Get More From Your Data with Splunk AI + ML

© 2019 SPLUNK INC.© 2019 SPLUNK INC.
Get More From Your Data with
Splunk Artificial Intelligence and
Machine Learning
John Murdoch | Senior Sales Engineer
Mark Sivill | Senior Sales Engineer
June 2019 | London

© 2019 SPLUNK INC.
During the course of this presentation, we may make forward-looking statements regarding future events or
the expected performance of the company. We caution you that such statements reflect our current
expectations and estimates based on factors currently known to us and that actual events or results could
differ materially. For important factors that may cause actual results to differ from those contained in our
forward-looking statements, please review our filings with the SEC.
The forward-looking statements made in this presentation are being made as of the time and date of its live
presentation. If reviewed after its live presentation, this presentation may not contain current or accurate
information. We do not assume any obligation to update any forward-looking statements we may make. In
addition, any information about our roadmap outlines our general product direction and is subject to change
at any time without notice. It is for informational purposes only and shall not be incorporated into any contract
or other commitment. Splunk undertakes no obligation either to develop the features or functionality
described or to include any such feature or functionality in a future release.
Splunk, Splunk>, Listen to Your Data, The Engine for Machine Data, Splunk Cloud, Splunk Light and SPL are trademarks and registered trademarks of Splunk Inc. in
the United States and other countries. All other brand names, product names, or trademarks belong to their respective owners. © 2019 Splunk Inc. All rights reserved.
Forward-Looking Statements

© 2019 SPLUNK INC.
• Artificial Intelligence and Machine
Learning (AI and ML)
• Splunk Overview
• Customers
• Demonstration
Agenda

© 2019 SPLUNK INC.
Artificial Intelligence
and Machine Learning
Why all the buzz?

© 2019 SPLUNK INC.
Splunk Mission: To make machine data
accessible, usable and valuable to everyone.
Our Goal
To help companies capitalize on the real
opportunities from applying AI and ML to their
data
Boundless Potential
AI and ML have great capacity to deliver meaningful
technical advancement in nearly every industry
Misused and Overused
The terms can be mixed up, overused, and misused
leading to public confusion and misplaced hype

© 2019 SPLUNK INC.
How do AI and ML fit together?
AI encompasses a variety of disciplines that collectively represent the ability for a
machine to imitate intelligent human behavior
Machine Learning
Think
Language
Processing
Understand
Speech to text
Hear
Robotics
Move
Text to Speech
Talk
Language
Generation
Synthesis
Computer Vision
See

© 2019 SPLUNK INC.
Machine Learning is one branch of AI
ML is a branch of AI based on the idea that systems can learn from data, identify
patterns and make decisions with minimal human intervention
Machine
Learning

© 2019 SPLUNK INC.
Models used to learn the
structure of data without
labeled training data. Ex:
clustering, nearest
neighbor
Models used to learn the
approximate relationship
between input and output
data. Ex: classification,
regression
Computationally intense
models inspired by the
“deep” layers of the
biological neural network
of the human brain
Common ways to discuss Machine Learning
Unsupervised
Learning
Supervised
Learning
Deep
Learning

© 2019 SPLUNK INC.
Example Use Case for AI and ML: Self Driving Cars
Artificial
Intelligence
Machine
Learning
Deep
Learning
Artificial Intelligence (AI)
All the aspects that go into the
self driving car: structure,
cameras, navigation, etc.
Machine Learning (ML)
Predicting wait times based on
past history
Deep Learning Image
Recognition
• Driver not
included
• Forecasted
impact vehicle
substitution
• Computer vision
interpretation
of the road ahead

© 2019 SPLUNK INC.
Powered by AI and ML
Access to Expanding Data Universe
On-Premises Cloud
Turning data into business outcomes
Any User, Anywhere
SecurityIT Business Users DevelopersIoT

© 2019 SPLUNK INC.
AI & ML support Splunk’s
Platform Search to infer and
suggest SPL commands
Splunk Machine Learning
Toolkit guides customers to
build custom predictive models
with smart assistants
Splunk Premium Solutions for IT,
Security and IoT enable out-of-
the-box AI and ML capabilities
Splunk AI & ML is embedded across the platform to
enable customer success

