	repor>ng	on	indicators	that	maCer		
Unlocking	opera2onal	efficiencies	
Collabora>ng	across	silos	to	improve	service	opera>ons	
Data-based	decision	making	
Solving	problems	and	an>cipa>ng	piFalls	with	sophis>cated	
analy>cs	and	powerful	insights
IT	Service	Intelligence	Value	Stack
§  Time	Series	Index	
§  Schema	on	Read	
§  Data	Model	Core	Splunk	>	
§  Visualizes	en2re	stack	
§  View	the	en2re	Ecosystem		
§  3	clicks	to	get	the	answer	versus	10	
Service	
Model	
§  Adap2ve	Threshold	
§  Behavior	Anomaly	
§  Correlates	Data	into	Knowledge	ML	
Search	Based	
KPI’s	
§  Accelerators		
§  Trend	aggrega2on	
§  Mul2	KPI	Alerts	
ITSI
The	possibiliUes	for	Business…
The	possibiliUes	for	IT	OperaUons…	
Service	Health
What	is	a	Service?	
Service	
Requests	
Responses	
In	ITSI,	a	Service	is	a	logical	group	of	technology	components	that	a	user	
deems	need	to	be	monitored	together.	
It	can	oOen	be	generalized	as	a	“black	box”	which	we	send	requests,	and	
expect	responses	
18
What	is	a	Service?	
DNS	
Requests	
Responses	
Technical	Services	
Auth	
Requests	
Responses	
Web	
Requests	
Responses	
Services	can	be	lower	level	(technical)	…	
19
What	is	a	Service?	
DNS	
Requests	
Responses	
Technical	Services	
Order	Entry	
Volume	
Revenue	
Business	Services	
Auth	
Requests	
Responses	
Web	
Requests	
Responses	
Customer	
Care	
Requests	
SLA	Compliance	
Services	can	also	be	higher	level	(business)	…	
20
What	is	a	Service?	
Packet	Network	
Hypervisor	and	Hosts	
RBMDBs	
Storage	Tier	
API	Services	
																		Web	Services	
Customer	Transac2ons	
Mobile	API/
Middleware	
Business	Func2on	
DNS	
Services	can	encompass	mulUple	Uers	of	the	IT	domain.		
Services	may	also	depend	upon	other	services	
21
What	is	a	KPI?	
DNS	
KPI:	Request	volume	
KPI:	Error	rate	
KPI:	Average	response	Ume	
KPI:	Server	CPU	load	
KPI:	ConfiguraUon	changes	
Customer	
Transac2ons	
KPI:	TransacUon	volume	
KPI:	Error	rate	
KPI:	Average	response	Ume	
KPI:	Max	response	Ume	
KPI:	Count	of	Change	records	
KPIs	and	Health	scores	consUtute	the	means	by	which	
Services	are	monitored.	
22	
Business	
Func2on	
KPI:	Business	volume	
KPI:	Error	rate	
KPI:	Revenue	rate	
KPI:	Conversion	rate	
KPI:	Count	of	Incident	Uckets
Key	Performance	Indicators	(KPIs)	
23	
A	Key	Performance	Indicator	(KPI)	is	powered	by	a	Splunk	search	in	ITSI	that	
monitors	a	specific	aEribute	like	CPU	uUlizaUon,	Response	Time,	Number	of	
Errors	and	so	on.			KPIs	are	contained	within	Services	to	measure	their	health.
Service	Health	Scores	
24	
A	Health	score	is	a	score	form	0-100	(0	being	criUcal	and	100	being	normal)	
that	measures	the	health	of	a	Service.		It	is	calculated	based	on	all	KPIs	
importance	and	its	status	(e.g.	green,	orange,	red),	once	every	minute.
Splunk	IT	Service	Intelligence	
Let’s	take	a	closer	look	at	Service	Intelligence	with	Splunk	
25
Service	Intelligence	
Design	Prac2ces	
26
Bring	Subject	
Experts	Together	
Design	Before	
Configuring	

Best	PracUces	for	Service	Intelligence	
Start	With	a	
Problem	Worth	
Solving
The	Business	Problem	for	BuEercup	Games		
Supply Chain
	
Limited	Visibility	
Online
Store
Poor	Customer	
SaUsfacUon	
ERP
Frequent	
BoElenecks	
Failed
Interactions
War	Room	
EscalaUons	
Business
Impact
$48K	/	Week	
Lost	Revenue
Service	DecomposiUon	
Infrastructure	Layer	
Power	/	Cooling	/	FaciliUes	
Server	–	Networking	–	Storage	
Service	Layer	 Business	Service	
ApplicaUon	Layer	
Middleware	–	ApplicaUon	Server	-	Database	
Custom	Apps	
Business	Layer	
Mail	Transport	-	Order	Processing	
E-Commerce	-	Financials
Service	Intelligence	Design	–	BuEercup	Games	
Infrastructure Layer
Application Layer

Business Layer
Service Layer
Order	Entry	 Manufacturing	 Shipping	 Fulfillment	
Supply	Chain	
Online	Store	 EDI	
Web	Tier	 Middleware	
• Total	Orders	
• Total	Revenue	
• Unit	Count	
• Unit	Failures	
• Service	Level	 • Delivery	Time	
• Online	Orders	
• Online	Revenue	
• Response	Time	
• ServiceHealth	
• Incidents/Changes	
• Customer	Sa2sfac2on	
• HTTP	Hits	
• Error	Rate	
• CPU	Load	
• Memory	Used	
• Disk	Used	
• IO	Latency	
• CPU	Load	
• Memory	Used	
• Disk	Used	
• IO	Latency	
• Response	Time	
• Error	Rate	
• Response	Time	
• Storage	Free
Service	Intelligence	Design	in	ITSI	
1.  High-value	business	services	
•  BuEercup	Games	Online	Store	and	Supply	Chain	
2.  Major	business	funcUons	
•  Order	Entry,	Manufacturing,	Shipping	Fulfillment	
3.  SupporUng	services	
•  Web,	Middleware,	Database	
4.  Relevant	KPIs	for	each	service	
•  Database:,	errors,	SQL	hits,	…)	
5.  Splunk	search	for	each	KPI	
•  (index=DB	(warn*	OR	error*)	|	stats	count)	
31
Typical	Data	Sources	
Infrastructure Layer
Application Layer

Business Layer
Service Layer
Order	Entry	 Manufacturing	 Shipping	 Fulfillment	
Supply	Chain	
Online	Store	 EDI	
Web	Tier	 Middleware	
• Applica2on	Logs	
• Corporate	Databases	
• Service	Management	
• Applica2on	Logs	
• Webserver	Logs	
• DB	Perf	Counters	
• Wire	data	
• Perf	Counters	
• Access	Logs	
• Network	Logs
Copyright	©	2017	Splunk	Inc.	
Let’s	Play!	
	
Secng	up	Service	Intelligence
Service	Visibility	in	ITSI	
34	
CLICK	
“Glass	Tables”
Service	Visibility	in	ITSI	
35	
CLICK	(open	in	new	tab)	
“BuCercup	Games	
Business	Process	(IN	
PROGRESS)”
Service	Visibility	in	ITSI	
36	
CLICK	(open	in	new	tab)	
“BuCercup	Games	
Online	Store”
Goal	1:	Supply	Chain	Visibility	
37
Goal	2:	Online	Store	Process	Flow	
38
New	Requirements!	
39	
●  Create	a	new	KPI	for	the	DB	Service:		
●  Network	UUlizaUon		
●  Modify	the	ExecuUve	Glass	Table	
in	order	to	show	off	the	services	
you	slave	over		
	
“WE	only	have	about	15min		
TO	DO	WHAT	???!!???”	
	
