Operations | Monitoring | ITSM | DevOps | Cloud

Latest posts

SIEM Tutorial: What should a good SIEM Provider do for you?

Modern day Security Information and Event Management (SIEM) tooling enterprise security technology combine systems together for a comprehensive view of IT security. This can be tricky, so we’ve put together a simple SIEM tutorial to help you understand what a great SIEM provider will do for you. A SIEM’s responsibility is to collect, store, analyze, investigate and report on log and other data for incident response, forensics and regulatory compliance purposes.

Are your customers catching production problems before you do?

Availability and quality are the biggest differentiators when people opt for a service or product today. You should be aware of the impact of your customers alerting you to your own problems, as well as how to stop this from becoming the norm. To make sure you don’t become an organization known for its bugs, understanding the organizational changes required to deliver a stable service is key.

Africa Interconnection Report

It has been a transformative year for Africa's cloud ecosystem. Considerable new investment is going into carrier-neutral data centres across the region and slowly but surely the adoption of cloud services is gathering pace. Meanwhile, the impact of the Covid-19 pandemic has led many businesses to accelerate adoption of cloud services, and reaffirmed the need to push ahead with digital transformation initiatives.

The Essential Hybrid Networking Guide

How SD-WAN, dedicated cloud connections, MPLS and the public internet compliment each other as essential components of the hybrid enterprise WAN Enterprises' use of multiple public and private connectivity is only going to continue into the future, bringing unwanted complication to their networks as they connect not just site-to-site and site-to-cloud, but also cloud-to-cloud.

The Top IT Dashboards You Should Be Using

Technology has evolved the critical need for accessing real-time applications such as cloud-collaboration, VoIP and video conferencing from anywhere in the world. CIOs who prioritize around the clock performance and availability for cloud-based productivity tools, have an opportunity to deliver more value and can give their business a competitive edge. IT dashboards are a critical tool in enabling productivity. However, one of the biggest challenges that IT leaders face is to integrate data from multiple business systems that are already in place, both on-premise and in cloud solutions.

Take Control of Alert Storms

Relevant and timely alerts are a key tool to manage application performance successfully. However, IT administrators are often overwhelmed by alerts. Either they receive too many alerts or get notified of ones that aren't relevant to them. By setting up alarm properties to suit your needs, you'll find them more relevant and avoid alarm fatigue. Becoming proactive, rather than reactive when it comes to detecting problems on the network reduces stress on the IT staff and offers a better end-user experience, by preventing downtime.

Detecting Ryuk Using Splunk Attack Range

Cybersecurity Infrastructure Security Agency (CISA) released Alert (AA20-302A) on October 28th called “Ransomware Activity Targeting the Healthcare and Public Health Sector.” This alert details TTPs associated with ongoing and possible imminent attacks against the Healthcare sector, and is a joint advisory in coordination with other U.S. Government agencies.

Ryuk and Splunk Detections

Several weeks ago, my good friend Katie Nickels (Director of Intelligence at Red Canary extraordinaire) and I were chatting about Ransomware. She was super interested and passionate about some new uses of a ransomware variant named “Ryuk” (first detected in 2018 and named after a manga/anime character) [1]. I was, to be honest, much less interested. It turns out, as usual, Katie was right; this was a big deal (although as you will see, I’m right too… still dull stuff!).

Resolve: Build Your Automation Center of Excellence: A Blueprint for Getting Started

As automation expands to almost every aspect of business, organizations are increasingly looking to develop Automation Centers of Excellence (CoE). Done right, CoEs can accelerate adoption and maximize the potential of automation to increase profitability, improve business outcomes, and fuel innovation - all while putting the safeguards in place to ensure automation is rolled out in a timely, safe, and standardized way.

Leverage AI and predictive analysis to cut costs and eliminate downtime

With the promise of unprecedented potential, artificial intelligence (AI) and predictive analytics have permeated into every field of business. Due to their ability to help retail staff serve customers better, personalize video recommendations based on users’ preferences, reduce employee churn, and detect fraud and security threats, AI and predictive analysis are rapidly being adapted across industry verticals.