Overview
What is Splunk IT Service Intelligence (ITSI)?
Splunk supports IT operations analytics with the Splunk IT Service Intelligence premium offering, a software application available to subscribers to Splunk Cloud or Splunk Enterprise log analytics and SIEM platforms.
ITSI - worth it.
Splunk IT Service Intelligence Review
Solo system to integrated view with Splunk ITSI
Great way to correlate notable events from existing Splunk datasets as well as external systems
Splunk ITSI for customer confidence
A very quick implementation and quick returns
Base User who inspires to be a Power User
Splunk IT Service Intelligence Gets the Job Done Well
Used the product
ITSI Valuable asset of Splunk
ITSI provides the value in IT monitoring
My review for you
Splunk ITSI in Practice
Making our Customer IT Experiences Next-Gen via ITSI
Splunk ITSI review
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Reviewer Pros & Cons
Pricing
What is Splunk IT Service Intelligence (ITSI)?
Splunk supports IT operations analytics with the Splunk IT Service Intelligence premium offering, a software application available to subscribers to Splunk Cloud or Splunk Enterprise log analytics and SIEM platforms.
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
16 people also want pricing
Alternatives Pricing
What is Freshservice?
Freshservice is a cloud-based service desk and IT service management (ITSM) solution that currently serves more than 10,000 SMB, mid-market, and enterprise customers worldwide.
What is ManageEngine ADAudit Plus?
ADAudit Plus offers real-time monitoring, user and entity behaviour analytics, and change audit reports that helps users keep AD and IT infrastructure secure and compliant.Track all changes to Windows AD objects including users, groups, computers, GPOs, and OUs.Achieve hybrid AD monitoring with a…
Product Details
- About
- Integrations
- Competitors
- Tech Details
- FAQs
What is Splunk IT Service Intelligence (ITSI)?
Splunk IT Service Intelligence (ITSI) Features
- Supported: Dashboards to monitor service health and KPIs in real-time
- Supported: Intelligent alerting and automated event clustering
- Supported: Predictive analytics to prevent incidents 30 minutes in advance
Splunk IT Service Intelligence (ITSI) Integrations
Splunk IT Service Intelligence (ITSI) Competitors
Splunk IT Service Intelligence (ITSI) Technical Details
Deployment Types | On-premise, Software as a Service (SaaS), Cloud, or Web-Based |
---|---|
Operating Systems | Windows, Linux, Mac |
Mobile Application | No |
Supported Countries | Global |
Frequently Asked Questions
Comparisons
Compare with
Reviews and Ratings
(56)Community Insights
- Business Problems Solved
Splunk IT Service Intelligence, or ITSI, is a versatile tool used by infrastructure monitoring teams, NOCs, command centers, and IT departments to manage and monitor various aspects of their infrastructure. Users leverage its capabilities to collect events from multiple data sources such as networks, servers, storage systems, databases, and security devices. Splunk ITSI aggregates this data on a single platform, providing a comprehensive view of the entire infrastructure for quick issue identification and root cause analysis.
One of the key use cases of Splunk ITSI is consolidating alerts from different IT tools to provide stakeholders with visibility into the health of services. This allows infrastructure operations, application developers, and DevOps teams to proactively address potential issues before they impact users. Splunk ITSI also monitors the performance and functionality of critical services, ensuring their proper functioning and reducing mean time to service restoration during outages.
In addition to traditional infrastructure elements, Splunk ITSI extends its monitoring capabilities to include telemetry from data centers, cloud infrastructures, and customer media consumption endpoints like set-top boxes, IPTV streamers, mobile devices, and web browsers. With real-time cloud monitoring and proactive alerting features, Splunk ITSI provides operational visibility into business health and hardware and microservices performance. It also supports event management, aggregation, incident creation, self-healing automation, and trend predictions in different environments.
By offering a single view of the entire topology through glass tables and pre-built content packs for real-time service monitoring, Splunk ITSI reduces response time for critical incidents while identifying root causes. Its user-friendly interface facilitates quick adoption among teams with varying skill levels in monitoring tools. Development teams also utilize Splunk ITSI to monitor system performance during high traffic events or peak times.