Think	about	how	long	this	
would	take	you	today?
40	
ConfiguraUon	of	DB	Service	
Click	Configure	>		
							Click	Services
Let’s	Talk	EnUUes	
41	
●  Select	Database	Service	
●  EnUUes	are	the	relevant	things	which	support	
this	service	(usually	hosts)	
●  Select	the	right	entries	with	filters,	ANDs,	ORs	
●  Original	EnUty	list	can	come	from	CMDB,	
spreadsheet,	Splunk	search,	others
A	KPI	in	5	minutes?	Absolutely!	
42	
Click	New	–	Generic	KPI	
Select	Data	Model	
●  Host	Opera>ng	System	
●  Network	
●  #	bytes	
●  Next		
Call	it	“Network	U*liza*on”,	
with	your	username	up	front
KPIs	ConUnued….		
43	
Splunk	Builds	Searches	for	you	–		
Oh	Yeah,	that’s	happening	J	
●  Select	Yes	for	Split	by	&	Filter	op>ons	
●  Select	host	for	En*ty	Lookup	&	Alias	op>ons	
●  Click	Next
Almost	There…	
44	
Select	
●  KPI	Search	Schedule:	Every	Minute		
●  En*ty	Calcula*on:	Average	
●  Service/Agg	Calcula*on:	Average	
●  Calcula*on	Window:	Last	Minute	
●  Click	Next		
●  Unit:	Bps	
●  Click	Next
Final	Steps	…	
45	
Set	your	thresholds:		
●  Aggregate	(All)		
●  Per	En*ty			
●  Click	“Add	Threshold”	TWICE	
●  Make	the	Neapolitan	ice	cream	colors	
Yellow,	Green,	Yellow	
●  Drag	the	sliders	around	in	order	to	get	
the	current	data	graph	enUrely	inside	the	
Green	(normal)	band	
●  Click	Finish	
●  Other	opUons	are	also	available,	
including	adapUve	thresholds	and	
anomaly	detecUon
AdapUve	Thresholds	
46	
What	if	your	KPI	data	looks	like	this?
47	
AdapUve	Thresholds	
StaUc	thresholds	will	not	work…
48	
AdapUve	Thresholds	
AdapUve	Thresholding	works	beauUfully	with	cyclical	(and	other	dynamic)	data
Anomaly	DetecUon		
49	
●  Machine	Learning	
●  “Trending”	detects	deviaUons	for	
aggregate	KPI	based	on	historical	trends	
●  “EnUty	Cohesion”	detects	enUUes	which	
deviate	from	“pack”	behavior
Let’s	Fix	that	Glass	Table	
50
Clone	the	Glass	Table	
51	
Return	to	Saved	Glass	Tables	page		
(click	on	Glass	Tables	in	the	upper	menu	bar)	
	
CLICK	Edit	for	“BuEercup	Games	Business	Process	(IN	
PROGRESS)”	
•  Select	Clone	
•  Title:	Add	your	username		
to	the	front	
•  Permissions:	Shared	in	App	
•  Click	Clone	Page	
	
•  Click	on	your	new	Glass	Table	
from	the	list,	to	view	it
Edit	&	Have	Fun!	
52	
Click	on	Edit	in	the	upper	right	corner	of	your	Glass	Table	
	
Use	the	“Services”	panel	on	the	leO	to	select	Individual	KPIs,	
or	Aggregate	Service	Health	Scores	
•  Choose	2	KPIs	from	Online	Store	that	would	be	useful	in	
the	“Order	Process”	secUon	
•  Drag	the	selected	widgets	onto	the	canvas,	posiUoning	in	
the	gray	oval	
	
•  What’s	the	difference	between	the	
	
	
																											and															tools	at	the	top	leO?
More	Fun	with	the	Glass	Table	Editor…	
53	
Use	the	Configura*ons	panel	on	the	right	to	edit	a	
selected	widget	
•  Can	change	the	visualizaUon	type,	drilldown	
behavior,	and	other	se{ngs	
	
	
	
	
	
	
	
•  You	should	hit	Save	frequently	
•  Revert	All	Changes	can	be	helpful,	occasionally
Finishing	up	…	
54	
•  Add	a	ServiceHealthScore	widget	for	Online	
Store	under	BuEercup	
•  Choose	a	Viz	Type	with	a	sparkline	graph,	then	
resize	to	make	it	look	preEy	
•  Modify	the	Custom	Drilldown	acUon	to	go	to		
the	saved	glass	table,		
BuVercup	Games	Online	Store	
•  Bonus	Points:	Make	the	label	bigger,	more	
readable	
•  Click	Save	
•  View	when	done
Copyright	©	2017	Splunk	Inc.	
Let’s	Play!	
	
A	Troubleshoo2ng	Exercise
A	TroubleshooUng	Exercise	
56	
Let’s	use	ITSI	to	troubleshoot	an	outage		
●  Start	at	your	Glass	Table,	“<UserName>	BuEercup	Business	Process”	
●  Customer	Care	reports	that	unhappy	customers	are	complaining	of	failures	
and	long	delays	when	trying	to	purchase	
●  The	calls	began	coming	in	at	around	the	top	of	the	last	hour.	
●  In	the	upper	right	corner	of	the	Glass	Table,	change	the	Ume	picker	from	Now	
to	XX:00:00.0,	where	XX	is	the	previous	hour.		For	example,	if	it	is	currently	
14:05,	set	the	Ume	picker	to	13:00:00.0,	then	Apply	
●  This	is	how	we	can	“Ume	travel”	back	to	see	condiUons	at	a	parUcular	
outage–	oh	yeah!
A	TroubleshooUng	Exercise,	cont’d	
57	
●  The	Online	Store	seems	to	be	degraded,	just	as	Customer	Care	reported.		
Click	on	the	widget	under	BuEercup	to	drill	down	further
A	TroubleshooUng	Exercise,	cont’d.	
58	
●  The	Online	Store	Glass	Table	shows	a	much	more	detailed	view,	including	the	impacted	customer-facing	KPIs	
at	the	far	leO	(Revenue,	etc)		
●  Based	on	this	view	of	all	the	relevant	
services,	where	do	you	think	the	root	cause	
lies?			
●  Which	service	should	we	troubleshoot	first?	
●  Click	on	Health	widget	for	that	service,	to	
drill	down	to	a	Deep	Dive
Deep	Dive	
59	
●  Deep	Dive	shows	mulUple	KPIs	and	Health	Scores	in	parallel	“swim	
lanes”.	
●  The	Health	Score	for	this	Service	is	the	top	swim	lane.		Can	you	see	
when	it	begins	to	degrade	from	100%?	
●  Mousing	over	this	point	in	Ume,	can	you	spot	the	KPI	with	the	
leading	fault	indicaUon,	i.e.,	what	failed	first?	
●  To	improve	readability,	make	sure	the	
Primary	Time	Range	(upper	right	corner)	is	
set	to	Rela2ve>	Earliest:	2	Hours	Ago
MulU-KPI	Alerts	and	Notable	Events	
60	
●  Click	on	Notable	Events	Review	
●  MulUple	KPIs	and	Healthscores	can	
be	combined	in	sophisUcated	ways	
to	create	MulU-KPI	alerts	
●  When	a	MulU-KPI	alert	fires,	one	of	
the	outcomes	is	the	creaUon	of	a	
Notable	Event	
●  Notable	Events	allow	NOC	
personnel	and	others	to	triage	and	
coordinate	event	management	
efforts
Service	Analyzer	
61	
●  Click	on	Service	Analyzer	>	Default	Service	Analyzer	
●  Back	where	we	started!	
●  This	view	shows	a	“no-frills”	list	of	
services	(top)	and	hoEest	KPIs	
(boEom)	
●  Provides	access	into	Service	Details	
●  It	is	useful	for	NOCs	and	others	
who	need	a	high-level	situaUonal	
view
Copyright	©	2017	Splunk	Inc.	
Let’s	Play!	
	
