Splunk IT Service Intelligence (ITSI)

Score10 out of 10

56 Reviews and Ratings

Community insights

TrustRadius Insights for Splunk IT Service Intelligence (ITSI) are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Business Problems Solved

Splunk IT Service Intelligence, or ITSI, is a versatile tool used by infrastructure monitoring teams, NOCs, command centers, and IT departments to manage and monitor various aspects of their infrastructure. Users leverage its capabilities to collect events from multiple data sources such as networks, servers, storage systems, databases, and security devices. Splunk ITSI aggregates this data on a single platform, providing a comprehensive view of the entire infrastructure for quick issue identification and root cause analysis.

One of the key use cases of Splunk ITSI is consolidating alerts from different IT tools to provide stakeholders with visibility into the health of services. This allows infrastructure operations, application developers, and DevOps teams to proactively address potential issues before they impact users. Splunk ITSI also monitors the performance and functionality of critical services, ensuring their proper functioning and reducing mean time to service restoration during outages.

In addition to traditional infrastructure elements, Splunk ITSI extends its monitoring capabilities to include telemetry from data centers, cloud infrastructures, and customer media consumption endpoints like set-top boxes, IPTV streamers, mobile devices, and web browsers. With real-time cloud monitoring and proactive alerting features, Splunk ITSI provides operational visibility into business health and hardware and microservices performance. It also supports event management, aggregation, incident creation, self-healing automation, and trend predictions in different environments.

By offering a single view of the entire topology through glass tables and pre-built content packs for real-time service monitoring, Splunk ITSI reduces response time for critical incidents while identifying root causes. Its user-friendly interface facilitates quick adoption among teams with varying skill levels in monitoring tools. Development teams also utilize Splunk ITSI to monitor system performance during high traffic events or peak times.

Overall, Splunk IT Service Intelligence is a powerful AIOps platform that brings together different areas of IT that were previously siloed. It helps manage major incidents effectively, monitor service availability, and limit downtime by quickly responding to outages.

Reviews

28 Reviews

Splunk IT Service Intelligence (ITSI) - Expensive but best in the market

Rating: 10 out of 10

November 4, 2024

Use Cases and Deployment Scope

Splunk IT Service Intelligence (ITSI) helps us monitoring the performance of the services we are providing to the customer & other organization members. It also helps us in monitoring the performance of the services we offer and troubleshooting the issues which arise. To monitor we have created several dashboards so that we have the real time data and reports as per our requirement.

Pros

Customized reports
Real time data
Detail analysis of the data
Discovery of new local admin account
Detects several attacks

Cons

Expensive deployement
Various kind of installation
Optimizing the search is complex

Likelihood to Recommend

For large organization where numerous applications and databases runs and have various deployments of security tools and network devices, Splunk IT Service Intelligence (ITSI) is the best tool to monitor the real time data and detecting various kinds of attacks. It also helps in detecting the internal network activities and discovers different kinds of logins which helps in audit as well.

Jai Raj Sharma

Information Technology Manager in Information Technology at National Engineering Industries (1001-5000 employees)

Vetted Review

3 years of experience

ITSI - worth it.

Rating: 8 out of 10

Incentivized

September 9, 2023

Use Cases and Deployment Scope

Splunk ITSI is being used to mitigate hardware resource issues before they become a problem and troubleshoot issues for our teams.

Pros

Asset group overview.
Detailed metrics.
Customization to meet customer requirements.

Cons

Easier navigation for new users.
KPI responses.
Deconflicting multiple entity IDs.

Likelihood to Recommend

ITSI is best suited for an environment with 100 or more devices or in any domain where monitoring critical devices is a must. The ability to customize KPIs and create alert actions is imperative.

Peter Luyten

Splunk Administrator in Information Technology at Netsimco (51-200 employees)

Vetted Review

2 years of experience

Solo system to integrated view with Splunk ITSI

Rating: 8 out of 10

Incentivized

July 20, 2023

Use Cases and Deployment Scope

Splunk ITSI is powerful tool for infrastructure monitoring, event management and mature AIOps platform. We use Splunk for monitoring and utilize contents packs available OOB for free. Business was able to get good insight to service view and availability over time at real time.

