SlideShare a Scribd company logo

Four ways to combat non actionable alerts

Download as PPTX, PDF
BigPanda
BigPanda

Many alerts place an unnecessary burden on Ops teams instead of helping them solve issues. This presentation describes the phenomenon and four ways to address it.

TechnologyDesign
1 of 24
Four Ways to Combat Non-Actionable Alerts Eyal Efroni Application Team Leader @ BigPanda http://bigpanda.io
Many alerts place an unnecessary burden on Ops teams instead of helping them solve issues
The main problem is that most alerts are not actionable enough
They point to issues that don’t require a response They lack critical information, forcing you to spend time searching for more insights in order to gauge their urgency
An excess of non-actionable alerts creates “alert fatigue”, wasting time and resources and interfering with the real issues at hand
This might already be happening to you:
Do you receive redundant alerts and: Immediately ignore them? Realize they aren’t relevant to you? Perform the same routine actions for obtaining the actual information you need?
If you’ve answered yes, Than this presentation is for you
Four Common types of Non-Actionable Alerts
1. Unhelpful titles The problem: One of the most important parts of the alert is its title, as it is the first thing you see. Cryptic titles force the responders to dig unnecessarily through the body of the alert for more info. Extra frustration occurs when different alerts share similar titles, causing great confusion and wasting time.
1. Unhelpful titles Example: You receive an alert titled “CPU LOAD 1.80″ followed by another alert titled “CPU LOAD 1.90”. Are these alerts even referring to the same server? Is a 1.80 load critical? What is affected by this problem? Wouldn’t it been great if the alert provided answers rather than adding more questions?
1. Unhelpful titles Making it actionable: All alerts should have short yet descriptive titles. They should enable the responder, at a glance, to know what the problem is, where it is, and how to address it. For example: “Server billing-1 load is critical for 5 min” is much more actionable than “CPU LOAD 1.80”.
2. Lack of vital information The Problem: Alert content is often limited or cryptic, forcing us to spend a lot of cycles understanding the meaning of the alert and searching for more information in order to gain insight. Somewhere within my Nagios, Graphite, Pingdom, or New Relic, there is relevant information to be found, but instead of solving the issue a significant portion of my valuable time is spent on such searches.
2. Lack of vital information Example: When addressing an alert about a server overload, almost always the same set of tasks are performed. These include connecting to the server to check for current load or analyzing trends in the CPU graph. Moreover, the next time a similar alert happens, you’ll be performing these same steps over and over.
2. Lack of vital information Making it actionable: Identify alerts that require repetitive and predictable searches for more information Automatically bundle that information as part of the alert. list actions that need to be performed or a link to relevant resources such as scripts, protocols or the developer’s insight into why this might happen
3. Alerts that don’t require resolution The Problem: Production environments are complex and dynamic. To maintain reliability, vital system information must be accessible to Ops and Developers. Our instinct tells us that this can only be accomplished by being notified of every alert and exception. In reality, however, the large majority of these alerts don’t require an action and end up drowning out the ones who do.
3. Alerts that don’t require resolution Example: An alert could’ve been sent to indicate that a user entered an invalid credit card number. While this information may be very interesting, we do not have any control over the user’s actions and can therefore do nothing about it. Getting this alert will only add additional noise.
3. Alerts that don’t require resolution Making it actionable: If the alert doesn’t lead to an immediate action on your part, don’t send it. Instead, find the issues which will require your attention. For example, replace the invalid credit card alert with an actionable alert which specifies that the rate of checkouts has dropped dramatically — maybe a change was made and a rollback action is required. Another solution can be a daily / weekly report which aggregates and visualizes the information that isn’t required in real-time. This way, the desired information will be available at the right time.
4. Alert routing The Problem: In many organizations, everyone receives all the alerts. This type of practice is usually initiated when teams are small and everyone is involved in everything. However, as teams scale and people begin to specialize, the “loudspeaker” approach to alerting quickly becomes a drag.
4. Alert routing Example: Sending alerts regarding connection issues with your 3rd party billing provider to your DBA team won’t help resolve the alert and will probably be ignored.
4. Alert routing Making it actionable: Send alerts only to people who are relevant to that alert. Obviously, this is easier said than done, as many alerts can be caused by several different sources. In such cases, creating more specific alerts for each source will provide the necessary granularity to make better routing decisions.
Conclusion Making alerts more actionable can significantly ease your pain and improve the day to day work. Simple changes, can have a dramatic impact.
Conclusion Actionable alerts can become irrelevant very quickly. Have a culture of ongoing improvement to your alerts Make a habit of periodically reviewing them and removing the non-actionable ones.
Thanks ! http://bigpanda.io http://twitter.com/bigpanda

