This document contains an agenda for the SplunkLive! Utrecht conference. It includes:
- A welcome message and introduction to using Splunk for security and IT operations.
- Three customer use cases that will be presented on using Splunk for the CERT EU, NXP, and KPN.
- Information on sponsors and speakers at the conference.
- An overview of the Splunk platform and how it can be used for security, IT operations, business analytics, IoT, and more.
Splunk Webinar – IT Operations auf den nächsten Level bringenSplunk
Verwertbare Einblicke in Ihre Daten gewinnen und IT Operations auf den nächsten Level bringen
In unserem Webinar zeigen wir Ihnen anhand einer Demo:
- wie Sie Service-Kontext gewinnen, in dem Sie Verhaltens- und Performance-Daten kombinieren.
- wie Sie ein genaues Bild Ihrer Umgebung erhalten, damit Sie Prozesse optimieren können
- wie Sie Kernursachen-Analysen beschleunigen und so Ausfälle auf Kundenseite entgegenwirken können
- wie Sie Incident Investigation priorisieren und die Time-to-Resolution durch Verhaltens- und Event-Analysen verkürzen
- wie Analytics und Machine Learning Service Intelliegence verbessern können
Delivering business value from operational insights at ING BankSplunk
Discover how ING Bank gains critical insights from the data generated across its IT estate. This webinar will highlight how the bank benefits from real-time visibility into its operations and performance, while enhancing business analytics to deliver improved insight into customer behavior and ultimately make better business decisions.
Join this webinar to learn how ING Bank:
- Maps the customer journey end-to-end
- Scores each of its retail customers every day to prepare the best offers for them
- Categorizes in real-time each financial transaction performed by retail customers to provide them with the best insight into their monthly budget and money flow
Splunk Webinar – IT Operations auf den nächsten Level bringenSplunk
Verwertbare Einblicke in Ihre Daten gewinnen und IT Operations auf den nächsten Level bringen
In unserem Webinar zeigen wir Ihnen anhand einer Demo:
- wie Sie Service-Kontext gewinnen, in dem Sie Verhaltens- und Performance-Daten kombinieren.
- wie Sie ein genaues Bild Ihrer Umgebung erhalten, damit Sie Prozesse optimieren können
- wie Sie Kernursachen-Analysen beschleunigen und so Ausfälle auf Kundenseite entgegenwirken können
- wie Sie Incident Investigation priorisieren und die Time-to-Resolution durch Verhaltens- und Event-Analysen verkürzen
- wie Analytics und Machine Learning Service Intelliegence verbessern können
Delivering business value from operational insights at ING BankSplunk
Discover how ING Bank gains critical insights from the data generated across its IT estate. This webinar will highlight how the bank benefits from real-time visibility into its operations and performance, while enhancing business analytics to deliver improved insight into customer behavior and ultimately make better business decisions.
Join this webinar to learn how ING Bank:
- Maps the customer journey end-to-end
- Scores each of its retail customers every day to prepare the best offers for them
- Categorizes in real-time each financial transaction performed by retail customers to provide them with the best insight into their monthly budget and money flow
Enabling Airbus Digital Transformation with Splunk
Learn how Airbus are turning their data into doing across their organisation. From real time monitoring to IT Service Management to security operations – Airbus are maximising their use of data to deliver more services and continuous process improvement.
Splunk Discovery: Warsaw 2018 - Reimagining IT with Service IntelligenceSplunk
Presented at Splunk Discovery Warsaw 2018:
What's Service Intelligence and Why You Should Care
Introduction to Splunk IT Service Intelligence
IT Service Intelligence Key Concepts
Demo
Splunk for Monitoring and Diagnostics in the Industrial EnvironmentSplunk
Splunk software provides a scalable and versatile platform for the machine data generated by automation and control systems and connected industrial assets and infrastructure. Learn how our customers, including oil and gas companies, use Splunk software to improve performance, reduce downtime and increase security in their critical industrial environments. In this session, we will cover industrial data collection, best practices for storage and enrichment, and how you can use Splunk’s advanced visualizations and analytics to become more data-driven in your industrial operations.