Pros

Out of box content packs with dashboards
Easy integration with other platform from ingestion to alerting
Event count reduction and correlation

Cons

Auto service mapping and relationship
Patching schedule and maintenance missing re-occurring window.
Multi tenant or role based access for ITSI

Likelihood to Recommend

With multi vendor tools for monitoring, itsi helped us being all events centrally and manage incident creation from one place

Verified User

Consultant in Information Technology (10,001+ employees)

Vetted Review

4 years of experience

Great way to correlate notable events from existing Splunk datasets as well as external systems

Rating: 10 out of 10

Incentivized

May 3, 2023

Use Cases and Deployment Scope

We are utilising ITSI to monitor the health of our business operations and IT services. We use a range of KPI approaches to capture business health for stakeholder reporting, as well as lower level IT Ops monitoring of hardware and microservices.

Pros

Reducing alerting noise
Improving visibility of services
Great for finding root cause of issues

Cons

Should be easier to build notable events with rich data
It should be possible to build custom dashboards with standard ITSI UI components

Likelihood to Recommend

ITSI is great for a range of monitoring applications, not limited to just IT Ops monitoring as some might imagine, it is actually very good at monitoring business objectives, SLAs and other non-stereotypical IT metrics.

Verified User

Consultant in Engineering (1-10 employees)

Vetted Review

4 years of experience

Enterprise Health with Splunk IT Essentials

Rating: 10 out of 10

Incentivized

August 24, 2022

Use Cases and Deployment Scope

Splunk IT has helped revolutionize how we monitor all of our IT devices across the enterprise. Prior to its implementation, monitoring and troubleshooting had no real scope or direction. It was very much an unorganized, ad-hoc type of pursuit that wasted a ton of time and energy tracking problems down. Splunk IT Essentials lets us consolidate our monitoring into a single tool and see real time insights into the health of the enterprise.

Pros

Real time enterprise health monitoring
Metrics ingest, parsing, and visualization
Investigating and troubleshooting problems that arise with devices

Cons

Currently need to special request this app on Splunk Cloud
Not compatible with older versions of Splunk

Likelihood to Recommend

Splunk IT Essentials scales really well and is quite suitable for large enterprise environments which is where I use it. It can easily handle the classification and ingest of metrics/log data from thousands of devices. It also allows for easy grouping of these devices so that users can search just for Windows devices, or just for Linux machines. Provides a great overview of enterprise health while allowing deeper dives into the device level of data.

Kendal Droddy

Senior System Engineer in Engineering at General Dynamics Information Technology (201-500 employees)

Vetted Review

2 years of experience

View profile

Splunk ITSI for customer confidence

Rating: 10 out of 10

Incentivized

June 20, 2022

Use Cases and Deployment Scope

We use Splunk IT Service Intelligence to monitor services and do trend predictions. We use it to review the performance in collections of workstations as we start to deploy new software packages.

Pros

build services for each SLA
Build a service for each data center
create dependancies so we can view by service or by data center

Cons

The ability to pass in token to searches would make templates more useful

Likelihood to Recommend

IT is well suited to monitor a specific service or a specific KPI but not well suited to do the same things across the enterprise without a lot of time-consuming work on each service

WILLIAM STIMELY

president in Information Technology at System Architects Group (11-50 employees)

Vetted Review

3 years of experience

A very quick implementation and quick returns

Rating: 7 out of 10

Incentivized

June 20, 2022

Use Cases and Deployment Scope

We deployed Splunk IT Service Intelligence for our Enterprise Control Center to manage major incidents. We do use it for event analytics and service monitoring.

Pros

Seeing all events in one place.
Provides dashboards, content packs for major technologies
event correlation algorithms

Cons

Episodes
KPI settings
SAML authentication

Likelihood to Recommend

If the operating environment is simple with well-known tools and technologies using Splunk IT Service Intelligence is simpler. However, if the environment is complex with many homegrown tools, scripts, and multiple partners the data normalization and creation of glass tables can be challenging. If application service monitoring is to be used application support is essential as Splunk IT Service Intelligence itself has no means to understand flows, logic, and relationships.