Recommended

Top-Down Approach to Monitoring
Top-Down Approach to MonitoringTop-Down Approach to Monitoring
Top-Down Approach to MonitoringBigPanda
 
Microsoft Cognitive Services
Microsoft Cognitive ServicesMicrosoft Cognitive Services
Microsoft Cognitive ServicesShahed Chowdhuri
 
The API Economy
The API EconomyThe API Economy
The API EconomyCatalyst Investors
 
Social network with microservices
Social network with microservicesSocial network with microservices
Social network with microservicesViet Tran
 
cloud computing.ppt
cloud computing.pptcloud computing.ppt
cloud computing.pptMunmunSaha7
 
Cloud security ppt
Cloud security pptCloud security ppt
Cloud security pptVenkatesh Chary
 
Google App Engine ppt
Google App Engine pptGoogle App Engine ppt
Google App Engine pptOECLIB Odisha Electronics Control Library
 
Google App Engine
Google App EngineGoogle App Engine
Google App EngineSaiteja Kaparthi
 

Recommended

Top-Down Approach to Monitoring
Top-Down Approach to MonitoringTop-Down Approach to Monitoring
Top-Down Approach to MonitoringBigPanda
 
Microsoft Cognitive Services
Microsoft Cognitive ServicesMicrosoft Cognitive Services
Microsoft Cognitive ServicesShahed Chowdhuri
 
The API Economy
The API EconomyThe API Economy
The API EconomyCatalyst Investors
 
Social network with microservices
Social network with microservicesSocial network with microservices
Social network with microservicesViet Tran
 
cloud computing.ppt
cloud computing.pptcloud computing.ppt
cloud computing.pptMunmunSaha7
 
Cloud security ppt
Cloud security pptCloud security ppt
Cloud security pptVenkatesh Chary
 
Google App Engine ppt
Google App Engine pptGoogle App Engine ppt
Google App Engine pptOECLIB Odisha Electronics Control Library
 
Google App Engine
Google App EngineGoogle App Engine
Google App EngineSaiteja Kaparthi
 
Cloud computing and Software as a Service Overview
Cloud computing and Software as a Service OverviewCloud computing and Software as a Service Overview
Cloud computing and Software as a Service OverviewRahul Sudame
 
Ripple Labs @DeveloperWeek: Building the Payments Web
Ripple Labs @DeveloperWeek: Building the Payments WebRipple Labs @DeveloperWeek: Building the Payments Web
Ripple Labs @DeveloperWeek: Building the Payments WebRipple Labs
 
Overview of Microsoft Azure AI Services
Overview of Microsoft Azure AI ServicesOverview of Microsoft Azure AI Services
Overview of Microsoft Azure AI ServicesCraig Milroy
 
App dynamics and servicenow v5
App dynamics and servicenow v5App dynamics and servicenow v5
App dynamics and servicenow v5BrendanBooth
 
Ppt for Application of big data
Ppt for Application of big dataPpt for Application of big data
Ppt for Application of big dataPrashant Sharma
 
Intro to databricks delta lake
Intro to databricks delta lake Intro to databricks delta lake
Intro to databricks delta lakeMykola Zerniuk
 
The Analysis of Alipay
The Analysis of AlipayThe Analysis of Alipay
The Analysis of Alipayabby0531
 
Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)
Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)
Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)London Microservices
 
Evolution of the cloud
Evolution of the cloudEvolution of the cloud
Evolution of the cloudsagaroceanic11
 
Why is Customer Data Platform (CDP) ?
Why is Customer Data Platform (CDP) ?Why is Customer Data Platform (CDP) ?
Why is Customer Data Platform (CDP) ?Trieu Nguyen
 
