Optimizing Integrated Eligibility Systems to Improve the Citizen Experience

B_GSiiLXIAAU1wsGovernment healthcare agencies often face strong pressure to operate more efficiently as a result of budget cuts, the retirement wave, or to improve citizen services. They are expected to reduce fraud and billing errors, while simultaneously enhancing quality of services and improving security measures. In order to meet all of these demands, Health and Human Services (HHS) agencies require better visibility and insights into the immense amounts of machine data produced by their processes and IT infrastructures. The notion of government using data analytics to improve citizen experience is one that more and more agencies are turning toward. Splunk’s software is already beginning to help some HHS organizations ensure integrated eligibility systems achieve their number one goal – providing citizens …

» Continue reading

CanDeal Can Do with Splunk

I love listening to our customers talk about their passion for Splunk software. The stories they share about never-ending ways they can utilize our software are truly inspiring and there is typically a common thread: it usually starts with one use case in one department. As one customer put it: “Splunk spreads throughout the organization like wildfire.” The recent CanDeal success story we recently published is yet another confirmation of the phenomenal success our customers are having with Splunk software throughout the entire enterprise.


It all started with security…

At CanDeal, a Canadian financial services company, they take their security seriously—especially with tighter and rising financial regulatory requirements. CanDeal wanted to proactively tackle and alleviate advanced persistent threats, and thus …

» Continue reading

Smart AnSwerS #35

Hey there community and welcome to the 35th installment of Smart AnSwerS.

For all the hard work put into making all things Splunk as awesome as possible, a group of Splunkers were taken on a day trip to Sausalito, CA for some kayaking and paddleboarding action in the bay. The morning was chilly, cloudy, and windy, so most folks avoided falling into the water like the plague, but of course the overcast gloom cleared up to show off some sun and blue skies AFTER we were done. It’s just good ole San Francisco Bay Area weather teasing us in its true, unpredictable form. Nonetheless, folks had a great, and well deserved, time :) Great job and big thanks to …

» Continue reading

Splunking Box Data – User Authentications

The Splunk Add-on for Box collects a lot of valuable data including Box users, files, folders, groups, and more.  Included in the Splunk Add-on for Box are several pre-built panels to get quick insights into this data.  The purpose of this post is to introduce various use cases around Box data included in the pre-built panels and custom searches and visualizations not included in the pre-built panels.

User Authentications

Before a user can access Box content, they have to authenticate.  It is important to keep an eye on the percentage of failed logins, where logins are coming from, user accounts associated with failed logins, etc.  The Splunk Add-on for Box has an event type named box_events_authentication that gives you all the …

» Continue reading

Storytelling: The Heart of Splunk Beats at .conf2015

I love a good story. It’s when you hear an amazing story that the lines blur between what you were told and what you actually feel. I also believe there is great power in a well-told story – the power to motivate, teach, inspire, and entertain.  In business, we often use our podium time to help teach or report out, but when I hear people share ideas through emotionally-charged storytelling, I find that I’m more apt to relate to and then recall what was said.


Our Splunk customers are some of the best storytellers I know. When they present, I often feel like I’m listening to ancient explorers or modern-day detectives who are using Splunk software to make rare discoveries …

» Continue reading

Collecting docker logs and stats with Splunk

I’m working at Splunk, but this is my personal thoughts. I have some knowledge about Splunk obviously, but you should not consider this as an official Splunk manual. Everything I did here – I did only for my personal needs and my free time.

You cannot really feel safe for the services you run if you don’t monitor them. There are plenty of great tools which allow you to monitor your docker environments, like cadvisor and some other cloud solutions. I did not want to use cloud solutions, because they can also upload some sensitive information, like environment variables, where I could keep passwords for AWS backups. So I wanted to use something like cadvisor, but with historical information and …

» Continue reading

Earning a Seat at the Table: Why Containers Matter

Docker-logo Container technologies like Docker matter to the enterprise for three key reasons:

1. Density
2. Portability
3. DevOps

Density is about extracting as much value from your infrastructure as possible. Private clouds deployed using traditional VM’s are memory-bound, which is why most private clouds still run with single or low double digit CPU utilization. I was able to run my private cloud at roughly 2 VM’s per core, where each VM hosted an application server instance. Using containers, I was able to get roughly 10 containers per core, where each container hosted an application server instance with an identical configuration.

Screen Shot 2015-08-21 at 3.24.53 PM

Similar to virtual machines, containers are inherently portable – they abstract the underlying hardware from the app, enabling the app …

» Continue reading

Smart AnSwerS #34

Hey there community and welcome to the 34th installment of Smart AnSwerS.

An exciting announcement just went out earlier this week, and that was the launch of the Community MVP Program, the SplunkTrust. The Splunk community is full of amazing leaders that are passionate about our various products and actively share their knowledge with other users to grow and learn, whether that be through active participation on Splunk Answers, Splunk User Groups, writing blogs, and many more avenues. These helpful leaders are what being a SplunkTrust member is all about. Read through the SplunkTrust blog announcement by Rachel Perkins, the Sr. Director of Community, to learn more about the program, the awesome perks of being a …

» Continue reading

Cyber Crime in Finance – Splunk attended the Banking Lounge Event at Bloomberg in Frankfurt


Recently Splunk and Finanz Informatik Technology Service, a provider of IT outsourcing and a finance cloud service, attended a Banking Lounge event, and also had the honor of speaking.

This post is a copy from the review of the event at FI-TS.

FI-TS organized the Banking Lounge on Cybercrime in Frankfurt together with BANKINGCLUB and Splunk. Around 50 interested banking experts came to Bloomberg LP, to listen to talks from Splunk and FI-TS and network.

Cybercrime in banks

Welcome to Bloomberg

Before the presentation started, almost all participants took part in the guided tour through the rooms of Bloomberg LP. Werner Kolb, Sales Manager at Bloomberg for 15 years, welcomed us and showed us the offices on the 18th floor. Bloomberg is well …

» Continue reading

Tea and Biscuits and Operational Intelligence

KettleWherever in the world you are reading this, there’s always time for a cup of tea. Whether it is English Breakfast, Earl Grey, Peppermint or Roobois, in the 4-5 minutes it takes you to make “a cuppa” (British slang) you can also get your Operational Intelligence Benchmark score based on EMEA wide research conducted by industry analyst Quocirca and Splunk. I’m going to guide you through the steps whilst making my own cup of tea:

  1. Fill the kettle up and switch it on. Your water should boil in about 2 minutes.
  2. Whilst it is boiling, open your web browser and visit OIBenchmark.com (English), OIBenchmark.de (German) or OIBenchmark.fr (French) and click “start”


  3. Select your industry, answer the twelve quick questions and
» Continue reading