Splunk announced expanded machine learning capabilities across its product portfolio with the release of Splunk Enterprise 7.0, Splunk IT Service Intelligence (ITSI) 3.0, Splunk User Behavior Analytics (UBA) 4.0 and updates to Splunk Cloud.
Splunk also introduced an updated suite of solutions that apply analytics and machine learning to fraud and cloud monitoring use cases.
“Machine learning is critical to customer success and to the evolution of Splunk. Our seamlessly integrated capabilities open up machine learning to everyone, enabling our customers to better predict future outcomes and more effectively analyze their data,” said Richard Campione, Chief Product Officer, Splunk. “Data is a strategic advantage and organizations are looking for the fastest, most efficient way to turn data into answers. With machine learning and metrics advancements that anyone can use, Splunk Enterprise 7.0 and Splunk Cloud powerfully deliver mission-critical answers faster and easier than ever before.”
Splunk Enterprise 7.0 and Splunk Cloud help customers better monitor, investigate and gain intelligence with their data, while delivering massive improvement in performance and scale. Support for metrics accelerates monitoring and alerting by at least 20x, and optimizations to core search technology deliver 3x speed improvement. With these enhancements, customers can use the Splunk platform to predict future IT, security and business outcomes through integrated machine learning techniques backed by powerful, extensible algorithms. These machine learning advances enable users to collect, prepare, transform, explore, visualize and publish data insights.
Splunk also announced new, advanced machine learning capabilities for its existing premium-packaged solutions, including:
- Splunk ITSI 3.0: The latest version of Splunk ITSI revolutionizes event monitoring by combining service context with machine learning to help identify existing and potential issues, prioritize restoration of business-critical services and deliver analytics-driven IT operations. Splunk ITSI 3.0 applies service context, including dependencies, to events and employs machine learning to reduce the noise of alert fatigue and surface only the most critical information.
- Splunk UBA 4.0: The new version of Splunk UBA enables customers to create and load their own machine learning models to identify custom anomalies and threats via Splunk UBA’s new software development kit (SDK). This capability opens up Splunk UBA to the world, giving users more power to detect insider attacks and automate correlation of anomalous behavior into high fidelity threats.
- Machine Learning Toolkit: Free to any customer, the Splunk Machine Learning Toolkit (MLTK) is a data science application that anyone can use to predict future IT, security and business outcomes. Recent updates include machine learning model management, which integrates user permissions via an intuitive user interface. In addition, the MLTK now includes public machine learning APIs for open source and proprietary algorithms, and a data prep module to help customers prepare and clean their data before initiating machine learning modeling.
With increased demand for premium-packaged solutions, Splunk is also announcing new and updated solutions to tackle specific customer security needs in security and IT operations:
- Splunk ES Content Update: Bringing human intelligence and machine data closer, Splunk Enterprise Security (ES) Content Update is a new subscription service that offers pre-packaged security content to Splunk ES customers. Splunk ES Content Update will regularly deliver dynamic new content to security practitioners to detect specific threats, help security teams investigate threats and manage the decision-making process to make it easier to choose responses.
- Security Essentials for Fraud Detection: Splunk Security Essentials for Fraud Detection is a free Splunk app that guides customers on how to use Splunk to identify and investigate different types of fraud, including healthcare, payment card and transactional fraud. Using Splunk MLTK and a range of Splunk data analysis functions, Splunk Security Essentials for Fraud Detection makes it easier for customers to understand and adapt fraud use cases for their own environments.
- Splunk Insights for AWS Cloud Monitoring: Also available in the Amazon Marketplace as an Amazon Machine Image (AMI), Splunk Insights for AWS Cloud Monitoring provides organizations with an analytics-based approach to cloud monitoring. This solution offers real-time awareness of performance, security, operational and cost management insights from Amazon Web Services (AWS).
- Splunk Insights for Ransomware: Splunk Insights for Ransomware is a solution priced per user that provides organizations with real-time insights for proactive assessment and rapid investigation of potential ransomware threats.
- Booz Allen Hamilton Cyber4Sight for Splunk: A solution which empowers security analysts and threat hunters with actionable threat intelligence, Cyber4Sight for Splunk is now generally available. The new app combines cyber insights and security intelligence from Booz Allen’s threat intelligence service with analytics-driven security insights from Splunk ES.
Splunk Enterprise 7.0 is available today, with Splunk ITSI 3.0 and UBA 4.0 available next month. The new version of Splunk Cloud will be available by January 2018.
Michael Olson on the AI+ITOPS Podcast: "I really see AIOps as being a core requirement for observability because it ... applies intelligence to your telemetry data and your incident data ... to potentially predict problems before they happen."
Enterprise ITOM and ITSM teams have been welcoming of AIOps, believing that it has the potential to deliver great value to them as their IT environments become more distributed, hybrid and complex. Not so with DevOps teams. It's safe to say they've kept AIOps at arm's length, because they don't think it's relevant nor useful for what they do. Instead, to manage the software code they develop and deploy, they've focused on observability ...
The post-pandemic environment has resulted in a major shift on where SREs will be located, with nearly 50% of SREs believing they will be working remotely post COVID-19, as compared to only 19% prior to the pandemic, according to the 2020 SRE Survey Report from Catchpoint and the DevOps Institute ...
All application traffic travels across the network. While application performance management tools can offer insight into how critical applications are functioning, they do not provide visibility into the broader network environment. In order to optimize application performance, you need a few key capabilities. Let's explore three steps that can help NetOps teams better support the critical applications upon which your business depends ...
In Episode 8, Michael Olson, Director of Product Marketing at New Relic, joins the AI+ITOPS Podcast to discuss how AIOps provides real benefits to IT teams ...
Will Cappelli on the AI+ITOPS Podcast: "I'll predict that in 5 years time, APM as we know it will have been completely mutated into an observability plus dynamic analytics capability."
When you consider that the average end-user interacts with at least 8 applications, then think about how important those applications are in the overall success of the business and how often the interface between the application and the hardware needs to be updated, it's a potential minefield for business operations. Any single update could explode in your face at any time ...
Despite the efforts in modernizing and building a robust infrastructure, IT teams routinely deal with the application, database, hardware, or software outages that can last from a few minutes to several days. These types of incidents can cause financial losses to businesses and damage its reputation ...
In Episode 7, Will Cappelli, Field CTO of Moogsoft and Former Gartner Research VP, joins the AI+ITOPS Podcast to discuss the future of APM, AIOps and Observability ...