Splunk Administrator / Architect at a insurance company with 10,001+ employees
Real User
Top 20
Provides great end-to-end visibility into our network environment and helped us reduce alert noise
Pros and Cons
  • "Splunk ITSI helps us secure our environment by allowing us to create automatons that run when alerts are triggered."
  • "The data recovery has room for improvement."

What is our primary use case?

Splunk ITSI is used to analyze data and create alerts. This helps us to maintain our security best practices.

How has it helped my organization?

Our organization was looking for a security monitoring tool. I use Splunk ITSI as a monitoring and security tool. It helps me to protect data and prevent malware and hackers from accessing my environment. Splunk ITSI can be used to protect our role and infrastructure. It can also provide insights into how and what is helpful within our infrastructure.

Splunk ITSI provides great end-to-end visibility into our network environment. It can identify the exact root cause of an issue without any additional troubleshooting on my part.

Predictive analytics is valuable for preventing incidents before they occur because it allows me to see when the data stopped being indexed, which saves me time from having to investigate.

Splunk ITSI makes it easier to secure our entire infrastructure. Before Splunk ITSI, our environment was chaotic.

Splunk ITSI streamlines our incident management by providing a financial report of all applications in our environment.

Splunk ITSI has helped us reduce alert noise. After configuring ITSI, we set certain parameters based on our alerts. These alerts are the conditions that ITSI uses to automatically reduce noise.

Splunk ITSI helps to reduce our mean time to detect by monitoring key performance indicators such as CPU overload and the percentage of use revenue trend. On average the automation has reduced our mean time to detect by five minutes.

Splunk ITSI significantly reduces our mean time to resolve because most of our time was previously spent troubleshooting. With ITSI, we don't have to troubleshoot at all.

Splunk ITSI can help reduce downtime, but the extent of its effectiveness depends on how it is implemented.

What is most valuable?

Splunk ITSI has a lot of advantages. There are a lot of different aspects when implementing Splunk ITSI in our environment.

Splunk ITSI helps us secure our environment by allowing us to create automatons that run when alerts are triggered. This automation can pass through the CI/CD pipeline tool, which helps to increase security.

What needs improvement?

The data recovery has room for improvement.

Buyer's Guide
Splunk ITSI (IT Service Intelligence)
September 2023
Learn what your peers think about Splunk ITSI (IT Service Intelligence). Get advice and tips from experienced pros sharing their opinions. Updated: September 2023.
734,678 professionals have used our research since 2012.

For how long have I used the solution?

I have been using Splunk ITSI for three years now.

Splunk ITSI can be deployed on-premises or in the cloud. However, we typically deploy it in the cloud because of the available services. These services do require a lot of permissions.

What do I think about the stability of the solution?

Splunk ITSI is stable.

What do I think about the scalability of the solution?

Splunk ITSI is scalable.

How are customer service and support?

The quality of support depends on the individual use case and how we configure the solution.

How would you rate customer service and support?

Positive

How was the initial setup?

Splunk ITSI can be installed remotely or manually. The deployment time depends on the operating system being used to deploy the solution into the cloud. Once ITSI is deployed, I can perform a ROM test through the CI/CD pipeline.

What was our ROI?

Splunk ITSI's visibility into our environment provides good value to our organization.

What's my experience with pricing, setup cost, and licensing?

Splunk ITSI is a pay-per-use service that is priced fairly based on the amount of data we use.

What other advice do I have?

I give Splunk ITSI an eight out of ten.

Splunk ITSI is a cheaper and easier-to-use alternative to APM solutions. Unlike APM solutions, Splunk ITSI also helps with application management, memory management, host log volume, and CPU usage.

Our clients vary in size, with some using small amounts of data and others using terabytes of data within Splunk ITSI.

Splunk ITSI maintenance involves updating the software and ensuring that it is compatible with the applications that it will integrate with.

Which deployment model are you using for this solution?

Public Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Other
Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor. The reviewer's company has a business relationship with this vendor other than being a customer: partner
Flag as inappropriate
PeerSpot user
Marketing Intelligence Expert at a financial services firm with 1-10 employees
Real User
It has a straightforward setup and an automated reporting feature that lists the severity level of issues and response times
Pros and Cons
  • "The feature that stood out to me most from Splunk IT Service Intelligence (ITSI) was automated dashboarding or reporting. The solution lists the severity level of issues, and the response times."
  • "Integration is the most critical area to improve in Splunk IT Service Intelligence (ITSI). It wasn't a great experience because you had to do a little back and forth to integrate the solution."