© 2019 SPLUNK INC.
How Machine Learning fits into Splunk
Operational
Technology
Industrial
Assets
Information
Technology
Security
Consumer
and Mobile
Devices
Search AlertReal Time
Send an email
File a ticket
Send a text
Flash lights
Trigger
process
flow
Every Search Can
Use Machine Learning

© 2019 SPLUNK INC.
• Deviation from past behavior
• Deviation from peers
• Unusual change in features
• Predict Service Health Score
Predicting Events
• Trend Forecasting
• Detecting influencing entities
• Early warning of failure –
predictive maintenance
• Identify peer groups
• Event Correlation
• Reduce alert noise
• Personalized
Recommendations
• Search Suggestions
Anomaly detection Predictive Analytics Clustering
Splunk customers want answers from their data

© 2019 SPLUNK INC.
Splunk helps answer questions with AI and ML
Select and fit an
algorithm to
generate a model
Apply and
validate models
to derive insights
Surface insights
to consumers to
solve problems
Identify a Problem: <Stuff in the world> requires big time and money investment.
Build a Solution: Build ML model to forecast <possible incidents>, act preemptively
and continuously learn.
Operationalize
Access and
explore data

© 2019 SPLUNK INC.
Splunk AI and ML products and services range
from enhanced tools to pre-built solutions
ML Advisory
Program
IT Service
Intelligence
(ITSI)
User Based
Analytics
(UBA)
Industrial
IoT
Complimentary with Platform License
Machine Learning
Toolkit
(MLTK)
Premium Solutions (£)

© 2019 SPLUNK INC.
Domain
Expertise
(IT, Security…)
Data Science
Expertise
Splunk
Expertise
► Searching
► Reporting
► Alerting
► Workflow
Skill Areas for Machine Learning at Splunk
Premium Solutions Provide Out of the Box ML Capabilities
MLTK
Splunk ML Toolkit facilitates
and simplifies via examples
& guidance
ITSI,
UBA
► Identify use cases
► Drive decisions
► Understanding of
business impact
► Statistics/ math
background
► Algorithm selection
► Model building

© 2019 SPLUNK INC.
Splunk - Machine
Learning Toolkit

© 2019 SPLUNK INC.
► Available on Splunkbase:
https://splunkbase.splunk.com/app/2890/
► Python for Scientific Computing Library:
Access to 300+ open source algorithms
► Algorithms: 80+ standard algorithms out of the box
(supervised and unsupervised)
► ML Commands: New SPL commands to fit, test, score
and operationalize models
► ML-SPL API: Extensibility to easily import any algorithm
(proprietary / open source)
► Github Community: Share or import algorithms
► Apache Spark MLlib: Support large scale model training
via Spark Add-on for MLTK (LAR)
► Tensorflow Container: Supports nearest neighbor and
GPU acceleration
Splunk Machine Learning Toolkit (MLTK)
Build custom analytics for any use case on the Splunk data platform

© 2019 SPLUNK INC.
Easy-to-use experiments / assistants / showcases
Clear
Workflow
Easy Automation
to put ML into
Production
Easily Readable
Summary
Interactive
Customizations
Visualizations

© 2019 SPLUNK INC.
Machine Learning Advisory Program
Get started on your specific use case with the guidance of Splunk Data Scientists

© 2019 SPLUNK INC.
Machine Learning Advisory Program
Complimentary support of Splunk data science resources to help build a
ML use case resulting in a public reference
► Early access to new and
enhanced Machine
Learning features
► Opportunity to shape the
development of the
product
► Complimentary assistance
in operationalizing a
production quality ML
model

© 2019 SPLUNK INC.
Splunk - User Based
Analytics

© 2019 SPLUNK INC.
Splunk UBA provides advanced and
insider threat detection using
unsupervised machine learning helping
organizations find unknown threats and
anomalous user behavior across
devices and applications.
What is Splunk UBA?
Packaged ML used for security anomaly detection, insider threats and more
10 Billion Raw Events
10 Million Anomalies
1000
Sequences/Patterns
Kill-Chain
TOP-10
Critical and actionable
unknown threats