Advanced	Exercises
Summary	
63	
●  High-value	services	can	be	decomposed	and	modeled	in	ITSI,	using	machine	data	
from	the	relevant	systems	
●  Services	and	KPIs	can	be	created	in	minutes,	with	sophisUcated	thresholding	
techniques	to	disUnguish	“normal”	from	“not	normal”	
●  Glass	Tables	allow	service	health	and	KPI	metrics	to	be	displayed	in	a	way	that	
makes	sense	to	specific	groups,	such	as	ExecuUve	Leadership,	Business	Service	
Owners,	the	NOC,	DevOps	&	Others	
●  Deep	Dives	allow	KPIs	to	be	compared	side-by-side	across	any	Ume	range,	
acceleraUng	root	cause	analysis	and	significantly	reducing	MTTR	
●  Mul2-KPI	Alerts	and	Notable	Events	reduce	alert	noise,	producing	acUonable	
events	and	a	means	to	manage	them	
●  …	and	it’s	fast+fun	to	build!
What	our	ITSI	
Customers	are	
doing
Splunk	IT	Service	Intelligence	
Machine	Learning-Powered,	Analy>cs-Driven	IT	Opera>ons	
Simplify	service	opera2ons		
Priori2ze	incidents	with	context	 Redefine	the	role	of	IT	
Combine	events	&	metrics	
across	silos	with	ease,	
flexibility	&	scale	in	days	
Unify	siloed	monitoring		
Leverage	machine	learning	to	
detect	anomalies	&	highlight	
events	that	maEer		
Deliver	business	&	service	context	to	prioriUze	
incident	invesUgaUon	&	acUon	
Support	decisions	&	communicate	results	
with	powerful	service-level	insights
Copyright	©	2017	Splunk,	Inc.	
Splunk’s	SoluUon:	A	lens	could	be	mulUple	
processes…	
All	the	scores	are	Ume	based	KPI’s		
or	nested	sub	processes	that	are	
searching	in	real	Ume	for	some	
relevant	condiUon	of	interest.	
These	are	Heath	Scores	–	a	high	level	aggregaUon	of	the	health	of	the	underlying	processes.			
All	the	scores	are	color	coded	to	convey	if	
they	are	“normal”	or	“abnormal”	based	on	
your	criteria	OR	Splunk’s	Packaged	Machine	
Learning,	enabled	with	an	ON/OFF	switch.	
This	shows	how	‘Glass	
Tables’	can	visualize	
key	performance	
indicators	and	health	
scores	that	combine	
data	from	diverse	
sources.		
	
This	example	is	an	
abbreviated	‘Book	to	
Bill’,	or	someUmes	
called	‘Order	to	Cash’	
business	process.
Call Center Service
Service Health
 Transactions
ACD Analysis – Core Splunk
Call Wait History
Inbound Analysis
Social Media 
Online Msg 
Social Media 
Mail Support
VOIP Service
Inbound Calls
Online Transactions
Internal Transfer Service
External Wire Service
Money Exchange Service
Money Transfer Services
Service Health
 Corporate
Reconciliation Service
Fed Exchange Service
Core Splunk Searches
Transaction History
System Investigation
Heat Map Analysis
CIO Scorecard
Enterprise Service Status
 Major Incidents
Service Health
Continuous Operational Visibility
Volume
 Revenue
 Incidents
 Changes
Major Changes
Service Health
 Volume
 Revenue
 Incidents
 Changes
Service Health
 Volume
 Ontime Delivery
Incidents
 Changes
 Service Health
 Volume
Revenue
 Incidents
 Changes
Service Health
 Volume
 Revenue
 Incidents
 Changes
 Container Util
Service Health
 Throughput
 Incidents
 Changes
The	Vision	-	Business	OperaUons	Center	
•  Splunk	ITSI	has	the	fundamentals	to	deliver	on	the	promise	of	real	Ume	business	visualizaUons	
•  Modeled	aOer	your	Security,	Network,	and	IT	OperaUons	Centers	
•  Monitoring	and	diagnosis	of	important	ecommerce	and	brick	and	mortar	operaUons	
•  Enhanced	with	process	insight	from	end-to-end,	alerts,	machine	learning	and	real-Ume	response	
NOC	
SOC	
BOC
Sign Up Now – We’re here to help!
Harness the creativity and domain knowledge of your
organization to unlock the value of data and solve an important
Business Service problem through a joint service intelligence
workshop with key stakeholders
Define methods for:
›  Proactive service monitoring
›  Reduced risk and failures
›  Faster issue resolution
›  Increased business performance
What is it? 
›  1 Day Onsite Workshop
›  Tightly linked with value
›  Collaborative approach
›  Build your own Glass
Table
Our Workshop InAction
Bring	your	subject	
experts	together	
Conduct	a	Service	
Intelligence	
workshop	

Your	Mission,	should	you	choose	to	accept	it…	
Find	a	problem	
worth	solving	in	
your	enterprise
Reference Stuff
74
●  ITSI	Sandbox	Guide:	(An	app	on	your	ITSI	instance)	
	
●  ITSI	DocumentaUon:		
hEp://docs.splunk.com/DocumentaUon/ITSI
Thank You
Tom	Harrop	
tharrop@splunk.com	
hEps://www.surveymonkey.com/r/XKXWJ37	
David	Millis	
dmillis@splunk.com	
Please	fill	out	the	Survey:

More Related Content

What's hot

Getting Started with Splunk Enterprise
Getting Started with Splunk EnterpriseGetting Started with Splunk Enterprise
Getting Started with Splunk Enterprise
Splunk
 
Getting Started with Splunk (Hands-On)
Getting Started with Splunk (Hands-On) Getting Started with Splunk (Hands-On)
Getting Started with Splunk (Hands-On)
Splunk
 
SplunkLive! Zürich - Splunk für Security
SplunkLive! Zürich - Splunk für SecuritySplunkLive! Zürich - Splunk für Security
SplunkLive! Zürich - Splunk für Security
Splunk
 
Best Practices For Sharing Data Across The Enteprrise
Best Practices For Sharing Data Across The EnteprriseBest Practices For Sharing Data Across The Enteprrise
Best Practices For Sharing Data Across The Enteprrise
Splunk
 
Splunk Overview
Splunk OverviewSplunk Overview
Splunk Overview
Splunk
 
Building a Security Information and Event Management platform at Travis Per...
 	Building a Security Information and Event Management platform at Travis Per... 	Building a Security Information and Event Management platform at Travis Per...
Building a Security Information and Event Management platform at Travis Per...
Splunk
 
Splunk Artificial Intelligence & Machine Learning Webinar
Splunk Artificial Intelligence & Machine Learning WebinarSplunk Artificial Intelligence & Machine Learning Webinar
Splunk Artificial Intelligence & Machine Learning Webinar
Splunk
 
Enterprise Security Guided Tour
Enterprise Security Guided TourEnterprise Security Guided Tour
Enterprise Security Guided Tour
Splunk
 
Splunk Discovery: Milan 2018 - Splunk Overview
Splunk Discovery: Milan 2018 - Splunk OverviewSplunk Discovery: Milan 2018 - Splunk Overview
Splunk Discovery: Milan 2018 - Splunk Overview
Splunk
 
Splunk Enterprise for IT Troubleshooting Hands-On
Splunk Enterprise for IT Troubleshooting Hands-OnSplunk Enterprise for IT Troubleshooting Hands-On
Splunk Enterprise for IT Troubleshooting Hands-On
Splunk
 
Splunk IT Service Intelligence
Splunk IT Service IntelligenceSplunk IT Service Intelligence
Splunk IT Service Intelligence
Splunk
 
Machine Data 101: Turning Data Into Insight
Machine Data 101: Turning Data Into InsightMachine Data 101: Turning Data Into Insight
Machine Data 101: Turning Data Into Insight
Splunk
 
dlux - Splunk Technical Overview
dlux - Splunk Technical Overviewdlux - Splunk Technical Overview
dlux - Splunk Technical Overview
David Lutz
 
