Monitoring events and reducing event noise

BMC Helix Operations Management provides you with a wealth of data about the health of your system. As an administrator who is responsible for ensuring the availability of the system, you need to be able to quickly review the data and identify issues. Use BMC Helix Operations Management to reduce event noise by processing events in various ways.

As an operator, use BMC Helix Operations Management for a centralized event view to monitor and manage events.

BMC Helix Operations Management offers a comprehensive solution for monitoring an infrastructure system. The solution collects metrics about the components in your system and generates events about the collected data. Data collection happens through monitor policies. Event generation happens through event policies.

With the monitor and event policies in place, there can be a deluge of events that are not critical and can be ignored. You can configure event policies to suppress or restrict unimportant events so that you can easily get to the events that need attention.

Scenario


Jane, an operator at Apex Global, is responsible for ensuring data security in their environment and needs to be able to quickly respond to any threats. She uses the Events page in BMC Helix Operations Management to identify events that pertain to data security. She wants to see only those events with the Critical severity to take immediate action. However, it gets difficult for Jane to identify actionable events from an event storm. She asks help from her administrator, Sarah, to reduce event noise.

Sarah configures an event suppression policy to withhold unnecessary events. She also correlates related events and enriches events with additional context to help Jane resolve events faster. Sarah goes a step further and configures automatic notifications for events that Jane is interested in.

Sarah also uses correlation policies to view major event patterns in the form of situations in BMC Helix AIOps .

The following image describes how event noise reduction takes place:

Refer to the following table to understand the tasks that help you identify actionable events and reduce event noise:

ActionReference

As an administrator, view event data that is ingested from multiple sources in a single place.

As an operator, use a centralized event view to monitor and manage events, perform event operations, and filter events.

Monitoring and managing events

As an administrator, perform advanced event processing for identifying actionable events:

  • Suppress unwanted events
  • Enrich events with additional context
  • Configure automatic notifications 

Defining event policies for enrichment, correlation, notification, and suppression

Creating and enabling event policies

Event deduplication and suppression for filtering unwanted events

As an administrator, view and analyze out-of-the-box event clusters that are generated based on ML algorithms and improve the mean time to respond (MTTR) to eventsAnalyzing event clusters for quick insights

(Optional) Use correlation policies in  BMC Helix Operations Management  and view major event patterns in the form of situations in  BMC Helix AIOps .

Was this page helpful? Yes No Submitting... Thank you

Comments