Creating Actionable Alerts Series #1: Gathering Investigative Information

Creating Actionable Alerts is a continuous process that can enhance your workflows so that not only are the correct people notified at the right time, but they can take immediate action to reduce potential business-impact. This post is the first in a three-part series about alert enrichment. Without actionable alerts, your responders may be alerted to an issue, but cannot necessarily take immediate action, which has the potential to increase downtime and slow down the remediation process. Actionable alerts set your responders up for success from the start of an Incident, and empowers them to immediately start repairing damaged services. There are many ways to create Actionable Alerts, so as an introduction to our newest White Paper, Creating Actionable Alerts to Maximize Resolution Speed, we want to share our first method.

Save time and get the right information into the right hands, at the right time, by automating the process needed to gather everything a responder might need to face an issue.

Investigative actions automate the retrieval of any relevant information. Time consuming jobs such as manually logging into a service and running a query can be automated using action buttons attached to the alert.

This is important because it provides greater context and insight into the problem. An alert sometimes means very little on it’s own, but when supported with actual data a responder can evaluate, can paint a very clear picture of the actual problem.

Use-case from a joint webinar by OpsGenie and Logentries

Retrieving application logs, attaching graphs, or just pinging a server saves significant amount of time during the investigation of the issue. Moreover, automating the retrieval of these data using predefined queries and actions reduces the chances of human error.

When minutes translate into potentially thousands of dollars lost due to downtime, these time-saving enrichment practices are crucial. In addition to taking remedial actions and gathering investigative information, check out our next blog in this series to learn about Taking Remedial Actions. When combined together as best practices for alert enrichment, your company can maximize resolution speed.

If you’re ready to get started, click here to start your free 14 day trial.

Originally published at