Gartner defines the Application Performance Monitoring and Observability Market as software that enables the observation and analysis of application health & user experience. The targeted roles are IT operations, site reliability engineers, cloud and platform ops, application developers and product owners. These solutions may be offered for self hosted deployment, as a vendor managed hosted environment, or via SaaS.
ITIM tools capture the health and resource utilization of IT infrastructure components no matter where they reside (for example, in a data center, at the edge, infrastructure as a service [IaaS] or platform as a service [PaaS] in the cloud). This enables I&O leaders to monitor and collate the availability and resource utilization metrics of physical and virtual entities, including servers, containers, network devices, database instances, hypervisors and storage. Notably, these tools collect data in real time and perform historical data analysis or trending of the elements they monitor.
Gartner defines the security and information event management (SIEM) market by the customer’s need to analyze event data in real time for early detection of targeted attacks and data breaches, and to collect, store, investigate and report on log data for incident response, forensics and regulatory compliance. SIEM technology aggregates event data produced by security devices, network infrastructure, systems and applications. The primary data source is log data, but SIEM technology can also process other forms of data, such as network telemetry. Event data is combined with contextual information about users, assets, threats and vulnerabilities. The data may be normalized, so that events, data and contextual information from disparate sources can be analyzed for specific purposes, such as network security event monitoring, user activity monitoring and compliance reporting. The technology provides real-time analysis of events for security monitoring, query and long-range analytics for historical analysis.