© 2019 SPLUNK INC.
65+ Anomaly
Classifications
25+ Threat
Classifications
Suspicious Data
Movement
Unusual Machine
Access
Flight Risk User
Unusual Network
Activity
Machine Generated
Beacon
Lateral Movement
Suspicious Behavior
Compromised User
Account
Data Exfiltration
Malware Activity
Network logs
Endpoint logs
Server logs
Identity logs
USE CASES
How Does Splunk UBA Work?
Machine
Learning
Machine
Learning
DATA SOURCES
Application logs

© 2019 SPLUNK INC.
Adaptive Thresholding
► Learn baselines & dynamic thresholds
► Alert & act on deviations
► Manage for 1000s of KPIs & entities
Anomaly Detection
► Find “hiccups” in expected patterns
► Catches deviations beyond thresholds
► Advanced proprietary algorithms
Event Analytics
► Prioritize event insights with service context, logs, metrics
► Reduce noise and alert on root causes of issues
► Use ML algorithms to group similar events
Splunk ITSI core capabilities

© 2019 SPLUNK INC.
Internal
Machine
Learning
Adaptive Thresholds
Anomaly Detection
Cohesion Detection
Predictive Analytics
Clustered Notable
Events
Automated Actions
Assisted Deep Dive
Investigation
Application logs
Network logs
Metrics
Server logs
Any Time Series
in Splunk
INTELLIGENCEKPIs
MLTK Customization
How Does Splunk ITSI Work?
Internal
Machine
Learning

© 2019 SPLUNK INC.
BMW: Zero to ML in one Month
A focus on constant innovation ensures BMW achieves their goal of
providing sheer driving pleasure for their customers. As technology
can provide the fuel for new ideas, data needs to be consistently
explored to generate new ways to deliver on this promise.
AUTO – MACHINE LEARNING
► BMW’s expansive use of Splunk drives customer success
• Predict traffic patterns in the short and long term
• Conduct intuitive data querying with Splunk Natural Language
Search
• Predict machine maintenance before incidents to streamline plant-
floor operations with Splunk IoT

© 2019 SPLUNK INC.
Hyatt: Improve customer
experience with reliable hotel Wi-Fi
To improve customer experience, Hyatt needed a centralized solution to
monitor and troubleshoot server issues and improve application delivery.
Since deploying Splunk Enterprise and the Splunk Machine Learning Toolkit,
Hyatt has experienced faster mean time to resolution (MTTR) with real-time
visibility across the entire business and improved customer experience.
TRAVEL AND HOSPITALITY - MACHINE LEARNING
► Hyatt used the MLTK to improve customer Wi-Fi experience
• Collect and index Wi-Fi login data without storing customer PII
• Forecast logins in real time
• Create executive level dashboards and visualizations
• Identify meaningful anomalies and take quick action

© 2019 SPLUNK INC.
Taking the
next steps
with
Splunk
1. Reach out to the Splunk team
today to explore what AI and ML
can do for your business
2. Download the Machine Learning
Toolkit on Splunkbase to start
building
3. Explore if Splunk Premium
solutions meet your Security, IT
Operations, or IoT use cases.

© 2019 SPLUNK INC.
4 Days of Innovation 350 Education Sessions 20 Hours of Networking
“Hands down the most beneficial and attendee focused conference
I have attended!”
– Michael Mills, Senior Consultant, Booz Allen Hamilton
sign up for notifications @ conf.splunk.com
.conf19
October 21-24, 2019
Splunk University
October 19-21, 2019
Las Vegas, NV
The Venetian Sands Expo

Get More From Your Data with Splunk AI + ML

More Related Content

What's hot (20)

Similar to Get More From Your Data with Splunk AI + ML (20)

More from Splunk (20)

Recently uploaded (20)

Get More From Your Data with Splunk AI + ML