New in Alert Manager Enterprise: Native Ticketing Integration & More
We’re excited to announce a series of new capabilities in Alert Manager Enterprise (AME), designed to make alert handling, collaboration, and automation even more powerful — starting with native ticketing integration.
Native Ticketing Integration
With this new feature, AME can now:
- Automatically create, update, and close tickets in external systems based on alert states.
- Use custom mappings and templates to adapt to your ticketing platform.
- Maintain bi-directional status sync between alerts and tickets.
- Seamlessly integrate into the AME workflow engine for conditional logic and automation.
The initial release supports ServiceNow (SNOW). Jira integration is scheduled for release later this year.
Why This Matters
- No per-user licensing: Unlike many commercial tools, AME does not impose a per-user subscription model — making it cost-efficient to scale integrations like ticketing across teams and use cases.
- This allows you to triage directly within Splunk, using all available alert context and metadata before a ticket is even created — reducing noise and improving accuracy.
- Designed for automation-first workflows, enabling streamlined incident handling across your toolchain.
New: Free Tenant for Security Pack Customers
As part of this release, we’re offering one free AME Tenant to all customers with an active Security Pack subscription. This enables full multi-tenancy support out of the box and lowers the barrier to scaling AME usage across environments or teams.
Other Enhancements
- Event filters now allows filtering for the user that is currently assigned
- New Event Action to update events
- New Event Action to add comments