Splunk Webinar: Webinar: Die Effizienz Ihres SOC verbessern mit neuen Funktio...
Splunk Webinar: Webinar: Die Effizienz Ihres SOC verbessern mit neuen Funktio...Splunk Webinar: Webinar: Die Effizienz Ihres SOC verbessern mit neuen Funktio...
Splunk Webinar: Webinar: Die Effizienz Ihres SOC verbessern mit neuen Funktio...
Splunk
 
Splunk Discovery Day Dubai 2017 - Keynote
Splunk Discovery Day Dubai 2017 - KeynoteSplunk Discovery Day Dubai 2017 - Keynote
Splunk Discovery Day Dubai 2017 - Keynote
Splunk
 
Splunk - Verwandeln Sie Datensilos in Operational Intelligence
Splunk - Verwandeln Sie Datensilos in Operational IntelligenceSplunk - Verwandeln Sie Datensilos in Operational Intelligence
Splunk - Verwandeln Sie Datensilos in Operational Intelligence
Splunk
 
Getting Started with Splunk Hands-on
Getting Started with Splunk Hands-onGetting Started with Splunk Hands-on
Getting Started with Splunk Hands-on
Splunk
 
Splunk for ITOps
Splunk for ITOpsSplunk for ITOps
Splunk for ITOps
Splunk
 
Splunk for ITOps
Splunk for ITOpsSplunk for ITOps
Splunk for ITOps
Splunk
 
Splunk Enterprise for IT Troubleshooting
Splunk Enterprise for IT TroubleshootingSplunk Enterprise for IT Troubleshooting
Splunk Enterprise for IT Troubleshooting
Splunk
 

What's hot (20)

Getting Started with Splunk Enterprise
Getting Started with Splunk EnterpriseGetting Started with Splunk Enterprise
Getting Started with Splunk Enterprise
 
Getting Started with Splunk (Hands-On)
Getting Started with Splunk (Hands-On) Getting Started with Splunk (Hands-On)
Getting Started with Splunk (Hands-On)
 
SplunkLive! Zürich - Splunk für Security
SplunkLive! Zürich - Splunk für SecuritySplunkLive! Zürich - Splunk für Security
SplunkLive! Zürich - Splunk für Security
 
Best Practices For Sharing Data Across The Enteprrise
Best Practices For Sharing Data Across The EnteprriseBest Practices For Sharing Data Across The Enteprrise
Best Practices For Sharing Data Across The Enteprrise
 
Splunk Overview
Splunk OverviewSplunk Overview
Splunk Overview
 
Building a Security Information and Event Management platform at Travis Per...
 	Building a Security Information and Event Management platform at Travis Per... 	Building a Security Information and Event Management platform at Travis Per...
Building a Security Information and Event Management platform at Travis Per...
 
Splunk Artificial Intelligence & Machine Learning Webinar
Splunk Artificial Intelligence & Machine Learning WebinarSplunk Artificial Intelligence & Machine Learning Webinar
Splunk Artificial Intelligence & Machine Learning Webinar
 
Enterprise Security Guided Tour
Enterprise Security Guided TourEnterprise Security Guided Tour
Enterprise Security Guided Tour
 
Splunk Discovery: Milan 2018 - Splunk Overview
Splunk Discovery: Milan 2018 - Splunk OverviewSplunk Discovery: Milan 2018 - Splunk Overview
Splunk Discovery: Milan 2018 - Splunk Overview
 
Splunk Enterprise for IT Troubleshooting Hands-On
Splunk Enterprise for IT Troubleshooting Hands-OnSplunk Enterprise for IT Troubleshooting Hands-On
Splunk Enterprise for IT Troubleshooting Hands-On
 
Splunk IT Service Intelligence
Splunk IT Service IntelligenceSplunk IT Service Intelligence
Splunk IT Service Intelligence
 
Machine Data 101: Turning Data Into Insight
Machine Data 101: Turning Data Into InsightMachine Data 101: Turning Data Into Insight
Machine Data 101: Turning Data Into Insight
 
dlux - Splunk Technical Overview
dlux - Splunk Technical Overviewdlux - Splunk Technical Overview
dlux - Splunk Technical Overview
 
Splunk Webinar: Webinar: Die Effizienz Ihres SOC verbessern mit neuen Funktio...
Splunk Webinar: Webinar: Die Effizienz Ihres SOC verbessern mit neuen Funktio...Splunk Webinar: Webinar: Die Effizienz Ihres SOC verbessern mit neuen Funktio...
Splunk Webinar: Webinar: Die Effizienz Ihres SOC verbessern mit neuen Funktio...
 
Splunk Discovery Day Dubai 2017 - Keynote
Splunk Discovery Day Dubai 2017 - KeynoteSplunk Discovery Day Dubai 2017 - Keynote
Splunk Discovery Day Dubai 2017 - Keynote
 
Splunk - Verwandeln Sie Datensilos in Operational Intelligence
Splunk - Verwandeln Sie Datensilos in Operational IntelligenceSplunk - Verwandeln Sie Datensilos in Operational Intelligence
Splunk - Verwandeln Sie Datensilos in Operational Intelligence
 
Getting Started with Splunk Hands-on
Getting Started with Splunk Hands-onGetting Started with Splunk Hands-on
Getting Started with Splunk Hands-on
 
Splunk for ITOps
Splunk for ITOpsSplunk for ITOps
Splunk for ITOps
 
Splunk for ITOps
Splunk for ITOpsSplunk for ITOps
Splunk for ITOps
 
Splunk Enterprise for IT Troubleshooting
Splunk Enterprise for IT TroubleshootingSplunk Enterprise for IT Troubleshooting
Splunk Enterprise for IT Troubleshooting
 

Viewers also liked

Wie Sie Ransomware aufspüren und was Sie dagegen machen können
Wie Sie Ransomware aufspüren und was Sie dagegen machen könnenWie Sie Ransomware aufspüren und was Sie dagegen machen können
Wie Sie Ransomware aufspüren und was Sie dagegen machen können
Splunk
 
Delivering business value from operational insights at ING Bank
Delivering business value from operational insights at ING BankDelivering business value from operational insights at ING Bank
Delivering business value from operational insights at ING Bank
Splunk
 
Softcat Splunk Discovery Day Manchester, March 2017
Softcat Splunk Discovery Day Manchester, March 2017Softcat Splunk Discovery Day Manchester, March 2017
Softcat Splunk Discovery Day Manchester, March 2017
Splunk
 
Threat Hunting with Splunk
Threat Hunting with SplunkThreat Hunting with Splunk
Threat Hunting with Splunk
Splunk
 
Splunk Webinar – IT Operations auf den nächsten Level bringen
Splunk Webinar – IT Operations auf den nächsten Level bringenSplunk Webinar – IT Operations auf den nächsten Level bringen
Splunk Webinar – IT Operations auf den nächsten Level bringen
Splunk
 
Machine Data 101
Machine Data 101Machine Data 101
Machine Data 101
Splunk
 
SplunkLive! Utrecht - Splunk for Security - Monzy Merza
SplunkLive! Utrecht - Splunk for Security - Monzy MerzaSplunkLive! Utrecht - Splunk for Security - Monzy Merza
SplunkLive! Utrecht - Splunk for Security - Monzy Merza
Splunk
 
SplunkLive! Utrecht - Keynote - Rick Fitz
SplunkLive! Utrecht - Keynote - Rick FitzSplunkLive! Utrecht - Keynote - Rick Fitz
SplunkLive! Utrecht - Keynote - Rick Fitz
Splunk
 
Splunk Enterprise for IT Troubleshooting Hands-On
Splunk Enterprise for IT Troubleshooting Hands-OnSplunk Enterprise for IT Troubleshooting Hands-On
Splunk Enterprise for IT Troubleshooting Hands-On
Splunk
 
Molina Healthcare Customer Presentation
Molina Healthcare Customer PresentationMolina Healthcare Customer Presentation
Molina Healthcare Customer Presentation
Splunk
 
