Cyrus Dasadia introduces CitoEngine, an open source alert management and automation tool that helps teams manage the growing number of alerts generated by monitoring systems. CitoEngine allows users to easily define events, create actions for those events, and integrate with third party applications. It creates unique incidents for each alert, provides detailed dashboards to view current and acknowledged incidents, and generates reports. CitoEngine is designed to help network operations centers, DevOps, and operations teams manage alerts more efficiently.

1. Alert Management & Automation Tool
by Cyrus Dasadia

2. Who is Cyrus?
● Sysadmin / Part time programmer for over 14+ yrs.
● Monty Python fan.
● Sr. Tech Lead at InMobi.
Twitter: @ExtremeUnix
Email: cyrus@extremeunix.com

3. Why the long face ?
● You installed the best monitoring application.
● You have awesome monitoring scripts.
● You purchased a monitoring service.
● You have the best NOC/Incident management team.
but..

4. Even the best teams
succumb to it.
cthuluhu image: http://ordinary-gentlemen.com/blog/2013/10/10/god-digs-ambiguity

5. So, what leads to this problem?
● As servers and teams grow, there are even more alerts to
manage.
● Alerts are not constantly tuned for changing thresholds.
● Monitoring tools generate false positive events.
● Teams don't follow discipline to ack alerts during
releases/outages.

6. What can help manage this chaos?
all logos are trademarks of their respective companies

7. What can really help ?
A tool that:
● Lets me easily define events.
● Lets me create actions on such events.
● Easily integrates with 3rd party applications.

8. CitoEngine (psi-tow enn-gin)

9. CitoEngine
● Define events.
● Send alerts against these
events.
● System creates unique
incidents for each alert

10. How CitoEngine Works:
Simply define an event

11. How CitoEngine Works:
Create an action against that event

12. How CitoEngine Works: Plugin Server
Define your plugins

13. How CitoEngine Works: Plugin Server
Restrict plugins to user bound API Keys

14. Add the plugin
server to the engine:

15. Voila!

16. How do I send events?
JSON:
That’s it, nothing else!

17. CitoEngine: Dashboards
Detailed dashboard of all incidents.

18. CitoEngine: Dashboards
Current Active/Acknowledged incidents

20. Reports!

21. Who would need it?
Anyone who wants to manage alerts efficiently without all the noise.
Ideal for NOC, DevOps and Ops teams

22. CitoEngine Stack
Server: Django + Twisted
Message queue: SQS, RabbitMQ
UI: JQuery + Bootstrap
Database: MySQL (MariaDB/PgSQL*)
License: Apache 2.0
Completely Open Source!
* Currently being tested

23. Thank You!
CitoEngine wants you!
http://citoengine.org
[Need contributors for testing, documentation, bug reports, etc.]