Overall, Splunk IT Service Intelligence is a powerful AIOps platform that brings together different areas of IT that were previously siloed. It helps manage major incidents effectively, monitor service availability, and limit downtime by quickly responding to outages.
Attribute Ratings
Reviews
(1-9 of 9)ITSI - worth it.
- Asset group overview.
- Detailed metrics.
- Customization to meet customer requirements.
- Easier navigation for new users.
- KPI responses.
- Deconflicting multiple entity IDs.
Splunk IT Service Intelligence Review
- KPI based alerting
- Adaptive Thresholding
- Health Scorecard provided by Glasstables
- Validating Adaptive Thresholding
- Integrating Event Analytics with Servicenow
Base User who inspires to be a Power User
- laying out dashboards to quickly see data
- Providing a trending map to see data over time
- Drilling down to find things you didn't even know you needed
- I'm not sure if it's my organization locking down Splunk or Splunk itself but it would be helpful to get more detailed errors when searching. A way of guiding the correct input to get results.
- Something like SQL IntelliSense - the feature reads internal metadata and lists all of the available objects and their properties, thereby helping people effectively and quickly write SPL.
- Personalization for things like saving reports, datasets, dashboards of others
ITSI provides the value in IT monitoring
- Out of the box value
- Problem identification
- Root cause analysis
- Better highlight what you can click on and what is static.
Splunk ITSI - Best tool for Business Agility
- User intuitive interface.
- A large array of options and customizations available for IT teams.
- Report extraction for different scenarios.
- Auto event detection and logging.
- In built mechanism for calculation of health scores of applications and deployments.
- Support for third-party tools and extensions needs improvement.
- Cost is somewhat higher.
ITSI Enables Rapid Incident Resolution at Scale
- ITSI visualizes the dependency topology and layers in data
- ITSI grabs data from many disparate sources and creates an integrated view
- ITSI provides real-time insights by showing a timelines of metrics layered across various transactions
- ITSI really needs a robust splunk log ingestion infrastructure at its core
- ITSI requires a great engineering team to build out the automated discovery and topology
- Unless you use an API to build the topology, the view can quickly become static
Enterprise ITSI at Scale. The Thoughts of a Team Lead.
- Clean user interface
- Easy to build new integrations
- Flexible and can be catered to your specific use case
- The terminology takes some getting used to: Aggregation policies, notable events, correlation searches, glass tables. If you're not familiar with ITSI, these terms can be a bit overwhelming and steepens the learning curve.
- We have had some technical issues with the underlying support when used in a multisite cluster. We've had to build in several points of redundancy to make sure it works as expected.
- I'd like to see additional types of notable events, like informational events that come in for when an incident is created or when an alert is acknowledged so all of those action steps can be viewed on the episode timeline without affecting the count of events.
ITSI converts your underutilized Splunk data into powerful KPIs and visibility, once you master its complexities
- Monitor hundreds of IT services by continuously tracking thousands of KPIs in a scalable way.
- Quickly identify problem areas by a combination of default visualizations and ability to create custom dashboards.
- Extremely configurable to effectively monitor nearly any KPI imaginable from Splunk.
- The extreme flexibility also makes it highly complex. Expert Splunk users are required to make full use of it.
- Documentation is insufficient and does not cover advanced use cases that ITSI is capable of supporting.
- Depending on how ITSI is configured, it can place heavy load on Splunk infrastructure. ITSI performance can be optimized in many ways but they are not always obvious.
- ITSI Events/Alerts (AKA Episode Review) has flexibility in it but still not as flexible as desired. However this can be compensated by directly querying ITSI's result data in Splunk.
Splunk ITSI FTW
- Show KPIs for each service.
- Show aggregated health scores.
- Increase transparency across large disparate organizations.
- Multiple ways to ingest the same data can be confusing (events vs. metrics).
- Glass tables can be a conflicting priority against normal Splunk dashboards.
- Proper setup for alerting requires content packs that could be included with the product directly.
- A separate license for ITSI on top of Splunk may make purchasing decisions difficult to justify.