Splunk Discovery: Warsaw 2018 - Legacy SIEM to Splunk, How to Conquer Migrati...Splunk
Presented at Splunk Discovery Warsaw 2018:
SIEM Replacement Methodology
Use Cases
Data Sources & Data Onboarding
Architecture
Third Party Integration
You Got This!
Splunk for Industrial Data and the Internet of ThingsSplunk
Splunk software provides a scalable and versatile platform for machine data generated by all of the devices, control systems, sensors, SCADA, networks, applications and end users connected by today's networks. In this session we will discuss and demo how you can use Splunk software to gain insights into machine data generated by devices and control systems. We’ll cover common themes in use cases, and show you how to access the free apps and add-ons that simplify the connection and collection of data from both industrial systems and the Internet of Things. In addition we will introduce you to Splunk’s growing ecosystem of IoT and Industrial focused technology partners.
How a Leading Saudi Bank Matured Security to Better Partner the BusinessSplunk
Presented by Rasha M. Abu AlSaud, CISO of a leading Saudi Bank and Matthias Maier, Splunk Product Marketing Director, at Gartner’s 2018 Security Risk and Management Summit in Dubai.
With the majority of organisations using the cloud in one way or the other, cloud has become an essential ingredient of modern IT. But with increased cloud usage comes a greater need to have visibility across operations, security and cost control. Add in the complexity of multiple clouds, and things get quite misty very quickly. Whether you’re running workloads in AWS, Azure, or GCP (or all three)- Splunk has you covered to keep you on the right path in your cloud journey. This session will explore how Splunk integrates with the most popular cloud providers and the services they provide, allowing you to look in, on and through the Clouds.
Enabling Airbus Digital Transformation with Splunk
Learn how Airbus are turning their data into doing across their organisation. From real time monitoring to IT Service Management to security operations – Airbus are maximising their use of data to deliver more services and continuous process improvement.
Splunk Discovery: Warsaw 2018 - Reimagining IT with Service IntelligenceSplunk
Presented at Splunk Discovery Warsaw 2018:
What's Service Intelligence and Why You Should Care
Introduction to Splunk IT Service Intelligence
IT Service Intelligence Key Concepts
Demo
Splunk for Monitoring and Diagnostics in the Industrial EnvironmentSplunk
Splunk software provides a scalable and versatile platform for the machine data generated by automation and control systems and connected industrial assets and infrastructure. Learn how our customers, including oil and gas companies, use Splunk software to improve performance, reduce downtime and increase security in their critical industrial environments. In this session, we will cover industrial data collection, best practices for storage and enrichment, and how you can use Splunk’s advanced visualizations and analytics to become more data-driven in your industrial operations.
Splunk Discovery: Warsaw 2018 - Legacy SIEM to Splunk, How to Conquer Migrati...Splunk
Presented at Splunk Discovery Warsaw 2018:
SIEM Replacement Methodology
Use Cases
Data Sources & Data Onboarding
Architecture
Third Party Integration
You Got This!
Splunk for Industrial Data and the Internet of ThingsSplunk
Splunk software provides a scalable and versatile platform for machine data generated by all of the devices, control systems, sensors, SCADA, networks, applications and end users connected by today's networks. In this session we will discuss and demo how you can use Splunk software to gain insights into machine data generated by devices and control systems. We’ll cover common themes in use cases, and show you how to access the free apps and add-ons that simplify the connection and collection of data from both industrial systems and the Internet of Things. In addition we will introduce you to Splunk’s growing ecosystem of IoT and Industrial focused technology partners.
How a Leading Saudi Bank Matured Security to Better Partner the BusinessSplunk
Presented by Rasha M. Abu AlSaud, CISO of a leading Saudi Bank and Matthias Maier, Splunk Product Marketing Director, at Gartner’s 2018 Security Risk and Management Summit in Dubai.
With the majority of organisations using the cloud in one way or the other, cloud has become an essential ingredient of modern IT. But with increased cloud usage comes a greater need to have visibility across operations, security and cost control. Add in the complexity of multiple clouds, and things get quite misty very quickly. Whether you’re running workloads in AWS, Azure, or GCP (or all three)- Splunk has you covered to keep you on the right path in your cloud journey. This session will explore how Splunk integrates with the most popular cloud providers and the services they provide, allowing you to look in, on and through the Clouds.
