BigPanda vs. Splunk On-Call

If the organization has a proper CMDB asset record then BigPanda features can be utilized to their true potential as it has alert correlation capability. The alert can be redirected to the proper support team using the auto-share feature. This wouldn't be the case where asset records are not updated and the Operations have to manually assign the alerts to support groups.

Incentivized

I recommend Splunk on-call is more suited where there are high incident queues; multiple teams need to be involved in handling a P1 severity issue. Multiple levels of escalation are needed environment where automated action is required. I recommend the solution for large-scale & medium-scale business units. For small-scale business units, I see the functional value is less.

Incentivized

• Alert correlation feature helps in grouping similar alerts together
• Alert Enrichment to enhance the data after it arrives on the tool
• Integration with multiple tools
• The console is very user friendly and provides ease of administration

Incentivized

• Easily assign work/tickets between multiple users
• Supports a wide variety of software integrations
• Easy to manage scheduling tool
• As part of the Splunk toolset, provides detailed levels of data analysis at our engineers fingertips

Incentivized

• Tool should have a feature to query the data
• The dashboard feature needs improvement
• It should have a dark mode

Incentivized

• The user interface can be furthe improved
• Licensing needs to be simplified and packaged as a bundle with other Splunk product like Enterprise Security
• Customer outreach can be further enhanced

Incentivized

It was a good solution with a good comprimise prize/features for our use cases

Incentivized

Good usability, it could be improved

Incentivized

VictorOps support has proven excellent for us. Because it is such a widely used tool, there is a lot of documentation on usage, and a large community of users to lean on. Also, many engineers have had experience working with VictorOps already, and the tool is so easy to setup / manage that much support isn't really necessary.

Incentivized

It was a good solution with a good comprimise prize/features for our use cases

Incentivized

TrueSight didn't provide many customization options. The features provided were primitive as compared to BigPanda. TrueSight was being used just for alert visibility and assignment to a proper support group from a single console. Although Moogsoft had similar features as compared to BigPanda, the user administration and ease of use were a bit complicated. BigPanda provides a much simpler user interface.

Incentivized

Splunk On-Call integrates better with our Splunk Cybersecurity and Reporting products due to the same family tree of the same eco system. We were previously using built-in on-call from individual applications and while adequate, they were difficult to manage and support SLA varied greatly across different applications. In addition we also used xMatters which did not integrate well with SAP products nor Citrix products so we were still using more than a single on-call product which was solved by implementing Splunk On-Call

Incentivized

• BIgPanda is very easy to implement and use
• Better than the previous tool, provides more functionality
• BIgPanda's alert enrichment feature very helpful

Incentivized

• It runs our on call rotation so it makes it easy for us.
• It integrates with Slack so it makes it easy for us to manage through Slack.

Incentivized