Splunk Machine Learning Toolkit Overview

Edit subtitles

0:01 - 0:03

Hi there. My name is Greg Ainslie-Malik,
0:03 - 0:05

and I'd like to take you on a really
0:05 - 0:06

brief tour
0:06 - 0:08

through Splunk's machine learning
0:08 - 0:10

toolkit.
0:10 - 0:14

Originally developed for what Gartner
0:14 - 0:17

termed citizen data scientists,
0:17 - 0:20

the machine learning toolkit presents a
0:20 - 0:21

whole host of
0:21 - 0:24

features for customers
0:24 - 0:27

mostly focused around assistance and
0:27 - 0:28

experiments
0:28 - 0:30

to help users who aren't familiar with
0:30 - 0:31

data science
0:31 - 0:34

train and test machine learning models
0:34 - 0:37

and deploy them into production.
0:37 - 0:39

And most of these assistants present as
0:39 - 0:42

kind of guided interfaces where you can
0:42 - 0:44

input some SPL, something that our users
0:44 - 0:46

are very familiar with,
0:46 - 0:48

select some algorithms, do some
0:48 - 0:49

pre-processing,
0:49 - 0:51

things that our users are less familiar
0:51 - 0:54

with, and then view a set of dashboards, a
0:54 - 0:56

set of reports that tell them about
0:56 - 1:00

their model's performance.
1:00 - 1:03

However, what we see from the telemetry
1:03 - 1:06

is that these experiments are generally
1:06 - 1:09

used as almost like pseudo training to help
1:09 - 1:14

users familiarize themselves with MLTK, but of
1:14 - 1:16

the monthly active users,
1:16 - 1:20

actually more than 95% of them run
1:20 - 1:22

MLTK searches straight from the search
1:22 - 1:23

bar.
1:23 - 1:26

So here you can see an example of that
1:26 - 1:28

where we're using the fit command
1:28 - 1:31

that ships with MLTK to apply an anomaly
1:31 - 1:33

detection search.
1:33 - 1:35

And you can see that this is actually
1:35 - 1:37

just two lines of SPL.
1:37 - 1:40

So for our NOC and SOC personas, those
1:40 - 1:41

who are very familiar to us
1:41 - 1:45

at Splunk, this is quite a simple thing
1:45 - 1:47

to do.
1:47 - 1:50

Now, while the search bar and the
1:50 - 1:52

experiments can help our users develop
1:52 - 1:54

and deploy
1:54 - 1:55

simple techniques like this for finding
1:55 - 1:58

anomalies or making predictions,
1:58 - 2:01

what we're starting to see is a trend
2:01 - 2:02

towards
2:02 - 2:04

use case focused workflows. Here we have
2:04 - 2:08

one for ITSI
2:08 - 2:09

where
2:09 - 2:10

more complex techniques can be run
2:10 - 2:12

against data without
2:12 - 2:14

having to see the details of the ML
2:14 - 2:16

that's being applied at all.
2:16 - 2:18

So here we have a list of episodes,
2:18 - 2:20

incidents in ITSI.
2:20 - 2:24

Where I'm clicking on an incident, some-
2:24 - 2:26

a technique called causal inference gets
2:26 - 2:27

run in the background
2:27 - 2:29

to determine the root cause of that
2:29 - 2:31

incident, and you can see here a graph
2:31 - 2:33

structure that has mapped out
2:33 - 2:36

those root cause relationships, and up
2:36 - 2:38

here you can see a table where
2:38 - 2:40

for the service that was impacted by the
2:40 - 2:41

incident,
2:41 - 2:43

here are all the KPIs that are affected
2:43 - 2:45

it. And I'm clicking in this,
2:45 - 2:48

we can quickly drill down and see what
2:48 - 2:51

the raw data looked like,
2:51 - 2:52

and I could draw the conclusion that
2:52 - 2:55

perhaps it was disk space used
2:55 - 2:57

that was the reason behind this incident
2:57 - 3:02

in this case.

Title:: Splunk Machine Learning Toolkit Overview
Description:: more » « less
Video Language:: English
Duration:: 03:01

	OEVIDEOS edited English subtitles for Splunk Machine Learning Toolkit Overview
	OEVIDEOS edited English subtitles for Splunk Machine Learning Toolkit Overview

English subtitles

Revisions Compare revisions

Revision 2 Edited

OEVIDEOS
Revision 1 Uploaded

OEVIDEOS

	Revision Number	Author	Created
	2	OEVIDEOS
	1	OEVIDEOS

Splunk Machine Learning Toolkit Overview

Revisions Compare revisions

Our website uses cookies

Operating cookies (Required)