Modern SecOps teams use Security Information and Event Management (SIEM) software to aggregate security logs, detect anomalies, hunt for threats, and enable rapid incident response. While SIEMs enable accurate, near real-time detection of threats, today's SIEM solutions were never designed to handle the volume of security data organizations generate daily. As daily log ingestion grows, so do the costs of data management.

Microservices architectures have revolutionized software development, enabling scalability and flexibility. However, they also introduce complexities in system monitoring and troubleshooting. Effective logging is crucial for maintaining visibility and diagnosing issues in these distributed environments. This comprehensive guide explores best practices for microservices logging, helping you navigate the challenges and implement robust logging strategies.

Despite new technologies and telemetry formats, like Model-driven Telemetry/Streaming Telemetry and OpenTelemetry, SNMP traps continue to be a significant source of events for monitoring teams. If you’ve been in IT operations, you’ve likely had a request to parse SNMP traps into a human-readable format so that they can be analyzed, probably deduplicated, and passed to a ticketing system for triage and remediation. The challenge? SNMP traps can be excessively chatty.

Splunk has launched a GenAI summary feature in splunk.com and docs.splunk.com search platforms designed to give users a quick and accurate glance of the most pertinent information they are looking for. This GenAI feature serves up a contextual high-level summary pulled from various relevant search results on topics ranging from Splunk product and feature usage to general Splunk terminology.

What keeps an SRE at the top of his game? I had an insightful conversation with Jon Duarte, a Site Reliability Engineer (SRE) at Mezmo and he walked me through his role and the various tasks he manages on a typical day. Here’s Jon offering a brief glimpse into the challenges he faces, the thought processes behind his approach, and the innovative solutions SREs come up with.

When Gartner publishes their annual observability industry research, it’s always exciting to find your company named among the most successful and high-profile providers in this space. That’s why Logz.io is thrilled to find itself listed as a Visionary for the third consecutive year in the Gartner Magic Quadrant for Observability Platforms (previously known as the Magic Quadrant for Application Performance Monitoring and Observability).

I’m so excited to share that Cribl has closed a $319M Series E round! The oversubscribed round was led by GV (Google Ventures), joined by new investor CapitalG along with participation from existing investors GIC, IVP, and CRV. This round values Cribl at $3.5 billion, up 40% from our Series D round in 2022, and includes both primary and secondary.

Elasticsearch is a distributed search and analytics engine that provides real-time operations and scales Horizontally. This assists users in making quick and effective searches, as well as analyzing, and visualizing huge data volumes. Users commonly commend Elasticsearch for its data indexing and storage capabilities. They highlight its efficiency in indexing text data and its proficiency in managing large data sets for persistence and retrieval.

As a solutions engineer, I always handle the complex challenge of collecting IT and security data. The variety of modern ephemeral systems increases the complexity of collection requirements. Cloud, PCF, and Kubernetes emit metrics, logs, and traces through methodologies like Cloud Foundry’s Nozzle, Prometheus scrapers, and OpenTelemetry collectors. I often find all of these deployed in parallel in a single enterprise environment to meet the evolving needs of IT Ops or SecOps.