rapid response response d i p ra -...
TRANSCRIPT
Poweredby
Opera&onalIntelligencetoReal-TimeAc&on
Cri&cal IT systems and technologyinfrastructure issues happen – and youneed to respond fast. The longer it takesyoutorespond,thegreaterthelosses. Butjust plain fast isn’t enough. You need theagility to assess the en&re situa&on, takethe best first response ac&ons, and thenfollowthroughwithadynamicsystem-wideresponsestrategy.
>rapidresponseclosesthelooparoundyouropera1ons
>rapid response lets your opera&ons teamcapture its exper&se into powerful alert ac3onappsthatexecutewithinmillisecondsofaSplunkalert. It drama&cally extends Splunk’s simplescripts and web hook alert ac&ons, so you canorchestrate and track enterprise-wide responsecampaigns in real-&me across all layers of thestack, while s&ll maintaining secure posi&vecontroloverallautomatedac&ons.
And >rapid response goes even further tosupport dynamic strategies that leverageSplunk’s powerful search and analysiscapabili&es to drill down on issues, determineroot causes, andorchestrate themost effec&veresponseac&onsforthesitua&on.
RAPID RESPONSE
Splunk®Opera&onalIntelligencetoReal-TimeAc&onPRODUCTBRIEF
>rapidresponse
customalertac1onapps
alerts
machine data real-time actions
• Composecustomalertac3onappsinminuteswithintui&veworkflows,nocodingrequired!• SplunkAlertstriggerappsinreal&me• Appsperformresponseac&onsatallstacklayers• Control,trackandanalyzeappresultsinSplunk• Drivesbusinessandmissionassuranceforallusecases
>rapidresponseisaSplunkadd-onappthatallowsyoutoeasilycomposepowerfulcustomalertac3onsinminutes–withoutscrip&ngorcoding.ItseamlesslyextendsSplunk’sna&vealertmechanism,allowingyoutoorchestratesystem-widereal&meresponsestrategiesforyouropera&ons
>rapidresponse
>rapidresponse’shighly intui&vepure-browser-baseddrag-and-dropUIletsyouliterallydrawcustomSplunkalertac&onworkflowsinminutes
>rapidresponseRAPID RESPONSEby for
RAPID RESPONSE byfor
ComposeResponseAppsUsers compose powerful >rapid response apps using ahighly intui&ve drag-drop-connect-the-blocks UI.Componentsareavailabletoperformresponseac&onsonhardware and soVware resources at all layers of thestack. Users test their apps interac&vely, then sharethemforfullyautoma&cuseasSplunkalertac&ons.
PRODUCTBRIEF
ini3alize
OpenCase PerformResponseAc3on
CloseCasePerformResponseAc3on
DiscoverResponseAppsinAlertAc1onManager>rapidresponseintegratesseamlesslywithSplunk’sAlertAc&onManager so users have immediate access to thelatestapprovedappversions.
SelectResponseAppforanAlertUsers select a >rapid response app from a drop downmenuofavailableresponseappsintheEditAlertAc&onsview.ResponseappsmaybecombinedwithotherSplunkalertac&onsaswell.
TrackandControlReal-TimeResponseProgressWhenSplunkgeneratesanalert,itautoma&callyrunstheselected >rapid response app. Each app opens aResponseCase thatusers track in real&me in theRapidResponseMonitorSplunkdashboard.IndividualResponseAc3ons progress is also tracked in the Response CaseDetailsdashboard.
>rapid response apps may also request in-progressoperatorguidance/authoriza&onviaemailandSMSwhencri&calresponseac&onsrequireescala&on.
RobustSophis1catedReal-TimeResponseStrategies>rapidresponsescanrangefromsimplesingle-ac&onappstocomplexmul&-phasedappsthatsynchronizeresponseac&onsacrossgloballydistributedenterpriseresourcesatalllayersofthestack.Relyon>rapidresponsetoensurefastrepeatableexecu&onofyourcri&calITopera&ons,security,complianceandapplica&ondeliverystrategies.
RAPID RESPONSE
Splunk®Opera&onalIntelligencetoReal-TimeAc&onPRODUCTBRIEF
optensity.com/rapid-response-splunk
Poweredby Availablethrough
1-(844)-37RAPID
>rapidresponseRAPID RESPONSEby for
RAPID RESPONSE byfor