Verified User

Manager in Information Technology (10,001+ employees)

Vetted Review

1 year of experience

Splunk IT Service Intelligence Review

Rating: 10 out of 10

Incentivized

June 20, 2022

Use Cases and Deployment Scope

The Glasstables built-in ITSI is being used by our department. We are building Services/KPIs to build our Glasstables. Glasstables help us with monitoring our Services and alert us for any service degradation or issues. We are using it for IT monitoring and management, event analytics and management, and Service insights and monitoring

Pros

KPI based alerting
Adaptive Thresholding
Health Scorecard provided by Glasstables

Cons

Validating Adaptive Thresholding
Integrating Event Analytics with Servicenow

Likelihood to Recommend

ITSI is well suited to know the health of the services. Based on the health of the Glasstables, we are able to make the business impact statement for the business users.

Verified User

Employee in Information Technology (5001-10,000 employees)

Vetted Review

1 year of experience

Base User who inspires to be a Power User

Rating: 10 out of 10

Incentivized

June 20, 2022

Use Cases and Deployment Scope

My organization has used Splunk for many years however my team just started ingesting our data. We started off small and are figuring out what Splunk can do. Once you have the correct search results, the power is incredible. We can see how many calls come into our network, what errors are occurring and where exactly they are. In fact, for the first time, we used our dashboard (which hasn't been made public to the rest of the organization yet) to troubleshoot a possible outage. The on-call person opened the dashboard, and we knew right away it wasn't our team’s issue. The time we saved by not manually pulling calls from SQL, looking for errors within those calls, and simply digging through our network to find where the issue was occurring allowed the on-call person to immediately open a ticket with a vendor. We were able to show when the issue started, where the issue was, and defer to the vendor even though they had not seen the issue. If we can find this with the little data we are ingesting, just imagine what we can do with more. The possibilities are endless!

Pros

laying out dashboards to quickly see data
Providing a trending map to see data over time
Drilling down to find things you didn't even know you needed

Cons

I'm not sure if it's my organization locking down Splunk or Splunk itself but it would be helpful to get more detailed errors when searching. A way of guiding the correct input to get results.
Something like SQL IntelliSense - the feature reads internal metadata and lists all of the available objects and their properties, thereby helping people effectively and quickly write SPL.
Personalization for things like saving reports, datasets, dashboards of others

Likelihood to Recommend

Splunk IT Service Intelligence is great for visualizing data and creating dashboards, and reports. Drilling down through the data is easy and shows things you may not have thought to look for. Seeing the data laid out in this fashion makes it easy and quick to get what you want. If you’re not well versed in SPL you maybe have difficulty finding what you need in a hurry.

Verified User

Professional in Information Technology (5001-10,000 employees)

Vetted Review

1 year of experience

Splunk IT Service Intelligence Gets the Job Done Well

Rating: 10 out of 10

Incentivized

June 16, 2022

Use Cases and Deployment Scope

Splunk IT Service Intelligence is the primary tool for assessing the health and stability of our online footprint on a daily basis and especially during the peak holiday sales season. It is integral to monitoring web servers, applications, databases, and more. Now we are expanding into AI Ops.

Pros

Deep dive flexibility
Integration machine learning
Bulk entity import
Adaptive thresholding

Cons

Multitenant

Likelihood to Recommend

Splunk IT Service Intelligence is especially well suited to bringing architectural diagrams to life. The deep dive functionality allows links to built-in kpi views or to other glass tables or dashboards making it simple to zoom in to focus on trouble spots or zoom out for a high level view of your critical services. Adaptive thresholds and integration of MLTK allow for intelligent alerting and integration with Splunk SOAR turns those alerts into actions.

Timothy Pacl

Splunk Architect in Information Technology at Dell EMC (10,001+ employees)

Vetted Review

5 years of experience

View profile

Loading Reviews List....

Base User who inspires to be a Power User

Rating: 10 out of 10

Incentivized

June 20, 2022

Use Cases and Deployment Scope

Pros

laying out dashboards to quickly see data
Providing a trending map to see data over time
Drilling down to find things you didn't even know you needed

Cons

I'm not sure if it's my organization locking down Splunk or Splunk itself but it would be helpful to get more detailed errors when searching. A way of guiding the correct input to get results.
Something like SQL IntelliSense - the feature reads internal metadata and lists all of the available objects and their properties, thereby helping people effectively and quickly write SPL.
Personalization for things like saving reports, datasets, dashboards of others

Likelihood to Recommend

Verified User

Professional in Information Technology (5001-10,000 employees)

Vetted Review

1 year of experience