This session will provide an overview and demo of the features of Splunk Cloud and Splunk Enterprise, including machine learning, data analysis, power user productivity and platform management.
.conf Go 2023 - Das passende Rezept für die digitale (Security) Revolution zu...Splunk
.conf Go 2023 presentation:
"Das passende Rezept für die digitale (Security) Revolution zur Telematik Infrastruktur 2.0 im Gesundheitswesen?"
Speaker: Stefan Stein -
Teamleiter CERT | gematik GmbH M.Eng. IT-Sicherheit & Forensik,
doctorate student at TH Brandenburg & Universität Dresden
.conf Go 2023 presentation:
De NOC a CSIRT
Speakers:
Daniel Reina - Country Head of Security Cellnex (España) & Global SOC Manager Cellnex
Samuel Noval - Global CSIRT Team Leader, Cellnex
Splunk - BMW connects business and IT with data driven operations SRE and O11ySplunk
BMW is defining the next level of mobility - digital interactions and technology are the backbone to continued success with its customers. Discover how an IT team is tackling the journey of business transformation at scale whilst maintaining (and showing the importance of) business and IT service availability. Learn how BMW introduced frameworks to connect business and IT, using real-time data to mitigate customer impact, as Michael and Mark share their experience in building operations for a resilient future.
Data foundations building success, at city scale – Imperial College LondonSplunk
Universities have more in common with modern cities than traditional places of learning. This mini city needs to empower its citizens to thrive and achieve their ambitions. Operationalising data is key to building critical services; from understanding complex IT estates for smarter decision-making to robust security and a more reliable, resilient student experience. Juan will share his experience in building data foundations for a resilient future whilst enabling digital transformation at Imperial College London.
Splunk: How Vodafone established Operational Analytics in a Hybrid Environmen...Splunk
Learn how Vodafone has provided end-to-end visibility across services by building an Operational Analytics Platform. In this session, you will hear how Stefan and his team manage legacy, on premise, hybrid and public cloud services, and how they are providing a platform for complex triage and debugging to tackle use cases across Vodafone’s extensive ecosystem.
.italo operates an Essential Service by connecting more than 100 million people annually across Italy with its super fast and secure railway. And CISO Enrico Maresca has been on a whirlwind journey of his own.
Formerly a Cyber Security Engineer, Enrico started at .italo as an IT Security Manager. One year later, he was promoted to CISO and tasked with building out – and significantly increasing the maturity level – of the SOC. The result was a huge step forward for .italo.
So how did he successfully achieve this ambitious ask? Join Enrico as he reveals the key insights and lessons learned in his SOC journey, including:
Top challenges faced in improving security posture
Key KPIs implemented in order to measure success
Strategies and approaches applied in the SOC
How MITRE ATT&CK and Splunk Enterprise Security were utilised
Next steps in their maturity journey ahead
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Search and Society: Reimagining Information Access for Radical FuturesBhaskar Mitra
The field of Information retrieval (IR) is currently undergoing a transformative shift, at least partly due to the emerging applications of generative AI to information access. In this talk, we will deliberate on the sociotechnical implications of generative AI for information access. We will argue that there is both a critical necessity and an exciting opportunity for the IR community to re-center our research agendas on societal needs while dismantling the artificial separation between the work on fairness, accountability, transparency, and ethics in IR and the rest of IR research. Instead of adopting a reactionary strategy of trying to mitigate potential social harms from emerging technologies, the community should aim to proactively set the research agenda for the kinds of systems we should build inspired by diverse explicitly stated sociotechnical imaginaries. The sociotechnical imaginaries that underpin the design and development of information access technologies needs to be explicitly articulated, and we need to develop theories of change in context of these diverse perspectives. Our guiding future imaginaries must be informed by other academic fields, such as democratic theory and critical theory, and should be co-developed with social science scholars, legal scholars, civil rights and social justice activists, and artists, among others.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
6. THIS MORNING’S AGENDA
09:30-
09:50
Welcome to SplunkLive! Utrecht
09:50-
10:20
Introduction to Splunk for Security
10:20-
10:40
Customer use case: CERT EU
10:40-11:00 Customer use case: NXP
11:00-11:20 Coffee Break & Sponsor Exhibition
11:20-11:50 Introduction to Splunk for IT Operations
11:50-12:10 Customer use case: KPN
12:10-
12:30
Customer use case: Exact Cloud Development
9. 9
Did You Notice?
