Overview
Product Information on Splunk Enterprise Security
What is Splunk Enterprise Security?
Splunk Enterprise Security Pricing
Overall experience with Splunk Enterprise Security
“Integrated AI and Data Handling Stand Out While Splunk Costs Remain a Barrier”
“Easy Integration with Splunk Marred by User Unfriendliness”
About Company
Company Description
Splunk operates in the realm of digital security and observability to facilitate safer and more resilient digital infrastructures. The company delivers a unified platform equipped with capabilities to maintain the secure operations of an organization, insulating it against potential digital disruptions.
Company Details
Do You Manage Peer Insights at Cisco Systems (Splunk)?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
User Sentiment About Splunk Enterprise Security
Reviewer Insights for: Splunk Enterprise Security
Performance of Splunk Enterprise Security Across Market Features
Splunk Enterprise Security Likes & Dislikes
Highly scalable architecture built to handle very large volumes of structured/un-structured data without major performance issues. Powerful and intuitive SPL uses schema on read approach and can extract and analyze the relevant fields from various types of data including logs/flows from log sources such as Servers/End-points, Network devices, Applications and DBs etc to gain near realtime insights. Intuitiveness contributes to complex troubleshooting and investigations with minimal effort. Generating queries through natural language for detection of anomalies using Integrated ML and Agentic AI (including Splunk AI) reduces the overhead significantly. Key strengths include reduction in alert fatigue, proactive threat hunting, improved MTTD/MTTR, streamlined incident management, compliance reporting, centralised dashboards for various interested parties.
easy integration with the exiting Splunk
Two areas that ring out for me are how customizable Splunk can be and the community. The platform allows us to tailor security operations to our specific needs, from custom correlation searches to specialized applications that address unique use cases. This adaptability ensures that the platform evolves with our requirements rather than constraining us to a rigid solution. Equally valuable is Splunk's user community. This broad base creates a rich environment for knowledge sharing, providing valuable insights and solutions for complex challenges.
Very expensive, resource intensive platform and complex volume based licensing. Continuously growing costs and efforts. Training SPL is time consuming impacting the budget, ROI and early adoption.
Complex ROI is very difficult, competitors have better products
Over the time of the Cisco merger, services and technical growth has waned. This year however we are starting to see some traction. The product is still pricey and can be very cloud centric. vCPU pricing is not clear. Also data ingest can be quite rigid however with Edge Processing this may ease that rigidness. Many opportunities, just hope that Cisco can execute effectively in a timely manner.
Top Splunk Enterprise Security Alternatives
Peer Discussions
Splunk Enterprise Security Reviews and Ratings
- Chief Information Security OfficerGov't/PS/EdGovernmentReview Source
Integrated AI and Data Handling Stand Out While Splunk Costs Remain a Barrier
My overall experience with Splunk Enterprise has been very good. Splunk is utilized by the Security team for detection/prevention of cyber threats/attacks. Excellent compatibility/interoperability and ability to ingest any data/integrate with various log sources/types. Performing security analytics is very effective in providing contextual actionable insights for decision making. - CyOps Detect Consultant1B-10B USDBankingReview Source
Customization and Community Strengthen Splunk Amid Concerns Over Pricing and Cloud Focus
With over 12 years of SIEM experience and 8 years as a Splunk customer, we have found Splunk Enterprise Security to be the most effective solution for our security operations. The platform combines comprehensive pre-built content with extensive customization capabilities, allow us to adapt the solution to meet our evolving organizational requirements. - SECURITY ENGINEER10B+ USDBankingReview Source
Full Potential Of Splunk Security Demands Deep Understanding Of Log Management
This is top solution dedicatd for SIEM. Splnk were always one of the best solution which one we always prefer then others but Security module gave as much more information then we could imagine. Our Security Analitics have improved their work few times by using all capability provided by Splunk Enterprise Security Solution. It is advanced tool which one in a professional way improve our security awareness. - JUNIOR IT SECURITY ENGINEER50M-1B USDBankingReview Source
Splunk ES Enables Efficient Security Threat Investigation Despite Complex Setup Process
Splunk ES is a powerful SEIM that allows us to find and investigate security threats efficiently. Vast amounts of data is handled in Splunk ES and with this data our SOC team creates clear dashboards and alerts to aid security response. Splunk can be difficult to learn at first, but the investment in time is worth it. - IT SECURITY SECURITY ENGINEER50M-1B USDBankingReview Source
Correlation Search and Dashboard Features Enhance Monitoring and Department Visibility
The features and capabilities of Splunk Enterprise Security are the best I have used.