What is our primary use case?

We use Splunk IT Service Intelligence (ITSI) to find out about system outages and reports about the outages. We have a lot of platforms that monitor solutions, outages, and downtime. Still, we're keener on the reporting, and how fast the insights can be generated, so those are our prominent use cases for Splunk IT Service Intelligence (ITSI).

How has it helped my organization?

After understanding and learning more about Splunk IT Service Intelligence (ITSI), particularly its capabilities, the solution helped my company look into recommendations and insights shared with stakeholders on improving the company's product.

What is most valuable?

The feature that stood out to me most from Splunk IT Service Intelligence (ITSI) was automated dashboarding or reporting. The solution lists the severity level of issues, and the response times, for example, so automated reporting is what I like best about Splunk IT Service Intelligence (ITSI).

What needs improvement?

Integration is the most critical area to improve in Splunk IT Service Intelligence (ITSI). It wasn't a great experience because you had to do a little back and forth to integrate the solution.

I want more integrations in the next release of Splunk IT Service Intelligence (ITSI), and the solution should be seamlessly connected with other solutions during integration.

For how long have I used the solution?

I've used Splunk IT Service Intelligence (ITSI) for about six months, and I'm still using the solution.

What do I think about the stability of the solution?

Splunk IT Service Intelligence (ITSI) is a stable solution.

What do I think about the scalability of the solution?

If you have the money, then Splunk IT Service Intelligence (ITSI) is scalable. It could be limited if you have to make do with whatever capacity or seats you have.

How are customer service and support?

I have no experience contacting Splunk IT Service Intelligence (ITSI) technical support.

How was the initial setup?

The initial setup for Splunk IT Service Intelligence (ITSI) was straightforward because you only needed to log in and connect your APIs.

What was our ROI?

I've seen ROI from Splunk IT Service Intelligence (ITSI).

Which other solutions did I evaluate?

We evaluated Accenture myWizard.

What other advice do I have?

I'm into IT service intelligence or products focusing on monitoring and understanding systems, such as Splunk IT Service Intelligence (ITSI).

I don't remember the Splunk IT Service Intelligence (ITSI) version, but my company signed up for it in June, so it should be the latest version.

Five people use Splunk IT Service Intelligence (ITSI) within the company, and the same people take care of the deployment and maintenance of the solution.

There's no plan to increase the usage of Splunk IT Service Intelligence (ITSI), and there won't be for a long time because what my company has right now fits the budget and spending.

My advice to anyone looking into implementing the solution is to have a clear picture of the integration process and the timeline and have internal and technical capabilities, so you can address any breakdown that could happen while setting up Splunk IT Service Intelligence (ITSI).

As Splunk IT Service Intelligence (ITSI) has value and potential, I'd rate it eight out of ten.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Splunk ITSI (IT Service Intelligence)
September 2023
Learn what your peers think about Splunk ITSI (IT Service Intelligence). Get advice and tips from experienced pros sharing their opinions. Updated: September 2023.
734,678 professionals have used our research since 2012.
Officer at State Street
Real User
Enables us to consolidate tools but it should improve its pricing
Pros and Cons
  • "Alerts and episodes are valuable to me."
  • "The solution should integrate more features in NEAP."

What is our primary use case?

We use the solution to monitor our own internal applications. We monitor analogs and various other DB Connect sources.

How has it helped my organization?

The tool has replaced some other products in our organization. It’s coming in very handy.

What is most valuable?

Alerts and episodes are valuable to me. These features put all notable events together and give us an opportunity to take action.

What needs improvement?

We can take actions based on NEAPs, like emails and service now tickets. It is pretty basic at the moment. The solution should integrate more features in NEAP.

For how long have I used the solution?

I have been using the solution for about a year.

What do I think about the stability of the solution?

The solution is pretty stable.

What do I think about the scalability of the solution?

The product is extremely scalable.

How are customer service and support?

I work with a lot of Splunk’s support people. I like them. They're all good.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

We were using a software called Genius. We use Splunk IT Service Intelligence now, and it's more cost-effective overall.

What about the implementation team?

I have been maintaining the solution. The product is straightforward to maintain. We just need to follow the best practices, and it works. We have a lot of users, so it's difficult controlling what the users do in the environment.

What was our ROI?

The tool is a centralized place to collect all our data and compute against it. It has the potential for an ROI.

What's my experience with pricing, setup cost, and licensing?

Pricing has some room for improvement.

