Alert Manager Enterprise comes with a broad set of features out of the box. Feature Packs are available to provide even more functionality.
Extend the Functionality of Alert Manager Enterprise with Feature Packs for Security and Service Providers.
Keep an overview of all triggered Alerts with our Event Summary. Easily assign events to users and manage event statuses.
Use any Splunk Workflow Action for your investigations, from GET and POST Requests to Drilldown Searches.
Do you need other statuses for events? Add your custom statuses easily.
Enrich Alerts with Asset and Identity Context
Prioritize Threats with Smart Scoring
Need more functionality? You can enable our feature packs for Security and Service providers in a snap.
Are you a service provider and want to manage multiple customers simultaneously? Do you need Role Based Access Control? Our native Multi-Tenancy feature has got you covered.
Our feature pack contains essential security enrichment data and Risk Scoring to get you started.
Add our Alert Manager Enterprise Alert Action to your existing Splunk Alert.
Select an Alert Template to define what should happen with the Alert.
Wait for an Alert to be triggered and AME will convert the alert into an meaningful event.
Open the Event Summary View and start managing the event.