Intro to Splunk IT Service Intelligence

Get a first glance at Splunk ITSI’s capabilities. Learn how ITSI provides unified insights into critical services with advanced analytics and machine learning.


Video Transcript


Splunk IT Service Intelligence, also known as Splunk IT SI, combines machine data with machine learning to deliver a data-first, analytics-driven approach to IT operations. This video covers the fundamentals of working with Splunk IT SI.

Splunk IT SI offers powerful visualizations that provide a central unified view of critical IT services, and uses machine learning to highlight anomalies, detect root causes, and pinpoint areas of impact. This helps you make your service operations more efficient, and achieve IT service excellence. Let's look at some of the capabilities within Splunk IT SI.

The Service Analyzer provides an at-a-glance view of the health of your services and KPIs in order of severity. Glass Tables helps you visualize contextual interrelationships and dependencies across all service delivery components. You can monitor business and service activity in real time, using metrics and performance indicators that are aligned with business, goals, and objectives.

You can personalize the look and feel to create role-relevant dashboards, and define relevant service relationships to quickly understand dependencies and the potential performance impact. Glass Tables deliver service intelligence to IT and the business, with actionable insights that everyone can understand.

Deep Dives helps you organize and correlate relevant metrics and events into swim lanes to speed up investigations and diagnosis. You can compare performance over time to understand trends, identify systemic issues, or both. Deep Dives helps you visually correlate KPIs, events, metrics, anomalies, and logs to collaborate across IT functions to effectively triage an issue. And Multi KPI Alerts help you group multiple KPIs across various services and create trigger conditions to generate notable and meaningful events.

Notable Events provide a consolidated view of all the alerts generated as a result of the Multi KPI Alerts correlation searches and anomaly detection algorithms. You can create powerful aggregation policies manually, or use machine learning to group events and minimize event noise. By providing service and business context on events, you can better prioritize incidents, and focus on the right tasks at the right time.

Splunk IT SI also adopts machine learning algorithms to identify meaning in your machine data, without explicitly telling it what to do. Using machine learning in Splunk IT SI helps you baseline normal operations and use advanced measurements to adapt thresholds to changing behavior in real time, notice early warning signs of failures, determine subtle pattern changes to detect anomalies, and enable data-driven actions, correlate and contextualize events across silos to isolate and act on what matters.

Splunk IT SI also offers a library of modules that enable faster insights, with built-in data access and prepackaged dashboards. Modules purpose-built for Splunk IT SI deliver deep service-oriented insights into individual technology domains. Modules are a collection of highly relevant metrics, entities, service typologies, and detailed dashboards, and can be easily mapped to services, KPIs, and entities in Splunk IT SI in a matter of hours. Interested in hands-on experience? Go to and gain access to a free seven-day sandbox environment in the cloud.