Unified Big Data Processing with Apache Spark (QCON 2014)
Unified Big Data Processing with Apache Spark (QCON 2014)Unified Big Data Processing with Apache Spark (QCON 2014)
Unified Big Data Processing with Apache Spark (QCON 2014)Databricks
 
Enterprise application development
Enterprise application developmentEnterprise application development
Enterprise application developmentcolleges
 
Cloud Services Corporate Presentation
Cloud Services Corporate PresentationCloud Services Corporate Presentation
Cloud Services Corporate PresentationVijay Vasandi
 
Threat Detection and Response at Scale with Dominique Brezinski
Threat Detection and Response at Scale with Dominique BrezinskiThreat Detection and Response at Scale with Dominique Brezinski
Threat Detection and Response at Scale with Dominique BrezinskiDatabricks
 
Teradata Architecture
Teradata Architecture Teradata Architecture
Teradata Architecture BigClasses Com
 
Data Driven Storytelling.pptx
Data Driven Storytelling.pptxData Driven Storytelling.pptx
Data Driven Storytelling.pptxABHILASH NAIR, FRM
 
Business intelligence architectures.pdf
Business intelligence architectures.pdfBusiness intelligence architectures.pdf
Business intelligence architectures.pdfAnand572211
 
Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...
Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...
Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...Majid Hajibaba
 
Netreo whitepaper 5 ways to avoid it management becoming shelfware
Netreo whitepaper 5 ways to avoid it management becoming shelfwareNetreo whitepaper 5 ways to avoid it management becoming shelfware
Netreo whitepaper 5 ways to avoid it management becoming shelfwarePeter Reynolds
 
React Faster and Better: New Approaches for Advanced Incident Response
React Faster and Better: New Approaches for Advanced Incident ResponseReact Faster and Better: New Approaches for Advanced Incident Response
React Faster and Better: New Approaches for Advanced Incident ResponseSilvioPappalardo
 
Big dataplatform operationalstrategy
Big dataplatform operationalstrategyBig dataplatform operationalstrategy
Big dataplatform operationalstrategyHimanshu Bari
 
Overcoming the difficulties of managing multiple databases
Overcoming the difficulties of managing multiple databasesOvercoming the difficulties of managing multiple databases
Overcoming the difficulties of managing multiple databasesMSM Software
 

More Related Content

What's hot

Cloud computing and Software as a Service Overview
Cloud computing and Software as a Service OverviewCloud computing and Software as a Service Overview
Cloud computing and Software as a Service OverviewRahul Sudame
 
Ripple Labs @DeveloperWeek: Building the Payments Web
Ripple Labs @DeveloperWeek: Building the Payments WebRipple Labs @DeveloperWeek: Building the Payments Web
Ripple Labs @DeveloperWeek: Building the Payments WebRipple Labs
 
Overview of Microsoft Azure AI Services
Overview of Microsoft Azure AI ServicesOverview of Microsoft Azure AI Services
Overview of Microsoft Azure AI ServicesCraig Milroy
 
App dynamics and servicenow v5
App dynamics and servicenow v5App dynamics and servicenow v5
App dynamics and servicenow v5BrendanBooth
 
Ppt for Application of big data
Ppt for Application of big dataPpt for Application of big data
Ppt for Application of big dataPrashant Sharma
 
Intro to databricks delta lake
Intro to databricks delta lake Intro to databricks delta lake
Intro to databricks delta lakeMykola Zerniuk
 
The Analysis of Alipay
The Analysis of AlipayThe Analysis of Alipay
The Analysis of Alipayabby0531
 
Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)
Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)
Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)London Microservices
 
Evolution of the cloud
Evolution of the cloudEvolution of the cloud
Evolution of the cloudsagaroceanic11
 
Why is Customer Data Platform (CDP) ?
Why is Customer Data Platform (CDP) ?Why is Customer Data Platform (CDP) ?
Why is Customer Data Platform (CDP) ?Trieu Nguyen
 
Unified Big Data Processing with Apache Spark (QCON 2014)
Unified Big Data Processing with Apache Spark (QCON 2014)Unified Big Data Processing with Apache Spark (QCON 2014)
Unified Big Data Processing with Apache Spark (QCON 2014)Databricks
 
