Operations | Monitoring | ITSM | DevOps | Cloud

Observability has always been about seeing clearly under pressure. But the pressure has changed. Applications are more distributed. Kubernetes environments keep expanding. Digital experiences depend on services, APIs, networks, third-party providers, and now AI models and agents that can make decisions faster than a human team can review every signal.

As we wrap up RSAC, one theme that repeatedly emerged in conversations with security leaders is that the modern enterprise has reached a critical inflection point where the velocity of machine-generated telemetry has outpaced the capacity of traditional architectures. This trend requires an approach that moves beyond the storage of information to the activation of it in ways that don’t simply exacerbate alert fatigue.

The world is generating data at a pace that defies the human ability to draw insights and comprehend. By 2028, we’ll reach almost 400 zettabytes of global data—with over 55% of it coming from machines talking to machines. For enterprises, this isn’t just a storage problem; it’s an existential challenge.

Imagine starting your day with a dozen disconnected apps where your calendar does not sync with your reminders, your maps do not know your appointments, and your contacts are not linked to your messages. You would constantly be scrambling, missing key details, and reacting late to what matters most. In our personal lives, we depend on tight integration to keep pace with the world. In business, the stakes are even higher.

In the modern enterprise, data is no longer just a byproduct of business; it is the lifeblood. However, we have moved beyond the era of simple transactional data. We are now living in the age of machine data.

We are excited to announce the release of the Splunk App for Data Science and Deep Learning (DSDL) version 5.2.3. Since 2018, DSDL has served as an innovation hub for custom AI integrations within Splunk. In 2025, the release of DSDL 5.2.0 introduced customizable Large Language Model (LLM) integrations, bringing Retrieval Augmented Generation (RAG) and Agentic AI workflows to Splunk users.

To succeed in the AI era, customers need fast, easy access to security solutions that can harness the power of agentic AI and deliver business outcomes. They need seamless access to their data for faster threat detection, simpler incident response, and reduced risk. They need technology vendors to work together and not in silos.

The Tier 2 SOC Analyst or the Incident Responder (often hailed as the "Sherlock Holmes of the network") faces an increasingly complex and relentless digital landscape. In a world where analysts are being overwhelmed by alerts, held back by fragmented, manual tooling and inefficient workflows, incident responders are charged with the critical task of identifying, analyzing, and mitigating security threats.