SplunkLive! Utrecht - Splunk for IT Operations - Rick Fitz
SplunkLive! Utrecht - Splunk for IT Operations - Rick FitzSplunkLive! Utrecht - Splunk for IT Operations - Rick Fitz
SplunkLive! Utrecht - Splunk for IT Operations - Rick Fitz
Splunk
 
Threat Hunting with Splunk Hands-on
Threat Hunting with Splunk Hands-onThreat Hunting with Splunk Hands-on
Threat Hunting with Splunk Hands-on
Splunk
 
SplunkLive! Customer Presentation – Dunkin’ Brands, Inc.
SplunkLive! Customer Presentation – Dunkin’ Brands, Inc. SplunkLive! Customer Presentation – Dunkin’ Brands, Inc.
SplunkLive! Customer Presentation – Dunkin’ Brands, Inc.
Splunk
 
How to Design, Build and Map IT and Business Services in Splunk
How to Design, Build and Map IT and Business Services in SplunkHow to Design, Build and Map IT and Business Services in Splunk
How to Design, Build and Map IT and Business Services in Splunk
Splunk
 
Getting Started with IT Service Intelligence
Getting Started with IT Service IntelligenceGetting Started with IT Service Intelligence
Getting Started with IT Service Intelligence
Splunk
 
Machine Data 101 Hands-on
Machine Data 101 Hands-onMachine Data 101 Hands-on
Machine Data 101 Hands-on
Splunk
 
Experian Customer Presentation
Experian Customer PresentationExperian Customer Presentation
Experian Customer Presentation
Splunk
 
SplunkLive! Customer Presentation – athenahealth
SplunkLive! Customer Presentation – athenahealthSplunkLive! Customer Presentation – athenahealth
SplunkLive! Customer Presentation – athenahealth
Splunk
 
SplunkLive! Customer Presentation - Staples
SplunkLive! Customer Presentation - StaplesSplunkLive! Customer Presentation - Staples
SplunkLive! Customer Presentation - Staples
Splunk
 
DeepSee SYSMON - InterSystems Caché System Monitoring Analytics
DeepSee SYSMON - InterSystems Caché System Monitoring AnalyticsDeepSee SYSMON - InterSystems Caché System Monitoring Analytics
DeepSee SYSMON - InterSystems Caché System Monitoring Analytics
InterSystems
 

Viewers also liked (20)

Wie Sie Ransomware aufspüren und was Sie dagegen machen können
Wie Sie Ransomware aufspüren und was Sie dagegen machen könnenWie Sie Ransomware aufspüren und was Sie dagegen machen können
Wie Sie Ransomware aufspüren und was Sie dagegen machen können
 
Delivering business value from operational insights at ING Bank
Delivering business value from operational insights at ING BankDelivering business value from operational insights at ING Bank
Delivering business value from operational insights at ING Bank
 
Softcat Splunk Discovery Day Manchester, March 2017
Softcat Splunk Discovery Day Manchester, March 2017Softcat Splunk Discovery Day Manchester, March 2017
Softcat Splunk Discovery Day Manchester, March 2017
 
Threat Hunting with Splunk
Threat Hunting with SplunkThreat Hunting with Splunk
Threat Hunting with Splunk
 
Splunk Webinar – IT Operations auf den nächsten Level bringen
Splunk Webinar – IT Operations auf den nächsten Level bringenSplunk Webinar – IT Operations auf den nächsten Level bringen
Splunk Webinar – IT Operations auf den nächsten Level bringen
 
Machine Data 101
Machine Data 101Machine Data 101
Machine Data 101
 
SplunkLive! Utrecht - Splunk for Security - Monzy Merza
SplunkLive! Utrecht - Splunk for Security - Monzy MerzaSplunkLive! Utrecht - Splunk for Security - Monzy Merza
SplunkLive! Utrecht - Splunk for Security - Monzy Merza
 
SplunkLive! Utrecht - Keynote - Rick Fitz
SplunkLive! Utrecht - Keynote - Rick FitzSplunkLive! Utrecht - Keynote - Rick Fitz
SplunkLive! Utrecht - Keynote - Rick Fitz
 
Splunk Enterprise for IT Troubleshooting Hands-On
Splunk Enterprise for IT Troubleshooting Hands-OnSplunk Enterprise for IT Troubleshooting Hands-On
Splunk Enterprise for IT Troubleshooting Hands-On
 
Molina Healthcare Customer Presentation
Molina Healthcare Customer PresentationMolina Healthcare Customer Presentation
Molina Healthcare Customer Presentation
 
SplunkLive! Utrecht - Splunk for IT Operations - Rick Fitz
SplunkLive! Utrecht - Splunk for IT Operations - Rick FitzSplunkLive! Utrecht - Splunk for IT Operations - Rick Fitz
SplunkLive! Utrecht - Splunk for IT Operations - Rick Fitz
 
Threat Hunting with Splunk Hands-on
Threat Hunting with Splunk Hands-onThreat Hunting with Splunk Hands-on
Threat Hunting with Splunk Hands-on
 
SplunkLive! Customer Presentation – Dunkin’ Brands, Inc.
SplunkLive! Customer Presentation – Dunkin’ Brands, Inc. SplunkLive! Customer Presentation – Dunkin’ Brands, Inc.
SplunkLive! Customer Presentation – Dunkin’ Brands, Inc.
 
How to Design, Build and Map IT and Business Services in Splunk
How to Design, Build and Map IT and Business Services in SplunkHow to Design, Build and Map IT and Business Services in Splunk
How to Design, Build and Map IT and Business Services in Splunk
 
Getting Started with IT Service Intelligence
Getting Started with IT Service IntelligenceGetting Started with IT Service Intelligence
Getting Started with IT Service Intelligence
 
Machine Data 101 Hands-on
Machine Data 101 Hands-onMachine Data 101 Hands-on
Machine Data 101 Hands-on
 
Experian Customer Presentation
Experian Customer PresentationExperian Customer Presentation
Experian Customer Presentation
 
SplunkLive! Customer Presentation – athenahealth
SplunkLive! Customer Presentation – athenahealthSplunkLive! Customer Presentation – athenahealth
SplunkLive! Customer Presentation – athenahealth
 
SplunkLive! Customer Presentation - Staples
SplunkLive! Customer Presentation - StaplesSplunkLive! Customer Presentation - Staples
SplunkLive! Customer Presentation - Staples
 
DeepSee SYSMON - InterSystems Caché System Monitoring Analytics
DeepSee SYSMON - InterSystems Caché System Monitoring AnalyticsDeepSee SYSMON - InterSystems Caché System Monitoring Analytics
DeepSee SYSMON - InterSystems Caché System Monitoring Analytics
 

Similar to Building Business Service Intelligence with ITSI

Building Business Service Intelligence with ITSI
Building Business Service Intelligence with ITSIBuilding Business Service Intelligence with ITSI
Building Business Service Intelligence with ITSI
Splunk
 
Building Business Service Intelligence
Building Business Service IntelligenceBuilding Business Service Intelligence
Building Business Service Intelligence
Splunk
 
Splunk Webinar: Splunk App for Palo Alto Networks
Splunk Webinar: Splunk App for Palo Alto NetworksSplunk Webinar: Splunk App for Palo Alto Networks
Splunk Webinar: Splunk App for Palo Alto Networks
Georg Knon
 
Splunk Discovery: Milan 2018 - Intro to Security Analytics Methods
Splunk Discovery: Milan 2018 - Intro to Security Analytics MethodsSplunk Discovery: Milan 2018 - Intro to Security Analytics Methods
Splunk Discovery: Milan 2018 - Intro to Security Analytics Methods
Splunk
 
Getting Started with Splunk Hands-on
Getting Started with Splunk Hands-onGetting Started with Splunk Hands-on
Getting Started with Splunk Hands-on
Splunk
 
Getting Started with Splunk Hands-on
Getting Started with Splunk Hands-onGetting Started with Splunk Hands-on
Getting Started with Splunk Hands-on
Shannon Cuthbertson
 