Enterprise application development
Enterprise application developmentEnterprise application development
Enterprise application developmentcolleges
 
Cloud Services Corporate Presentation
Cloud Services Corporate PresentationCloud Services Corporate Presentation
Cloud Services Corporate PresentationVijay Vasandi
 
Threat Detection and Response at Scale with Dominique Brezinski
Threat Detection and Response at Scale with Dominique BrezinskiThreat Detection and Response at Scale with Dominique Brezinski
Threat Detection and Response at Scale with Dominique BrezinskiDatabricks
 
Teradata Architecture
Teradata Architecture Teradata Architecture
Teradata Architecture BigClasses Com
 
Business intelligence architectures.pdf
Business intelligence architectures.pdfBusiness intelligence architectures.pdf
Business intelligence architectures.pdfAnand572211
 
Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...
Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...
Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...Majid Hajibaba
 

What's hot (18)

Cloud computing and Software as a Service Overview
Cloud computing and Software as a Service OverviewCloud computing and Software as a Service Overview
Cloud computing and Software as a Service Overview
 
Ripple Labs @DeveloperWeek: Building the Payments Web
Ripple Labs @DeveloperWeek: Building the Payments WebRipple Labs @DeveloperWeek: Building the Payments Web
Ripple Labs @DeveloperWeek: Building the Payments Web
 
Overview of Microsoft Azure AI Services
Overview of Microsoft Azure AI ServicesOverview of Microsoft Azure AI Services
Overview of Microsoft Azure AI Services
 
App dynamics and servicenow v5
App dynamics and servicenow v5App dynamics and servicenow v5
App dynamics and servicenow v5
 
Ppt for Application of big data
Ppt for Application of big dataPpt for Application of big data
Ppt for Application of big data
 
Intro to databricks delta lake
Intro to databricks delta lake Intro to databricks delta lake
Intro to databricks delta lake
 
The Analysis of Alipay
The Analysis of AlipayThe Analysis of Alipay
The Analysis of Alipay
 
Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)
Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)
Event Streaming, the hard way by (César Luis Alvargonzález, Revolut)
 
Evolution of the cloud
Evolution of the cloudEvolution of the cloud
Evolution of the cloud
 
Why is Customer Data Platform (CDP) ?
Why is Customer Data Platform (CDP) ?Why is Customer Data Platform (CDP) ?
Why is Customer Data Platform (CDP) ?
 
Unified Big Data Processing with Apache Spark (QCON 2014)
Unified Big Data Processing with Apache Spark (QCON 2014)Unified Big Data Processing with Apache Spark (QCON 2014)
Unified Big Data Processing with Apache Spark (QCON 2014)
 
Enterprise application development
Enterprise application developmentEnterprise application development
Enterprise application development
 
Cloud Services Corporate Presentation
Cloud Services Corporate PresentationCloud Services Corporate Presentation
Cloud Services Corporate Presentation
 
Threat Detection and Response at Scale with Dominique Brezinski
Threat Detection and Response at Scale with Dominique BrezinskiThreat Detection and Response at Scale with Dominique Brezinski
Threat Detection and Response at Scale with Dominique Brezinski
 
Teradata Architecture
Teradata Architecture Teradata Architecture
Teradata Architecture
 
Data Driven Storytelling.pptx
Data Driven Storytelling.pptxData Driven Storytelling.pptx
Data Driven Storytelling.pptx
 
Business intelligence architectures.pdf
Business intelligence architectures.pdfBusiness intelligence architectures.pdf
Business intelligence architectures.pdf
 
Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...
Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...
Cloud Computing Principles and Paradigms: 7 enhancing cloud computing environ...
 

