What Are The Newest Machine Learning Capabilities Offered By Splunk?

Since their start, Splunk has focused on machine learning. At the time, that meant analysis of log files and event data. As the Internet of Things (IoT) comes into its own, machine to machine (M2M) communication data will be the core of IoT and operational intelligence.

At .conf2016, Splunk's annual user conference, Splunk announced new versions of Splunk Enterprise, Splunk IT Service Intelligence (ITSI), Splunk Enterprise Security (ES), and Splunk User Behavior Analytics (UBA). The new versions use machine learning to gain insight into machine data faster and easier. Let's take a closer look at each new version.

Splunk Enterprise: Version 6.5 provides custom machine learning and a new user experience for data analysis and preparation. This version uses the power of machine learning with advanced analytics. You can create custom machine learning models for IT, security, and business use cases. A new, more intuitive interface makes data prep and analysis easier. There's also tighter integration with Hadoop.

Splunk ITSI: This version lets you view how critical IT services are operating. You also get an environment where you can investigate and triage incidents as they occur. It uses analytics to help businesses find root cause faster. It lowers mean-time-to-resolution through unified service visibility, emerging problem detection, and a simplified workflow for incident investigation. 

Splunk ES: This security information and event management (SIEM) application allows real-time monitoring of security threats. The latest release uses an adaptive alerting feature based on machine learning. The 4.5 release includes the Glass Tables feature from ITSI, which allows users to employ custom visualizations and key metrics.

Splunk UBA: UBA is a good complement to ES. UBA analyzes longer periods so it can define normal user behavior and compare it to peer behavior for advanced detection of security threats. Version 3.0 incorporates 40+ machine learning models. With UBA 3.0, you can gain better threat detection from use case updates and achieve targeted discovery using machine learning-based anomaly detection.

Splunk has chosen to focus on machine data, a subset of big data. This should position them well to take advantage of the IoT as it grows across industries.

Do you want to learn more about the machine learning capabilities of the newest Splunk products? Call IMPEX toll-free at (877) 444-6739 or email us to learn more.