Portland Splunk User Group May 2020
Portland Splunk User Group May 2020 Portland Splunk User Group May 2020
Portland Splunk User Group May 2020
Amanda Richardson
 
Splunk for Enterprise Security featuring User Behavior Analytics
Splunk for Enterprise Security featuring User Behavior AnalyticsSplunk for Enterprise Security featuring User Behavior Analytics
Splunk for Enterprise Security featuring User Behavior Analytics
Splunk
 
Ug soar 22sep21
Ug soar 22sep21Ug soar 22sep21
Ug soar 22sep21
Eric Gardner
 
Splunk Discovery: Warsaw 2018 - Intro to Security Analytics Methods
Splunk Discovery: Warsaw 2018 - Intro to Security Analytics MethodsSplunk Discovery: Warsaw 2018 - Intro to Security Analytics Methods
Splunk Discovery: Warsaw 2018 - Intro to Security Analytics Methods
Splunk
 
Security investigation hands on workshop 2018-05
Security investigation hands on workshop 2018-05Security investigation hands on workshop 2018-05
Security investigation hands on workshop 2018-05
YoungCho50
 
Security investigation hands-on workshop 2018
Security investigation hands-on workshop 2018Security investigation hands-on workshop 2018
Security investigation hands-on workshop 2018
YoungCho50
 
iOS-Application-Security-iAmPr3m
iOS-Application-Security-iAmPr3miOS-Application-Security-iAmPr3m
iOS-Application-Security-iAmPr3m
Prem Kumar (OSCP)
 
Splunk bangalore user group 2020 07-06
Splunk bangalore user group 2020 07-06Splunk bangalore user group 2020 07-06
Splunk bangalore user group 2020 07-06
NiketNilay
 
SplunkLive! Paris 2018: Delivering New Visibility And Analytics For IT Operat...
SplunkLive! Paris 2018: Delivering New Visibility And Analytics For IT Operat...SplunkLive! Paris 2018: Delivering New Visibility And Analytics For IT Operat...
SplunkLive! Paris 2018: Delivering New Visibility And Analytics For IT Operat...
Splunk
 
SplunkLive! Frankfurt 2018 - Intro to Security Analytics Methods
SplunkLive! Frankfurt 2018 - Intro to Security Analytics MethodsSplunkLive! Frankfurt 2018 - Intro to Security Analytics Methods
SplunkLive! Frankfurt 2018 - Intro to Security Analytics Methods
Splunk
 
Building an Analytics Enables SOC
Building an Analytics Enables SOCBuilding an Analytics Enables SOC
Building an Analytics Enables SOC
Splunk
 
Splunk .conf18 Updates, Config Add-on, SplDevOps
Splunk .conf18 Updates, Config Add-on, SplDevOpsSplunk .conf18 Updates, Config Add-on, SplDevOps
Splunk .conf18 Updates, Config Add-on, SplDevOps
Harry McLaren
 
Eok bo ppt
Eok bo pptEok bo ppt
Eok bo ppt
vijayeok
 
Splunk live nyc_2017_sec_buildinganalyticsdrivensoc
Splunk live nyc_2017_sec_buildinganalyticsdrivensocSplunk live nyc_2017_sec_buildinganalyticsdrivensoc
Splunk live nyc_2017_sec_buildinganalyticsdrivensoc
Rene Aguero
 

Similar to Building Business Service Intelligence with ITSI (20)

Building Business Service Intelligence with ITSI
Building Business Service Intelligence with ITSIBuilding Business Service Intelligence with ITSI
Building Business Service Intelligence with ITSI
 
Building Business Service Intelligence
Building Business Service IntelligenceBuilding Business Service Intelligence
Building Business Service Intelligence
 
Splunk Webinar: Splunk App for Palo Alto Networks
Splunk Webinar: Splunk App for Palo Alto NetworksSplunk Webinar: Splunk App for Palo Alto Networks
Splunk Webinar: Splunk App for Palo Alto Networks
 
Splunk Discovery: Milan 2018 - Intro to Security Analytics Methods
Splunk Discovery: Milan 2018 - Intro to Security Analytics MethodsSplunk Discovery: Milan 2018 - Intro to Security Analytics Methods
Splunk Discovery: Milan 2018 - Intro to Security Analytics Methods
 
Getting Started with Splunk Hands-on
Getting Started with Splunk Hands-onGetting Started with Splunk Hands-on
Getting Started with Splunk Hands-on
 
Getting Started with Splunk Hands-on
Getting Started with Splunk Hands-onGetting Started with Splunk Hands-on
Getting Started with Splunk Hands-on
 
Portland Splunk User Group May 2020
Portland Splunk User Group May 2020 Portland Splunk User Group May 2020
Portland Splunk User Group May 2020
 
Splunk for Enterprise Security featuring User Behavior Analytics
Splunk for Enterprise Security featuring User Behavior AnalyticsSplunk for Enterprise Security featuring User Behavior Analytics
Splunk for Enterprise Security featuring User Behavior Analytics
 
Ug soar 22sep21
Ug soar 22sep21Ug soar 22sep21
Ug soar 22sep21
 
Splunk Discovery: Warsaw 2018 - Intro to Security Analytics Methods
Splunk Discovery: Warsaw 2018 - Intro to Security Analytics MethodsSplunk Discovery: Warsaw 2018 - Intro to Security Analytics Methods
Splunk Discovery: Warsaw 2018 - Intro to Security Analytics Methods
 
Security investigation hands on workshop 2018-05
Security investigation hands on workshop 2018-05Security investigation hands on workshop 2018-05
Security investigation hands on workshop 2018-05
 
Security investigation hands-on workshop 2018
Security investigation hands-on workshop 2018Security investigation hands-on workshop 2018
Security investigation hands-on workshop 2018
 
iOS-Application-Security-iAmPr3m
iOS-Application-Security-iAmPr3miOS-Application-Security-iAmPr3m
iOS-Application-Security-iAmPr3m
 
Splunk bangalore user group 2020 07-06
Splunk bangalore user group 2020 07-06Splunk bangalore user group 2020 07-06
Splunk bangalore user group 2020 07-06
 
SplunkLive! Paris 2018: Delivering New Visibility And Analytics For IT Operat...
SplunkLive! Paris 2018: Delivering New Visibility And Analytics For IT Operat...SplunkLive! Paris 2018: Delivering New Visibility And Analytics For IT Operat...
SplunkLive! Paris 2018: Delivering New Visibility And Analytics For IT Operat...
 
SplunkLive! Frankfurt 2018 - Intro to Security Analytics Methods
SplunkLive! Frankfurt 2018 - Intro to Security Analytics MethodsSplunkLive! Frankfurt 2018 - Intro to Security Analytics Methods
SplunkLive! Frankfurt 2018 - Intro to Security Analytics Methods
 
Building an Analytics Enables SOC
Building an Analytics Enables SOCBuilding an Analytics Enables SOC
Building an Analytics Enables SOC
 
Splunk .conf18 Updates, Config Add-on, SplDevOps
Splunk .conf18 Updates, Config Add-on, SplDevOpsSplunk .conf18 Updates, Config Add-on, SplDevOps
Splunk .conf18 Updates, Config Add-on, SplDevOps
 
Eok bo ppt
Eok bo pptEok bo ppt
Eok bo ppt
 
Splunk live nyc_2017_sec_buildinganalyticsdrivensoc
Splunk live nyc_2017_sec_buildinganalyticsdrivensocSplunk live nyc_2017_sec_buildinganalyticsdrivensoc
Splunk live nyc_2017_sec_buildinganalyticsdrivensoc
 

More from Splunk

.conf Go 2023 - Data analysis as a routine
.conf Go 2023 - Data analysis as a routine.conf Go 2023 - Data analysis as a routine
.conf Go 2023 - Data analysis as a routine
Splunk
 