Which other solutions did I evaluate?

We evaluated other options, but Splunk seemed to be the best. It is the industry leader, so it was a no-brainer.

What other advice do I have?

We have an on-prem instance. Everything's pretty much on-prem. We work with cloud logs. Monitoring multiple cloud environments using the solution is pretty straightforward and easy. It is extremely important to us that the solution has end-to-end visibility into our cloud-native environment.

The solution has helped reduce our mean time to resolve. The product has helped improve our organization’s business resilience. Its ability to predict, identify, and solve problems in real-time is pretty good as long as the source is good and we use it well.

The tool’s ability to provide business resilience by empowering staff is alright. We have experienced cost efficiencies by switching to Splunk IT Service Intelligence. I know it used to be ingestion, and now it's like a CPU. It's always evolving. I was not involved in the initial setup. The solution still has some room for improvement.

Overall, I rate the product a six or seven out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
PeerSpot user
Muhammad Firdaus - PeerSpot reviewer
Splunk Presales & Splunk Technical Engineer at Westcon-Comstor
Real User
Easy to use with multiple potential use cases and has a reasonable price
Pros and Cons
  • "It's scalable and expands well."
  • "We'd like them to show more inputs on the dashboard."

What is our primary use case?

We primarily use the solution for monitoring our infra.

We use it for monitoring the potential application, depending on what the data source ingestion is. There are many use cases. Based on the data source, we can know the best recommendation use case to provide to the customer. For example, if you are ingesting data from the firewall, you can see any traffic from the firewall itself.

What is most valuable?

There are many use cases. You can use it for all kinds of ingested data. 

The solution is stable.

It's scalable and expands well. 

It's easy to use. 

What needs improvement?

We haven't come across any shortcomings. 

We'd like them to show more inputs on the dashboard. 

The Wizard should be easier to use. 

For how long have I used the solution?

I've been dealing with Splunk for three years and this particular solution for two. 

What do I think about the stability of the solution?

The solution is very stable. There are no bugs or glitches and it doesn't crash or freeze. 

What do I think about the scalability of the solution?

It is a scalable product. 

We have around ten people using it currently. 

How are customer service and support?

I don't have any insights into technical support. It's the same level of support as Phanton, as far as I know. 

How was the initial setup?

I don't directly handle the deployment. I can't speak to if the implementation is easy or hard. 

What's my experience with pricing, setup cost, and licensing?

There is a licensing fee a company would have to pay. The amount would depend on the data ingestion. It varies according to a company's use. It's not overly expensive. 

What other advice do I have?

We sell and support this product. 

The product can be deployed on-premises and the cloud. 

I'd rate the solution nine out of ten. We're quite pleased with its capabilities. 

I would recommend the solution for others who need to monitor their infrastructure. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer:
PeerSpot user
Shashank Gahoi. - PeerSpot reviewer
Security Architect at a tech vendor with 10,001+ employees
MSP
Top 5
Feature-rich, good reporting, and easy to install
Pros and Cons
  • "In my opinion, Splunk IT Service Intelligence (ITSI) is better than QRadar. With the help of Splunk, we can get results."
  • "The dashboard queries should be improved. More queries should be suggested in order to produce better dashboards."

What is our primary use case?

I use Splunk IT Service Intelligence (ITSI) for SIEM.

What is most valuable?

Splunk IT Service Intelligence (ITSI) is a very good tool.

Splunk IT Service Intelligence (ITSI) is superior to QRadar in my opinion. We can get results with the help of Splunk.

Splunk outperforms IBM QRadar in terms of functionality.

What needs improvement?

The dashboard queries should be improved. More queries should be suggested in order to produce better dashboards.

For how long have I used the solution?

I have been working with Splunk IT Service Intelligence (ITSI) for one year.

What do I think about the stability of the solution?

Splunk IT Service Intelligence (ITSI) is a stable solution.

How are customer service and support?

I have never contacted technical support.

Which solution did I use previously and why did I switch?

I have worked with IBM QRadar, Splunk, and Sentinel.

People say that IBM QRadar is easier to implement as well as to query things.

How was the initial setup?

The initial setup is straightforward. It is very easy to implement.

What's my experience with pricing, setup cost, and licensing?

Splunk pricing is high.

Which other solutions did I evaluate?

I was exploring LogRhythm, and multiple SIEM solutions, because we wanted to purchase a SIEM tool.

What other advice do I have?

