Root Cause Analysis: Causal Versus Derived Events
April 15, 2014

Tom Molfetto
SericeNow

Share this

Today’s business landscape is saturated with data. Big Data has become one of the most hyped trends in the tech space, and all indicators point to the reality that this volume of data is only going to grow. IDC estimates that we’ll see a 60% growth in structured and unstructured data annually. Global 2000 organizations are investing billions of dollars into harnessing the power of Big Data to help make it meaningful and actionable. In other words, organizations are spending a ton of money in an effort to translate data into information.

Data – in and of itself – is fairly useless. When data is interpreted, processed and analyzed – when its true meaning is unearthed – it becomes useful and is called information. Thus the race between players like Splunk, QlikView and others to be the first or the best to harness the power of Big Data by translating it into actionable information.

Helping data center personnel and enterprise IT professionals translate their data into information by isolating causal versus derived events is really relevant to businesses these days. In most of my explorations, I have discovered that organizations are using a best-of-breed approach to monitoring, in what has resulted in a sort of Balkanization of the data center. In a common use case: network teams may be using Cisco for monitoring, the database teams use Oracle and web server teams uses Nagios. But nothing ties all of that information together in a unified view. There is no monitor of monitors, or manager of managers, so to speak. Let alone a unified view that goes beyond the IT components and maps them to their associated business services.

So what happens when a LAN port fails, and the app server and database server that both communicate through that LAN port also fail as a result? In that scenario, the LAN port failure is the causal event and the app/database server failures are derived events. By being able to quickly distinguish between the two types of events, and isolate the root cause of the failure, the dependent business services can be restored while minimizing negative impact on overall operations.

Standard monitoring solutions will trigger a bunch of red flags showing failures, but in order to make the map “come alive” it needs to be architected and displayed in a topological format. This is what allows easier assessment of root cause versus derived events, and what contributed to a dramatically reduced Meant-Time-To-Know (MTTK) with regard to diagnosing the underlying issues impacting business services.

Best-of-breed monitoring tools should continue to be leveraged in their respective domains, but the most forward-thinking organizations are unifying these tools from a service-centric perspective to create a monitor of monitors that maps IT components to associated business services, and connects with the best-of-breed solutions to create a complete and up-to-date topology that empowers IT to do their jobs more effectively.

Providing IT with the tools required to interpret data meaningfully and isolate the root cause of problems helps to create an informed perspective from which decisions can be made and responses taken.

Tom Molfetto is Marketing Director for Neebula.

Share this

The Latest

November 16, 2018

Everyone talks about automating the software development lifecycle (SDLC) but the first question should be: What should you automate? With this question in mind, DEVOPSdigest asked experts from across the IT industry for their opinions on what steps in the SDLC should be automated ...

November 15, 2018

We all know artificial intelligence (AI) is a hot topic — but beyond the buzzword, have you ever wondered how IT departments are actually adopting AI technologies to improve on their operations? ...

November 14, 2018

How can IT teams focus on the critical events that can impact their business instead of wading through false positives? The emerging discipline of AIOps is a much-needed panacea for detecting patterns, identifying anomalies, and making sense of alerts across hybrid infrastructure ...

November 09, 2018

In a recent webinar AIOps and IT Analytics at the Crossroads, I was asked several times about the borderline between AIOps and monitoring tools — most particularly application performance monitoring (APM) capabilities. The general direction of the questions was — how are they different? Do you need AIOps if you have APM already? Why should I invest in both? ...

November 08, 2018

There's no place like the web and smartphones for the holidays. With the biggest shopping season of the year quickly approaching, retailers are gearing up to experience the most traffic their online platforms (web, mobile, IoT) have ever seen. To avoid missing out on millions this holiday season, below are the top five ways developers can keep their apps and websites up and running without a hitch ...

November 07, 2018

Usage data is multifaceted, with many diverse benefits. Harvesting usage-driven insights effectively requires both good foundational technology and a nimbleness of mind to unify insights across IT's many silos of domains and disciplines. Because of this, leveraging usage-driven insights can in itself become a catalyst for helping IT as a whole transform toward improved efficiencies and enhanced levels of business alignment ...

November 06, 2018

The requirements to maintain the complete availability and superior performance of your mission-critical workloads is a dynamic process that has never been more challenging. Here are five ways IT teams can measure and guarantee performance-based SLAs in order to increase the value of the infrastructure to the business, and ensure optimal digital performance levels ...

November 05, 2018

APMdigest asked experts from across the IT industry for their opinions on what IT departments should be monitoring to ensure digital performance. Part 5, the final installment, offers some recommendations you may not have thought about ...

November 02, 2018

APMdigest asked experts from across the IT industry for their opinions on what IT departments should be monitoring to ensure digital performance. Part 4 covers the infrastructure, including the cloud and the network ...

November 01, 2018

APMdigest asked experts from across the IT industry for their opinions on what IT departments should be monitoring to ensure digital performance. Part 3 covers the development side ...