Similar to Four ways to combat non actionable alerts

Netreo whitepaper 5 ways to avoid it management becoming shelfware
Netreo whitepaper 5 ways to avoid it management becoming shelfwareNetreo whitepaper 5 ways to avoid it management becoming shelfware
Netreo whitepaper 5 ways to avoid it management becoming shelfwarePeter Reynolds
 
React Faster and Better: New Approaches for Advanced Incident Response
React Faster and Better: New Approaches for Advanced Incident ResponseReact Faster and Better: New Approaches for Advanced Incident Response
React Faster and Better: New Approaches for Advanced Incident ResponseSilvioPappalardo
 
Big dataplatform operationalstrategy
Big dataplatform operationalstrategyBig dataplatform operationalstrategy
Big dataplatform operationalstrategyHimanshu Bari
 
Overcoming the difficulties of managing multiple databases
Overcoming the difficulties of managing multiple databasesOvercoming the difficulties of managing multiple databases
Overcoming the difficulties of managing multiple databasesMSM Software
 
Recruitment Management Using HeadTracker
Recruitment Management Using HeadTrackerRecruitment Management Using HeadTracker
Recruitment Management Using HeadTrackerAshish Belagali
 
Lorrach Mkt Res T3 Mis
Lorrach Mkt Res T3 MisLorrach Mkt Res T3 Mis
Lorrach Mkt Res T3 MisTonyversity
 
Tackling the ticking time bomb – Data Migration and the hidden risks
Tackling the ticking time bomb – Data Migration and the hidden risksTackling the ticking time bomb – Data Migration and the hidden risks
Tackling the ticking time bomb – Data Migration and the hidden risksHarley Capewell
 
Introducing Puppet Remediate™
Introducing Puppet Remediate™Introducing Puppet Remediate™
Introducing Puppet Remediate™Puppet
 
5 Single Shift CI Projects (1)
5 Single Shift CI Projects (1)5 Single Shift CI Projects (1)
5 Single Shift CI Projects (1)Jaime Alboim
 
Predictive Modeling Procedure
Predictive Modeling ProcedurePredictive Modeling Procedure
Predictive Modeling ProcedurePredactica Social
 
Sad 201 project sparc vision online library-assignment 2
Sad 201 project sparc vision online library-assignment 2Sad 201 project sparc vision online library-assignment 2
Sad 201 project sparc vision online library-assignment 2Justin Chinkolenji
 
KETL Quick guide to data analytics
KETL Quick guide to data analytics KETL Quick guide to data analytics
KETL Quick guide to data analytics KETL Limited
 
5 Tips to Bulletproof Your Analytics Implementation
5 Tips to Bulletproof Your Analytics Implementation5 Tips to Bulletproof Your Analytics Implementation
5 Tips to Bulletproof Your Analytics ImplementationObservePoint
 
Convercent Case Management Guide
Convercent Case Management GuideConvercent Case Management Guide
Convercent Case Management GuideBrooke Webster
 
Stuck In Neutral: Five Reasons Law Firms Fail To Scale
Stuck In Neutral: Five Reasons Law Firms Fail To ScaleStuck In Neutral: Five Reasons Law Firms Fail To Scale
Stuck In Neutral: Five Reasons Law Firms Fail To ScaleDonnamarieStriano
 
Compare-and-Recommendation
Compare-and-RecommendationCompare-and-Recommendation
Compare-and-RecommendationKent Keeler
 
Farming logs to save the weekend
Farming logs to save the weekendFarming logs to save the weekend
Farming logs to save the weekendAntonio Spinelli
 
7 Questions to Ask When Auditing Your Customer Success Processes
7 Questions to Ask When Auditing Your Customer Success Processes 7 Questions to Ask When Auditing Your Customer Success Processes
7 Questions to Ask When Auditing Your Customer Success Processes LizzyManz
 
A strategy for security data analytics - SIRACon 2016
A strategy for security data analytics - SIRACon 2016A strategy for security data analytics - SIRACon 2016
A strategy for security data analytics - SIRACon 2016Jon Hawes
 

Similar to Four ways to combat non actionable alerts (20)

Netreo whitepaper 5 ways to avoid it management becoming shelfware
Netreo whitepaper 5 ways to avoid it management becoming shelfwareNetreo whitepaper 5 ways to avoid it management becoming shelfware
Netreo whitepaper 5 ways to avoid it management becoming shelfware
 
React Faster and Better: New Approaches for Advanced Incident Response
React Faster and Better: New Approaches for Advanced Incident ResponseReact Faster and Better: New Approaches for Advanced Incident Response
React Faster and Better: New Approaches for Advanced Incident Response
 