Definitely, I would recommend this solution to others who are interested in using it. Splunk should be used because it provides a better solution in terms of SIEM as well as reporting. If you want to use that tool for reporting purposes, it is a fantastic tool. You only need to create a query to get started.

I would rate Splunk IT Service Intelligence (ITSI) an eight out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Splunk Engineer at a logistics company with 10,001+ employees
Real User
Helps optimize the business by speeding up trouble ticket resolutions
Pros and Cons
  • "We have a lot of teams using Splunk and they would be blind without it."
  • "We have problems doing upgrades and operating alternate new versions."

What is our primary use case?

Our customer is an internal department. We have about 150 teams that use Splunk and we provide Splunk for all of them. Our IT is currently setting it up for one of them. This customer is really impressed by the Glass Tables, possibilities for management, and the Showcase.

The department that uses ITSI runs the public buses for Switzerland. They use it to collect data about the cars. We will build Glass Tables for them. It's a management summary for tickets. They use it to collect data about the solution flow regarding the response time and ticketing flow. 

How has it helped my organization?

It helps optimize the business by speeding up trouble ticket resolutions.

We have a lot of teams using Splunk and they would be blind without it.

What needs improvement?

We have problems doing upgrades and operating alternate new versions.

The migration of the existing glass tables needs improvement. There were at least two upgrades where we had to heavily update the existing glass tables to get them to work with the new version. 

That's something that Splunk could improve on. They should simplify the upgrade process. 

How are customer service and support?

I have never used their support. We solve our problems by ourselves. 

What other advice do I have?

I would rate Splunk's ability to predict, identify, and solve problems in real-time a five out of ten.

I would rate Splunk an eight out of ten. It has great potential but it is a little complex to set up.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
PeerSpot user
Phanikumar Madiraju - PeerSpot reviewer
Senior consultant specialist-ITID at a financial services firm with 10,001+ employees
Real User
Top 5
An easy to scale solution that offers good technical support
Pros and Cons
  • "The solution is easy to scale."
  • "Splunk ITSI lacks out-of-the-box solutions for enterprise users."

What is our primary use case?

Our use cases for Splunk ITSI have been created around our critical services like payment gateways.

What needs improvement?

Splunk ITSI lacks out-of-the-box solutions for enterprise users. Currently, everything needs to be created from scratch.

In their next release, Splunk should offer API integrations with products like ThousandEyes, and AppDynamics, or some other network monitoring tools or dashboards. 

For how long have I used the solution?

I have been using Splunk IT Service Intelligence for two years.

What do I think about the stability of the solution?

Splunk ITSI is stable. We have less than 24 technical staff.

What do I think about the scalability of the solution?

The solution is easy to scale. All you need is to procure another license from Splunk and add new users.

Our company has approximately 500 users of Splunk ITSI.

How are customer service and support?

Technical support from Splunk is very good. I would rate them a five out of five for service and support.

How would you rate customer service and support?

Positive

How was the initial setup?

The initial setup of Splunk ITSI is simple.

What's my experience with pricing, setup cost, and licensing?

The pricing of Splunk is a bit high. I would rate it a four out of five when thinking about the affordability of the solution.

What other advice do I have?

I would recommend this solution to all big enterprises that actually have live traffic, like banks or telecoms.

Overall, I would rate Splunk ITSI an eight out of ten.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Operation Manager at Totalplay
Real User
Top 20
An excellent solution with a very straightforward setup
Pros and Cons
  • "The observability is great and valuable."
  • "It would be good if an interface was included in the next release."

What is our primary use case?

We use this solution both on the cloud and on-premises. We are currently using the most recent version.

What is most valuable?

The observability is great and valuable because it allows us to work with all our sets.

What needs improvement?

There are no areas I can pinpoint that need improvement because the product is working well. It would be good if an interface was included in the next release.

For how long have I used the solution?

We have been using this solution for two years.

What do I think about the stability of the solution?

The solution has very good stability.

What do I think about the scalability of the solution?

The solution is scalable.

How are customer service and support?

We have had positive experiences using customer service and support.

How was the initial setup?

The initial setup was straightforward. We are in a NOC solution, and we have 30 people. We used a team of five people to deploy the solution. 

What about the implementation team?

We implemented this solution through our partner organization.

What other advice do I have?

We would rate this solution a ten out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free Splunk ITSI (IT Service Intelligence) Report and get advice and tips from experienced pros sharing their opinions.
Updated: September 2023
Buyer's Guide
Download our free Splunk ITSI (IT Service Intelligence) Report and get advice and tips from experienced pros sharing their opinions.