PRODUCTBRIEF
Splunk®Opera&onalIntelligencetoReal-TimeAc&on
RAPID RESPONSE
by
RAPID RESPONSE
>rapidresponse
for
RAPID RESPONSE
by
for
•  Composecustomalertac3onappsinminuteswith
Opera&onalIntelligencetoReal-TimeAc&on
intui&veworkflows,nocodingrequired!
•  SplunkAlertstriggerappsinreal&me
•  Appsperformresponseac&onsatallstacklayers
•  Control,trackandanalyzeappresultsinSplunk
•  Drivesbusinessandmissionassuranceforallusecases
Cri&cal IT systems and technology
infrastructure issues happen – and you
need to respond fast. The longer it takes
youtorespond,thegreaterthelosses. But
just plain fast isn’t enough. You need the
agility to assess the en&re situa&on, take
the best first response ac&ons, and then
followthroughwithadynamicsystem-wide
responsestrategy.
alerts
>rapidresponse
customalertac1onapps
real-time actions
machine data
>rapidresponseisaSplunkadd-onappthatallowsyoutoeasilycomposepowerfulcustomalertac3onsin
minutes–withoutscrip&ngorcoding.ItseamlesslyextendsSplunk’sna&vealertmechanism,allowingyou
toorchestratesystem-widereal&meresponsestrategiesforyouropera&ons
>rapidresponseclosesthelooparoundyouropera1ons
>rapid response lets your opera&ons team
capture its exper&se into powerful alert ac3on
appsthatexecutewithinmillisecondsofaSplunk
alert. It drama&cally extends Splunk’s simple
scripts and web hook alert ac&ons, so you can
orchestrate and track enterprise-wide response
campaigns in real-&me across all layers of the
stack, while s&ll maintaining secure posi&ve
controloverallautomatedac&ons.
And >rapid response goes even further to
support dynamic strategies that leverage
Splunk’s powerful search and analysis
capabili&es to drill down on issues, determine
root causes, and orchestrate the most effec&ve
responseac&onsforthesitua&on.
>rapidresponse
>rapidresponse’shighlyintui&vepure-browser-based
drag-and-dropUIletsyouliterallydrawcustomSplunk
alertac&onworkflowsinminutes
Poweredby
PRODUCTBRIEF
PRODUCTBRIEF
Splunk®Opera&onalIntelligencetoReal-TimeAc&on
RAPID RESPONSE
ComposeResponseApps
ini3alize
OpenCase
Perform
Response
Ac3on
Perform
Response
Ac3on
CloseCase
Users compose powerful >rapid response apps using a
highly intui&ve drag-drop-connect-the-blocks UI.
Componentsareavailabletoperformresponseac&onson
hardware and soVware resources at all layers of the
stack. Users test their apps interac&vely, then share
themforfullyautoma&cuseasSplunkalertac&ons.
DiscoverResponseAppsinAlertAc1onManager
>rapidresponseintegratesseamlesslywithSplunk’sAlert
Ac&on Manager so users have immediate access to the
latestapprovedappversions.
SelectResponseAppforanAlert
Users select a >rapid response app from a drop down
menuofavailableresponseappsintheEditAlertAc&ons
view.ResponseappsmaybecombinedwithotherSplunk
alertac&onsaswell.
TrackandControlReal-TimeResponseProgress
WhenSplunkgeneratesanalert,itautoma&callyrunsthe
selected >rapid response app. Each app opens a
Response Case that users track in real &me in the Rapid
ResponseMonitorSplunkdashboard.IndividualResponse
Ac3ons progress is also tracked in the Response Case
Detailsdashboard.
for
Poweredby
by
>rapidresponsescanrangefromsimplesingle-ac&onappsto
complexmul&-phasedappsthatsynchronizeresponse
ac&onsacrossgloballydistributedenterpriseresourcesatall
layersofthestack.Relyon>rapidresponsetoensurefast
repeatableexecu&onofyourcri&calITopera&ons,security,
complianceandapplica&ondeliverystrategies.
RAPID RESPONSE
>rapidresponse
RAPID RESPONSE
RobustSophis1catedReal-TimeResponseStrategies
>rapid response apps may also request in-progress
operatorguidance/authoriza&onviaemailandSMSwhen
cri&calresponseac&onsrequireescala&on.
by
for
optensity.com/rapid-response-splunk
1-(844)-37RAPID
Availablethrough