Big dataplatform operationalstrategy
Big dataplatform operationalstrategyBig dataplatform operationalstrategy
Big dataplatform operationalstrategy
 
Overcoming the difficulties of managing multiple databases
Overcoming the difficulties of managing multiple databasesOvercoming the difficulties of managing multiple databases
Overcoming the difficulties of managing multiple databases
 
Recruitment Management Using HeadTracker
Recruitment Management Using HeadTrackerRecruitment Management Using HeadTracker
Recruitment Management Using HeadTracker
 
Lorrach Mkt Res T3 Mis
Lorrach Mkt Res T3 MisLorrach Mkt Res T3 Mis
Lorrach Mkt Res T3 Mis
 
Tackling the ticking time bomb – Data Migration and the hidden risks
Tackling the ticking time bomb – Data Migration and the hidden risksTackling the ticking time bomb – Data Migration and the hidden risks
Tackling the ticking time bomb – Data Migration and the hidden risks
 
Introducing Puppet Remediate™
Introducing Puppet Remediate™Introducing Puppet Remediate™
Introducing Puppet Remediate™
 
5 Single Shift CI Projects (1)
5 Single Shift CI Projects (1)5 Single Shift CI Projects (1)
5 Single Shift CI Projects (1)
 
Predictive Modeling Procedure
Predictive Modeling ProcedurePredictive Modeling Procedure
Predictive Modeling Procedure
 
Sad 201 project sparc vision online library-assignment 2
Sad 201 project sparc vision online library-assignment 2Sad 201 project sparc vision online library-assignment 2
Sad 201 project sparc vision online library-assignment 2
 
KETL Quick guide to data analytics
KETL Quick guide to data analytics KETL Quick guide to data analytics
KETL Quick guide to data analytics
 
5 Tips to Bulletproof Your Analytics Implementation
5 Tips to Bulletproof Your Analytics Implementation5 Tips to Bulletproof Your Analytics Implementation
5 Tips to Bulletproof Your Analytics Implementation
 
Impact of data overloading on productivity
Impact of data overloading on productivityImpact of data overloading on productivity
Impact of data overloading on productivity
 
Convercent Case Management Guide
Convercent Case Management GuideConvercent Case Management Guide
Convercent Case Management Guide
 
Stuck In Neutral: Five Reasons Law Firms Fail To Scale
Stuck In Neutral: Five Reasons Law Firms Fail To ScaleStuck In Neutral: Five Reasons Law Firms Fail To Scale
Stuck In Neutral: Five Reasons Law Firms Fail To Scale
 
Compare-and-Recommendation
Compare-and-RecommendationCompare-and-Recommendation
Compare-and-Recommendation
 
Farming logs to save the weekend
Farming logs to save the weekendFarming logs to save the weekend
Farming logs to save the weekend
 
7 Questions to Ask When Auditing Your Customer Success Processes
7 Questions to Ask When Auditing Your Customer Success Processes 7 Questions to Ask When Auditing Your Customer Success Processes
7 Questions to Ask When Auditing Your Customer Success Processes
 
A strategy for security data analytics - SIRACon 2016
A strategy for security data analytics - SIRACon 2016A strategy for security data analytics - SIRACon 2016
A strategy for security data analytics - SIRACon 2016
 

Recently uploaded

Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGMarianaLemus7
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr LapshynFwdays
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Wonjun Hwang
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clashcharlottematthew16
 

Recently uploaded (20)

Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort ServiceHot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding Club
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food Manufacturing
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easy
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clash
 