Tom Goodwin – TechTarget, 2015
The world’s largest taxi company, owns no vehicles
The world’s most popular media owner, creates no content
The world’s valuable retailer, has no inventory
The world’s largest accommodation provider, owns no real estate
12. What Does Machine Data Look Like?
Sources
Order Processing
Twitter
Care IVR
Middleware
Error
12
13. Machine Data Contains Critical Insights
Customer ID Order ID
Customer’s Tweet
Time Waiting On Hold
Twitter ID
Product ID
Company’s Twitter ID
Customer IDOrder ID
Customer ID
Sources
Order Processing
Twitter
Care IVR
Middleware
Error
13
14. Machine Data Contains Critical Insights
Order ID
Customer’s Tweet
Time Waiting On Hold
Product ID
Company’s Twitter ID
Order ID
Customer ID
Twitter ID
Customer ID
Customer ID
Sources
Order Processing
Twitter
Care IVR
Middleware
Error
14
15. Disruptive Approach to Unstructured Data
Structured
RDBMS
SQL Search
Schema at Write Schema at Read
Traditional Splunk
ETL Universal Indexing
15
Volume Velocity Variety
Unstructured
17. Fully Integrated Enterprise Platform
HA / DR Admin Data Security Apps SDKs/APIScale
Collect
Data
Index
Data
Enrich
Data
Search &
Explore
Analyze
& Predict
Report &
Visualize
Alert &
Action
18. Enterprise Machine Data Fabric
Real-time
Machine Data Relational databases Geolocation data External Data
Enrich with Other Data
Platform for Machine Data
Enterprise
Data lakes
Accessible for low-cost
storage and additional
analytics
Collect and Manage
Data Streams
Monitor, Alert, Analyze Visualize
Apps APIs SDKs
19. Platform for Machine Data
Application
Delivery
Security,
Compliance
and Fraud
Business
Analytics
Internet
of Things and
Industrial
Data
IT
Operations
20. Platform for Machine Data
Application
Delivery
Security,
Compliance
and Fraud
Business
Analytics
Internet
of Things and
Industrial
Data
IT
Operations
Security,
Compliance
and Fraud
Business
Analytics
Internet
of Things and
Industrial
Data
21. Splunk for IT Operations and App Delivery
Platform for Machine Data
Service
Monitoring
IT
Operational
Analytics
Application
Management
DevOpsIT
Troubleshooting
22. Platform for Machine Data
Application
Delivery
IT
Operations
Security,
Compliance
and Fraud
Business
Analytics
Internet
of Things and
Industrial
Data
Security,
Compliance
and FraudApplication
Delivery
IT
Operations
Business
Analytics
Internet
of Things and
Industrial
Data
23. Splunk Security Intelligence
Security and
Compliance
Reporting
Monitor and
Detect Known/
Unknown Threats
Fraud
Detection
Insider
Threat
Incident
Investigations
and Forensics
Security
Analytics
24. Platform for Machine Data
Splunk for Business Analytics
Business
Process Analytics
Customer
Experience
Product
Analytics
Digital
Marketing
25. 25
Platform for Machine Data
Application
Delivery
IT
Operations
Security,
Compliance
and Fraud
Business
Analytics
Internet
of Things and
Industrial
Data
Security,
Compliance
and FraudApplication
Delivery
IT
Operations
Business
Analytics
Internet
of Things and
Industrial
Data
26. Platform for Machine Data
Splunk for IoT
Monitoring and
Diagnostics
Security, Safety
& Compliance
Preventative
Maintenance
Asset Lifecycle
Management
31. 31
Why Splunk?