.conf Go 2023 - How KPN drives Customer Satisfaction on IPTV
.conf Go 2023 - How KPN drives Customer Satisfaction on IPTV.conf Go 2023 - How KPN drives Customer Satisfaction on IPTV
.conf Go 2023 - How KPN drives Customer Satisfaction on IPTV
Splunk
 
.conf Go 2023 - Navegando la normativa SOX (Telefónica)
.conf Go 2023 - Navegando la normativa SOX (Telefónica).conf Go 2023 - Navegando la normativa SOX (Telefónica)
.conf Go 2023 - Navegando la normativa SOX (Telefónica)
Splunk
 
.conf Go 2023 - Raiffeisen Bank International
.conf Go 2023 - Raiffeisen Bank International.conf Go 2023 - Raiffeisen Bank International
.conf Go 2023 - Raiffeisen Bank International
Splunk
 
.conf Go 2023 - På liv og død Om sikkerhetsarbeid i Norsk helsenett
.conf Go 2023 - På liv og død Om sikkerhetsarbeid i Norsk helsenett .conf Go 2023 - På liv og død Om sikkerhetsarbeid i Norsk helsenett
.conf Go 2023 - På liv og død Om sikkerhetsarbeid i Norsk helsenett
Splunk
 
.conf Go 2023 - Many roads lead to Rome - this was our journey (Julius Bär)
.conf Go 2023 - Many roads lead to Rome - this was our journey (Julius Bär).conf Go 2023 - Many roads lead to Rome - this was our journey (Julius Bär)
.conf Go 2023 - Many roads lead to Rome - this was our journey (Julius Bär)
Splunk
 
.conf Go 2023 - Das passende Rezept für die digitale (Security) Revolution zu...
.conf Go 2023 - Das passende Rezept für die digitale (Security) Revolution zu....conf Go 2023 - Das passende Rezept für die digitale (Security) Revolution zu...
.conf Go 2023 - Das passende Rezept für die digitale (Security) Revolution zu...
Splunk
 
.conf go 2023 - Cyber Resilienz – Herausforderungen und Ansatz für Energiever...
.conf go 2023 - Cyber Resilienz – Herausforderungen und Ansatz für Energiever....conf go 2023 - Cyber Resilienz – Herausforderungen und Ansatz für Energiever...
.conf go 2023 - Cyber Resilienz – Herausforderungen und Ansatz für Energiever...
Splunk
 
.conf go 2023 - De NOC a CSIRT (Cellnex)
.conf go 2023 - De NOC a CSIRT (Cellnex).conf go 2023 - De NOC a CSIRT (Cellnex)
.conf go 2023 - De NOC a CSIRT (Cellnex)
Splunk
 
conf go 2023 - El camino hacia la ciberseguridad (ABANCA)
conf go 2023 - El camino hacia la ciberseguridad (ABANCA)conf go 2023 - El camino hacia la ciberseguridad (ABANCA)
conf go 2023 - El camino hacia la ciberseguridad (ABANCA)
Splunk
 
Splunk - BMW connects business and IT with data driven operations SRE and O11y
Splunk - BMW connects business and IT with data driven operations SRE and O11ySplunk - BMW connects business and IT with data driven operations SRE and O11y
Splunk - BMW connects business and IT with data driven operations SRE and O11y
Splunk
 
Splunk x Freenet - .conf Go Köln
Splunk x Freenet - .conf Go KölnSplunk x Freenet - .conf Go Köln
Splunk x Freenet - .conf Go Köln
Splunk
 
Splunk Security Session - .conf Go Köln
Splunk Security Session - .conf Go KölnSplunk Security Session - .conf Go Köln
Splunk Security Session - .conf Go Köln
Splunk
 
Data foundations building success, at city scale – Imperial College London
 Data foundations building success, at city scale – Imperial College London Data foundations building success, at city scale – Imperial College London
Data foundations building success, at city scale – Imperial College London
Splunk
 
Splunk: How Vodafone established Operational Analytics in a Hybrid Environmen...
Splunk: How Vodafone established Operational Analytics in a Hybrid Environmen...Splunk: How Vodafone established Operational Analytics in a Hybrid Environmen...
Splunk: How Vodafone established Operational Analytics in a Hybrid Environmen...
Splunk
 
SOC, Amore Mio! | Security Webinar
SOC, Amore Mio! | Security WebinarSOC, Amore Mio! | Security Webinar
SOC, Amore Mio! | Security Webinar
Splunk
 
.conf Go 2022 - Observability Session
.conf Go 2022 - Observability Session.conf Go 2022 - Observability Session
.conf Go 2022 - Observability Session
Splunk
 
.conf Go Zurich 2022 - Keynote
.conf Go Zurich 2022 - Keynote.conf Go Zurich 2022 - Keynote
.conf Go Zurich 2022 - Keynote
Splunk
 
.conf Go Zurich 2022 - Platform Session
.conf Go Zurich 2022 - Platform Session.conf Go Zurich 2022 - Platform Session
.conf Go Zurich 2022 - Platform Session
Splunk
 
.conf Go Zurich 2022 - Security Session
.conf Go Zurich 2022 - Security Session.conf Go Zurich 2022 - Security Session
.conf Go Zurich 2022 - Security Session
Splunk
 

More from Splunk (20)

.conf Go 2023 - Data analysis as a routine
.conf Go 2023 - Data analysis as a routine.conf Go 2023 - Data analysis as a routine
.conf Go 2023 - Data analysis as a routine
 
.conf Go 2023 - How KPN drives Customer Satisfaction on IPTV
.conf Go 2023 - How KPN drives Customer Satisfaction on IPTV.conf Go 2023 - How KPN drives Customer Satisfaction on IPTV
.conf Go 2023 - How KPN drives Customer Satisfaction on IPTV
 
.conf Go 2023 - Navegando la normativa SOX (Telefónica)
.conf Go 2023 - Navegando la normativa SOX (Telefónica).conf Go 2023 - Navegando la normativa SOX (Telefónica)
.conf Go 2023 - Navegando la normativa SOX (Telefónica)
 
.conf Go 2023 - Raiffeisen Bank International
.conf Go 2023 - Raiffeisen Bank International.conf Go 2023 - Raiffeisen Bank International
.conf Go 2023 - Raiffeisen Bank International
 
.conf Go 2023 - På liv og død Om sikkerhetsarbeid i Norsk helsenett
.conf Go 2023 - På liv og død Om sikkerhetsarbeid i Norsk helsenett .conf Go 2023 - På liv og død Om sikkerhetsarbeid i Norsk helsenett
.conf Go 2023 - På liv og død Om sikkerhetsarbeid i Norsk helsenett
 
.conf Go 2023 - Many roads lead to Rome - this was our journey (Julius Bär)
.conf Go 2023 - Many roads lead to Rome - this was our journey (Julius Bär).conf Go 2023 - Many roads lead to Rome - this was our journey (Julius Bär)
.conf Go 2023 - Many roads lead to Rome - this was our journey (Julius Bär)
 
.conf Go 2023 - Das passende Rezept für die digitale (Security) Revolution zu...
.conf Go 2023 - Das passende Rezept für die digitale (Security) Revolution zu....conf Go 2023 - Das passende Rezept für die digitale (Security) Revolution zu...
.conf Go 2023 - Das passende Rezept für die digitale (Security) Revolution zu...
 
.conf go 2023 - Cyber Resilienz – Herausforderungen und Ansatz für Energiever...
.conf go 2023 - Cyber Resilienz – Herausforderungen und Ansatz für Energiever....conf go 2023 - Cyber Resilienz – Herausforderungen und Ansatz für Energiever...
.conf go 2023 - Cyber Resilienz – Herausforderungen und Ansatz für Energiever...
 
