30
PEER TO PEER: THE QUARTERLY MAGAZINE OF ILTA | SPRING 2016
Beyond Operational Intelligence with Splunk
CASE STUDIES
Like most, we started the Splunk journey with
the goal of improving operational intelligence in our
organization, and Splunk does that well. Once on
the Splunk path, we quickly figured out that gaining
operational intelligence is just scratching the surface.
Some of Splunk's greatest value comes from pointing it
at your business data and gaining business intelligence.
This is not just a tool for IT personnel.
Splunk allows us to search and analyze machine-
generated data from our websites, applications, devices,
etc. It provides near real-time visibility into more
systems than any product I have used since starting
at a law firm helpdesk many years ago. For those like
me who are curious about the data, Splunk provides
insights that are invaluable.
How It Works
Once you install the enterprise version of the tool and
pull and/or push data into it, Splunk:
» Indexes the data
» Parses it into individual events by automatically
finding timestamps
» Finds field-value pairs
» Makes it all available to be searched
Indexing and searching are the two main roles of
Splunk Enterprise. The Splunk Processing Language
What is Splunk, you ask? After using Splunk
for the past three years, I can tell you that the
use cases are seemingly endless!
by Jordan Weinstein
Beyond Operational
Intelligence with Splunk
JORDAN WEINSTEIN
Jordan Weinstein is the Director of
Information Technology at Stroock &
Stroock & Lavan LLP. He has worked
primarily in the legal profession for
the past 16 years and was a recipient
of the Splunk Enterprise Revolution
Award in 2015. Contact Jordan at
jweinstein@stroock.com.