FAST TIME-TO-VALUE
CLOUD, ON-PREMISE & HYBRID DEPLOYMENT
VISIBILITY ACROSS STACK, NOT JUST SILOS
ONE PLATFORM, MULTIPLE USE CASES
ANY DATA, ANY SOURCE, ASK ANY QUESTION
Looking at this room, I see that all of us are experiencing the “connectedness” of our world – and how that connectedness has changed everything.
Every industry, every business, everywhere is experiencing the effects of digitization and change. Our world is in the midst of massive change
This technical renaissance or digital transformation has only just begun and it’s accelerating
Software defined everything, Big data, Web scale, Containerization and microservices, Cloud, Mobile, Analytics, and the world of IoT
Add to this, customer and end user expectations have never been higher
Global economy and businesses are changing. Today it is the rise of the sharing economy and its companies.
They don’t rely on making things. Each of these companies was able to leverage data, and the new connectedness of the world to create unfair advantage.
What makes these businesses very different then their counterparts of 20 years ago, is that their primary delivery mechanisms are bidirectionally aware machines.
That’s where we come in. Spunk’s mission is to make machine data accessible, usable, and valuable to everyone.
We used to catch a taxi – now we have Uber, and Lyft, and InstantCab, and Car2Go;
We used to find new music on the radio - now we have Shazam, Spotify, Audible, and Pandora;
We used to have travel agents - now we have digital services like Expedia, eTravel and Homeaway
We used to shop locally - now we have online retailers like Amazon and CJO and zulily, and shop online even with traditional stores like Nordstrom and Tesco;
We used to go to Vegas – now even in Orlando, we can still gamble online with companies like Paddy Power and Amaya Gaming
And all of this digital transformation is built on fundamentally new approaches to IT.
Unlike traditional structured data or multi-dimensional data– for example data stored in a traditional relational database for batch reporting – machine data is non-standard, highly diverse, dynamic and high volume. You will notice that machine data events are also typically time-stamped – it is time-series data.
Take the example of purchasing a product on your tablet or smartphone: the purchase transaction fails, you call the call center and then tweet about your experience. All these events are captured - as they occur - in the machine data generated by the different systems supporting these different interactions.
Each of the underlying systems can generate millions of machine data events daily. Here we see small excerpts from just some of them.
When we look more closely at the data we see that it contains valuable information – customer id, order id, time waiting on hold, twitter id … what was tweeted.
What’s important is first of all the ability to actually see across all these disparate data sources, but then to correlate related events across disparate sources, to deliver meaningful insight.
If you can correlate and visualize related events across these disparate sources, you can build a picture of activity, behavior and experience. And what if you can do all of this in real-time? You can respond more quickly to events that matter.
For example, if an organizations captured the customers twitter ID in their customer profile this correlation would be possible. Where that didn’t exist, they could at least group by demographic with the tweets.
You can extrapolate this example to a wide range of use cases – security and fraud, transaction monitoring and analysis, web analytics, IT operations and so on.
Traditionally, machine data was generated and part of the data would be stored in a specific, pre-defined way. This creates limits in the questions that can be asked of the data.
Splunk takes a disruptive approach by storing the data in it’s raw, original format, and creates a schema at the last possible moment; when the question is asked. Because of this, there are no limits to the questions that can be asked of the data. Speaking of no limits…
No limits on where you can collect it from
No limits on the formats of data
And no limits on scale
Some customers are indexing 100’s of TB per day, searching across thousands of types of data all in different formats.
By giving different people the ability to ask different questions of the Same data, when they need to, we’re helping customers across all of our core use cases move from reactive to proactive.
Splunk provides an open, fully integrated platform. That means you can collect, index, analyze, report and predict on machine-generated data from a single product. It’s enterprise-ready with high availability and disaster recovery features, role-based access control and scales to index hundreds of terabytes per day. It’s an open platform with over 500 Splunk Apps available and allows for custom development.
and this is what is enabling splunk to become the enterprise machine data fabric
-we collect and feed into our platform for real-time ingestion (enriching, alerting, monitoring, analytics, visualizations, etc)
-open platform including ability to build apps, access the data in splunk via API’s, etc.
