On-Call
“Intelligent incident response and on-call management for DevOps and SRE teams.”
What is Splunk On-Call?
Splunk On-Call (ex-VictorOps) is a DevOps-oriented incident management platform that centralizes alerting, escalation, and collaboration for IT and engineering teams.
It ensures the right people are notified at the right time with context, while enabling faster remediation and reduced downtime.
Key Features
- On-Call Scheduling & Escalation
▫️Create flexible on-call rotations, team schedules, and escalation policies.
▫️Route alerts automatically based on time zones, roles, and availability. - Contextual Alerts & Collaboration
▫️Enrich alerts with runbooks, logs, and metrics.
▫️Integrated chat (Slack, MS Teams) and voice/SMS notifications. - Incident Lifecycle Management
▫️Track incidents from detection to resolution.
▫️Provide timelines for postmortems and compliance. - Noise Reduction & Routing
▫️Suppress redundant alerts and group related incidents.
▫️Deliver actionable notifications only to relevant teams. - DevOps Toolchain Integrations
▫️Native with Splunk Observability Cloud, ITSI, and Splunk Platform.
▫️Supports PagerDuty, Jira, ServiceNow, GitHub, Prometheus, Grafana, and more. - Mobile-first Experience
▫️Manage alerts and collaborate on incidents from iOS/Android apps.
▫️Acknowledge, reassign, and resolve on the go.
Benefits for the Client
- Faster response – reduce MTTA/MTTR with intelligent routing and real-time collaboration.
- Better reliability – prevent downtime with 24/7 automated escalation.
- Team productivity – reduce alert fatigue, align DevOps and SRE workflows.
- Improved transparency – incident timelines for learning and accountability.
- Seamless integration – connect directly with observability and ITSM tools.
Why Splunk On-Call is Different ?
- DevOps-native – designed for SRE and engineering culture.
- Context-rich alerts – every notification carries runbooks and observability data.
- Collaboration-first – integrates natively with chat and ticketing systems.
- Part of Splunk ecosystem – works with ITSI and Observability Cloud for end-to-end incident response.
- Mobile-centric – optimized for on-the-go acknowledgment and resolution.
Complementarity with Splunk Observability Cloud & ITSI
- Observability Cloud detects performance anomalies with full-fidelity telemetry.
- ITSI correlates alerts into service-centric episodes.
- On-Call ensures rapid notification, escalation, and resolution with the right teams.
→ Together, they deliver closed-loop incident management, from detection to business impact resolution.
Typical Use Cases
- Manage on-call rotations and escalations for global DevOps teams.
- Reduce MTTR by integrating alerts with Splunk Observability dashboards.
- Automate routing of incidents from ITSI or SIEM into the right SRE team.
- Empower mobile engineers to resolve incidents anytime, anywhere.
- Conduct structured postmortems with full incident history.
Services & Support (What We Offer)
- On-Call Assessment – review incident workflows and escalation chains.
- Deployment Services – configure rotations, policies, and integrations.
- Collaboration Workshops – integrate On-Call with Slack, Teams, and ITSM tools.
- Optimization Services – fine-tune alert suppression, runbooks, and postmortem practices.
- Managed Incident Response – deliver On-Call as-a-service with 24/7 coverage.