.conf go 2023 - De NOC a CSIRT (Cellnex)
.conf go 2023 - De NOC a CSIRT (Cellnex).conf go 2023 - De NOC a CSIRT (Cellnex)
.conf go 2023 - De NOC a CSIRT (Cellnex)
 
conf go 2023 - El camino hacia la ciberseguridad (ABANCA)
conf go 2023 - El camino hacia la ciberseguridad (ABANCA)conf go 2023 - El camino hacia la ciberseguridad (ABANCA)
conf go 2023 - El camino hacia la ciberseguridad (ABANCA)
 
Splunk - BMW connects business and IT with data driven operations SRE and O11y
Splunk - BMW connects business and IT with data driven operations SRE and O11ySplunk - BMW connects business and IT with data driven operations SRE and O11y
Splunk - BMW connects business and IT with data driven operations SRE and O11y
 
Splunk x Freenet - .conf Go Köln
Splunk x Freenet - .conf Go KölnSplunk x Freenet - .conf Go Köln
Splunk x Freenet - .conf Go Köln
 
Splunk Security Session - .conf Go Köln
Splunk Security Session - .conf Go KölnSplunk Security Session - .conf Go Köln
Splunk Security Session - .conf Go Köln
 
Data foundations building success, at city scale – Imperial College London
 Data foundations building success, at city scale – Imperial College London Data foundations building success, at city scale – Imperial College London
Data foundations building success, at city scale – Imperial College London
 
Splunk: How Vodafone established Operational Analytics in a Hybrid Environmen...
Splunk: How Vodafone established Operational Analytics in a Hybrid Environmen...Splunk: How Vodafone established Operational Analytics in a Hybrid Environmen...
Splunk: How Vodafone established Operational Analytics in a Hybrid Environmen...
 
SOC, Amore Mio! | Security Webinar
SOC, Amore Mio! | Security WebinarSOC, Amore Mio! | Security Webinar
SOC, Amore Mio! | Security Webinar
 
.conf Go 2022 - Observability Session
.conf Go 2022 - Observability Session.conf Go 2022 - Observability Session
.conf Go 2022 - Observability Session
 
.conf Go Zurich 2022 - Keynote
.conf Go Zurich 2022 - Keynote.conf Go Zurich 2022 - Keynote
.conf Go Zurich 2022 - Keynote
 
.conf Go Zurich 2022 - Platform Session
.conf Go Zurich 2022 - Platform Session.conf Go Zurich 2022 - Platform Session
.conf Go Zurich 2022 - Platform Session
 
.conf Go Zurich 2022 - Security Session
.conf Go Zurich 2022 - Security Session.conf Go Zurich 2022 - Security Session
.conf Go Zurich 2022 - Security Session
 

Recently uploaded

Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
saastr
 
Skybuffer SAM4U tool for SAP license adoption
Skybuffer SAM4U tool for SAP license adoptionSkybuffer SAM4U tool for SAP license adoption
Skybuffer SAM4U tool for SAP license adoption
Tatiana Kojar
 
Azure API Management to expose backend services securely
Azure API Management to expose backend services securelyAzure API Management to expose backend services securely
Azure API Management to expose backend services securely
Dinusha Kumarasiri
 
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
Jeffrey Haguewood
 
Best 20 SEO Techniques To Improve Website Visibility In SERP
Best 20 SEO Techniques To Improve Website Visibility In SERPBest 20 SEO Techniques To Improve Website Visibility In SERP
Best 20 SEO Techniques To Improve Website Visibility In SERP
Pixlogix Infotech
 
Serial Arm Control in Real Time Presentation
Serial Arm Control in Real Time PresentationSerial Arm Control in Real Time Presentation
Serial Arm Control in Real Time Presentation
tolgahangng
 
Digital Marketing Trends in 2024 | Guide for Staying Ahead
Digital Marketing Trends in 2024 | Guide for Staying AheadDigital Marketing Trends in 2024 | Guide for Staying Ahead
Digital Marketing Trends in 2024 | Guide for Staying Ahead
Wask
 
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfUnlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Malak Abu Hammad
 
Nunit vs XUnit vs MSTest Differences Between These Unit Testing Frameworks.pdf
Nunit vs XUnit vs MSTest Differences Between These Unit Testing Frameworks.pdfNunit vs XUnit vs MSTest Differences Between These Unit Testing Frameworks.pdf
Nunit vs XUnit vs MSTest Differences Between These Unit Testing Frameworks.pdf
flufftailshop
 
HCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAUHCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAU
panagenda
 
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Jeffrey Haguewood
 
June Patch Tuesday
June Patch TuesdayJune Patch Tuesday
June Patch Tuesday
Ivanti
 
Recommendation System using RAG Architecture
Recommendation System using RAG ArchitectureRecommendation System using RAG Architecture
Recommendation System using RAG Architecture
fredae14
 
Trusted Execution Environment for Decentralized Process Mining
Trusted Execution Environment for Decentralized Process MiningTrusted Execution Environment for Decentralized Process Mining
Trusted Execution Environment for Decentralized Process Mining
LucaBarbaro3
 
Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
Ocean lotus Threat actors project by John Sitima 2024 (1).pptxOcean lotus Threat actors project by John Sitima 2024 (1).pptx
Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
SitimaJohn
 
Taking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdfTaking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdf
ssuserfac0301
 
Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of GermanyPresentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
innovationoecd
 
Building Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and MilvusBuilding Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and Milvus
Zilliz
 
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with SlackLet's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
shyamraj55
 
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for Life Science to increase LLM accuracyGraphRAG for Life Science to increase LLM accuracy
GraphRAG for Life Science to increase LLM accuracy
Tomaz Bratanic
 

Recently uploaded (20)

Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
 
Skybuffer SAM4U tool for SAP license adoption
Skybuffer SAM4U tool for SAP license adoptionSkybuffer SAM4U tool for SAP license adoption
Skybuffer SAM4U tool for SAP license adoption
 
Azure API Management to expose backend services securely
Azure API Management to expose backend services securelyAzure API Management to expose backend services securely
Azure API Management to expose backend services securely
 
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
Letter and Document Automation for Bonterra Impact Management (fka Social Sol...
 
Best 20 SEO Techniques To Improve Website Visibility In SERP
Best 20 SEO Techniques To Improve Website Visibility In SERPBest 20 SEO Techniques To Improve Website Visibility In SERP
Best 20 SEO Techniques To Improve Website Visibility In SERP
 
Serial Arm Control in Real Time Presentation
Serial Arm Control in Real Time PresentationSerial Arm Control in Real Time Presentation
Serial Arm Control in Real Time Presentation
 
Digital Marketing Trends in 2024 | Guide for Staying Ahead
Digital Marketing Trends in 2024 | Guide for Staying AheadDigital Marketing Trends in 2024 | Guide for Staying Ahead
Digital Marketing Trends in 2024 | Guide for Staying Ahead
 
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfUnlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
 
Nunit vs XUnit vs MSTest Differences Between These Unit Testing Frameworks.pdf
Nunit vs XUnit vs MSTest Differences Between These Unit Testing Frameworks.pdfNunit vs XUnit vs MSTest Differences Between These Unit Testing Frameworks.pdf
Nunit vs XUnit vs MSTest Differences Between These Unit Testing Frameworks.pdf
 
HCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAUHCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAU
 
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
 
June Patch Tuesday
June Patch TuesdayJune Patch Tuesday
June Patch Tuesday
 
Recommendation System using RAG Architecture
Recommendation System using RAG ArchitectureRecommendation System using RAG Architecture
Recommendation System using RAG Architecture
 
Trusted Execution Environment for Decentralized Process Mining
Trusted Execution Environment for Decentralized Process MiningTrusted Execution Environment for Decentralized Process Mining
Trusted Execution Environment for Decentralized Process Mining
 
Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
Ocean lotus Threat actors project by John Sitima 2024 (1).pptxOcean lotus Threat actors project by John Sitima 2024 (1).pptx
Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
 
Taking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdfTaking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdf
 
Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of GermanyPresentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
 
Building Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and MilvusBuilding Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and Milvus
 
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with SlackLet's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
 
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for Life Science to increase LLM accuracyGraphRAG for Life Science to increase LLM accuracy
GraphRAG for Life Science to increase LLM accuracy
 

Building Business Service Intelligence with ITSI