-you can store the data long-term in Splunk and/or
-as an enterprise data fabric, you can also choose to export the data for additional custom analytics or long-term archiving in a “data lake” and still access the data via Splunk
We continue to invest to make Splunk the leading platform for machine data.
We’re continuing to invest in both Splunk Enterprise as software, as well as our SaaS offering, Splunk Cloud.
Splunk uniquely supports organizations that are running operations on premises, in the cloud or in a hybrid environment.
We’re also investing heavily in solutions that make it easy for you to meet your goals across IT Operations, App delivery, Security, Fraud, Compliance; business analytics and industrial data.
Most of our customers are using Splunk to solve issues related to IT Operation sand Application Delivery.
- Splunk is used to quickly troubleshoot IT issues and outages, monitor end-to-end services and detect anomalies by thousands of organizations around the world.
- With Splunk, you can reduce mean-time-to-resolution (MTTR), lower monitoring costs, improve system uptime and support strategic initiatives like DevOps and Continuous Delivery practices, because IT teams have visibility across their entire stack and developers can see real-time production data without having access to production systems
We're focusing on security.
I want to draw your attention to 3 key areas that you said, are top of mind for you! You said…
You want Splunk to do more to: Enable Rapid Investigation and Incident Response
You’ve asked us to develop new analytics for emerging challenges like user behavior analysis
And you want us to help you address Insider Threats
Organizations are increasingly using Splunk to provide valuable insights beyond IT and security.
We’re making it easy to leverage your machine data with other structured data whether you're focused on business process analytics, customer experience or other areas
We're focusing on security.
Customers are using Splunk solutions to collect and correlate data from control systems, sensors, mobile devices and IT systems for a variety of Industrial Data and IoT use cases. These use cases include operational efficiency, predictive maintenance, industrial cybersecurity and asset analytics.
AdvancedMD Customer Video
Data from any source
Available to visualize, analyze report
Specialized content to deliver on specific use cases
The Splunk platform consists of multiple products and deployment models to fit your needs.
Splunk Enterprise – for on-premise deployment
Splunk Cloud – Fully managed service with 100% SLA and all the capabilities of Splunk Enterprise…in the Cloud
Splunk Light – allows smaller IT organizations to get started with Splunk – on premise or in the cloud
Hunk – for analytics on data in Hadoop
Apps and add-pns from Splunk and our community extend and simplify deployments by providing pre-packaged content designed for specific use cases and data types.
And premium solutions from Splunk apply real-time intelligence and rich, domain-specific functions to manage your security posture, IT operations and more.
Splunk has an active community:
There is an emerging ecosystem of new companies building apps on top of Splunk. They are taking advantage of open APIs and new platform capabilities to create an entirely new generation of applications.
Splunk Answers is the go-to place for your questions – and answers. Our technical support is consistently rated as industry leading and Splunk Answers has answers to thousands of questions.
You can participate in meet-ups and User Groups, contribute to our forums, or attend local SplunkLive events (like this one) to hear from you peers.
Fast Time-To-Value – Splunk can be downloaded and installed in minutes. If that’s not fast enough you can get a cloud instance in seconds.
Any Data – Splunk can ingest data from any machine data source. It’s not application, vendor, or hardware specific.
Ask any question – It’s impossible to know all the questions you will ask of your data. Often answering one question leads to another. The schema-on-the-fly approach allows you to ask any question of your data.
Visibility across stack – Because you can ingest this data from any source you can quickly gain visibility across all of them.
One Platform – This is more than log aggregation and search software. Let me show you.
Choose Splunk as a SaaS offering, on-premise or hybrid. You get one universal view of your data.
The best part is that Splunk is really easy to try and deploy.
We have multiple options for getting started:
- Try out Splunk Enterprise, Splunk Cloud, or light with our free downloads or online trials.
- Or try our free software download. The free Splunk Enterprise download is the same product that scales to ingest petabytes of data per day.
- Already running with Amazon Cloud deployments? AMIs for Splunk Enterprise and Hunk make it easy to get up and running.