Four ways to combat non actionable alerts

  • 1. Four Ways to Combat Non-Actionable Alerts Eyal Efroni Application Team Leader @ BigPanda http://bigpanda.io
  • 2. Many alerts place an unnecessary burden on Ops teams instead of helping them solve issues
  • 3. The main problem is that most alerts are not actionable enough
  • 4. They point to issues that don’t require a response They lack critical information, forcing you to spend time searching for more insights in order to gauge their urgency
  • 5. An excess of non-actionable alerts creates “alert fatigue”, wasting time and resources and interfering with the real issues at hand
  • 6. This might already be happening to you:
  • 7. Do you receive redundant alerts and: Immediately ignore them? Realize they aren’t relevant to you? Perform the same routine actions for obtaining the actual information you need?
  • 8. If you’ve answered yes, Than this presentation is for you
  • 9. Four Common types of Non-Actionable Alerts
  • 10. 1. Unhelpful titles The problem: One of the most important parts of the alert is its title, as it is the first thing you see. Cryptic titles force the responders to dig unnecessarily through the body of the alert for more info. Extra frustration occurs when different alerts share similar titles, causing great confusion and wasting time.
  • 11. 1. Unhelpful titles Example: You receive an alert titled “CPU LOAD 1.80″ followed by another alert titled “CPU LOAD 1.90”. Are these alerts even referring to the same server? Is a 1.80 load critical? What is affected by this problem? Wouldn’t it been great if the alert provided answers rather than adding more questions?
  • 12. 1. Unhelpful titles Making it actionable: All alerts should have short yet descriptive titles. They should enable the responder, at a glance, to know what the problem is, where it is, and how to address it. For example: “Server billing-1 load is critical for 5 min” is much more actionable than “CPU LOAD 1.80”.
  • 13. 2. Lack of vital information The Problem: Alert content is often limited or cryptic, forcing us to spend a lot of cycles understanding the meaning of the alert and searching for more information in order to gain insight. Somewhere within my Nagios, Graphite, Pingdom, or New Relic, there is relevant information to be found, but instead of solving the issue a significant portion of my valuable time is spent on such searches.
  • 14. 2. Lack of vital information Example: When addressing an alert about a server overload, almost always the same set of tasks are performed. These include connecting to the server to check for current load or analyzing trends in the CPU graph. Moreover, the next time a similar alert happens, you’ll be performing these same steps over and over.
  • 15. 2. Lack of vital information Making it actionable: Identify alerts that require repetitive and predictable searches for more information Automatically bundle that information as part of the alert. list actions that need to be performed or a link to relevant resources such as scripts, protocols or the developer’s insight into why this might happen
  • 16. 3. Alerts that don’t require resolution The Problem: Production environments are complex and dynamic. To maintain reliability, vital system information must be accessible to Ops and Developers. Our instinct tells us that this can only be accomplished by being notified of every alert and exception. In reality, however, the large majority of these alerts don’t require an action and end up drowning out the ones who do.
  • 17. 3. Alerts that don’t require resolution Example: An alert could’ve been sent to indicate that a user entered an invalid credit card number. While this information may be very interesting, we do not have any control over the user’s actions and can therefore do nothing about it. Getting this alert will only add additional noise.
  • 18. 3. Alerts that don’t require resolution Making it actionable: If the alert doesn’t lead to an immediate action on your part, don’t send it. Instead, find the issues which will require your attention. For example, replace the invalid credit card alert with an actionable alert which specifies that the rate of checkouts has dropped dramatically — maybe a change was made and a rollback action is required. Another solution can be a daily / weekly report which aggregates and visualizes the information that isn’t required in real-time. This way, the desired information will be available at the right time.
  • 19. 4. Alert routing The Problem: In many organizations, everyone receives all the alerts. This type of practice is usually initiated when teams are small and everyone is involved in everything. However, as teams scale and people begin to specialize, the “loudspeaker” approach to alerting quickly becomes a drag.
  • 20. 4. Alert routing Example: Sending alerts regarding connection issues with your 3rd party billing provider to your DBA team won’t help resolve the alert and will probably be ignored.
  • 21. 4. Alert routing Making it actionable: Send alerts only to people who are relevant to that alert. Obviously, this is easier said than done, as many alerts can be caused by several different sources. In such cases, creating more specific alerts for each source will provide the necessary granularity to make better routing decisions.
  • 22. Conclusion Making alerts more actionable can significantly ease your pain and improve the day to day work. Simple changes, can have a dramatic impact.
  • 23. Conclusion Actionable alerts can become irrelevant very quickly. Have a culture of ongoing improvement to your alerts Make a habit of periodically reviewing them and removing the non-actionable ones.