Splunk Enterprise Platform is useful as a tool for its SIEM and SOAR functionalities.
External reviews
445 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Splunk
What do you like best about the product?
Splunk is used to gather all theserver information in a single site, which simplifies our work and easy to access.
What do you dislike about the product?
As of now nothing downside about Splunk Enterprise everything is good.
What problems is the product solving and how is that benefiting you?
Splunk help to look into list of server and vulnerability score which really helps to prioritize the vulnerability and resolve it.
A scalable tool that offers SIEM and SOAR functionalities to users
What is our primary use case?
What is most valuable?
The most valuable features of the solution stem from the fact that it provides local support to users in Indonesia. The features that Splunk Enterprise Platform provides to users are the same as the ones provided by ArcSight, so I cannot compare both products.
What needs improvement?
The solution has certain shortcomings when it comes to APIs, making it in an area where improvements are required.
Integration is an area that can be considered as one of the challenges we face with the solution in our company. From an improvement perspective, the solution should make the integration of the product with other tools in the market possible.
For how long have I used the solution?
I have been using Splunk Enterprise Platform for almost three years.
What do I think about the stability of the solution?
It is a stable solution. The product stays stable from the development stage to the production environment. Stability-wise, I rate the solution an eight out of ten.
What do I think about the scalability of the solution?
It is a scalable solution.
Around 1,400 employees in our company use the solution.
My company does plan to increase the use of the solution.
Which solution did I use previously and why did I switch?
I have experience with ArcSight.
How was the initial setup?
The product's initial setup phase was very complex.
During the product's first time deployment, the product is dispatched to the user for assessment, after which a user can deploy it and take care of the areas from implementation to production.
The solution is deployed on a hybrid cloud.
The solution can be deployed in three to five months.
Around seven people are required to manage the deployment and maintenance of the product.
What about the implementation team?
The deployment can be carried out with the help of our company's in-house team.
What's my experience with pricing, setup cost, and licensing?
There are yearly payments to be made towards the licensing costs attached to the solution.
What other advice do I have?
I can recommend the product after considering the needs and budget of the customers, as well as the company's size.
I rate the overall tool an eight out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
Easily Deployable SIEM Solution
What do you like best about the product?
Splunk Enterprise is one of the leading SIEM Solution in the industry and the main attraction of splunk is ease of use and implementation, we can easily connect as many devices we need to splunk by its agent that is splunk universal forwarder and after a small configuration it will share logs automatically in realtime.it is also very easy to analyse logs using splunk enterprise with its special queries known as splunk processing language.
What do you dislike about the product?
Splunk Enterprise is not affordable for individuals and it's free trial have a limitation of 500mb.
What problems is the product solving and how is that benefiting you?
As a security researcher and instructor it's my responsibility to develop skills in log analysis and blue teaming so splunk is the solution that I'm using to analyse my device logs and teach my students about log analysis.
Hi guys Don't go for Splunk Enterprise without Seeing this review
What do you like best about the product?
I like Collection indexing of splunk. When you investigate any alerts the response of the search is very quick and give consolidated indexed information
What do you dislike about the product?
Splunk language take time to learn and how to use SPL and how to create effective searches and dashboards also bit difficult
What problems is the product solving and how is that benefiting you?
Realtime threat detections , alert investigation and incident response. We use this to create user behaviour analytics dashboards
An easy-to-use and easy-to-configure solution that can be used to monitor network traffic
What is our primary use case?
We monitor our airtight network traffic using the Splunk Enterprise Platform. We also use the solution for port monitoring, to monitor which ports are closed, which are open, and flapping if in any port. We use it to check our server performance to see if it gets choked because of high CPU or RAM utilization.
What is most valuable?
Splunk Enterprise Platform is an easy-to-use and easy-to-configure solution.
What needs improvement?
There should be continuous customer engagement and training programs on the new features and capabilities introduced by the solution.
For how long have I used the solution?
I have been using Splunk Enterprise Platform for four years.
What do I think about the stability of the solution?
I rate Splunk Enterprise Platform a nine out of ten for stability.
What do I think about the scalability of the solution?
Splunk Enterprise Platform is a scalable solution. Two people are using the solution in our organization to monitor data.
I rate Splunk Enterprise Platform ten out of ten for scalability.
How was the initial setup?
The solution’s initial setup is easy.
What about the implementation team?
One or two hours is enough to deploy the solution, but its configuration will take time, based on the users. Just one person is enough to deploy the solution.
What was our ROI?
We have seen a return on investment with Splunk Enterprise Platform for security and performance use cases.
What's my experience with pricing, setup cost, and licensing?
The solution’s pricing is moderate. We have to pay a yearly licensing fee for the solution, and there is an additional cost for support.
What other advice do I have?
Splunk Enterprise Platform is a good and easy-to-use solution. It has to be regularly upgraded to the changing network or customer needs.
Overall, I rate Splunk Enterprise Platform an eight out of ten.
Which deployment model are you using for this solution?
On-premises
Splunk, incredible big data platform
What do you like best about the product?
The searching abilities are increadbile, the log indexing and speed is pretty much unmatchable to other solutions
What do you dislike about the product?
Searching quiries can get complicted, does require extensive setup and maintance.
What problems is the product solving and how is that benefiting you?
SIEM thats able to solve alot of issues, including all security monitoring, notification and rules on specific keywords, or string of words, the alerts to help with all the activities on the network.
Best log analysis and monitoring tool
What do you like best about the product?
Splunk gives the flexibility to customize the logs to be indexed and also allows a lot of features to extract the log information. Splunk also provies the possibility to create dynamic dashboards with time series and tables with various templates.
Splunk also has the ability to create alerts and reports based on the logs analysis.
Splunk also has the ability to create alerts and reports based on the logs analysis.
What do you dislike about the product?
Splunk some times is very complicated to configure. If not configured rightly may impact the performance of the applications
What problems is the product solving and how is that benefiting you?
Splunk helps to monitor realtomy ecomm sales and application issues by analyzing logs
A customizable solution that can be used as a Security Incident and Event Management (SIEM) tool
What is our primary use case?
We use Splunk Enterprise Platform as a Security Incident and Event Management (SIEM) tool.
What is most valuable?
The most valuable feature of Splunk Enterprise Platform is that it's a customizable solution.
What needs improvement?
Splunk Enterprise Platform needs a bit of tuning, and it would be beneficial if it came with some prebuilt use cases.
Splunk Enterprise Platform should include more integrations with other security tools.
For how long have I used the solution?
I have been using Splunk Enterprise Platform for six years.
What do I think about the stability of the solution?
I rate Splunk Enterprise Platform a nine out of ten for stability.
What do I think about the scalability of the solution?
I rate Splunk Enterprise Platform an eight to nine out of ten for scalability.
How are customer service and support?
The technical support team's initial response is too late.
I rate the solution's technical support a five or six out of ten.
How would you rate customer service and support?
Neutral
How was the initial setup?
The solution's initial setup is average and a little bit tricky. On a scale from one to ten, where one is difficult, and ten is easy, I rate Splunk Enterprise Platform a three out of ten for the ease of its initial setup.
What about the implementation team?
Splunk Enterprise Platform was deployed in a month in our organization.
What's my experience with pricing, setup cost, and licensing?
Splunk Enterprise Platform is an expensive solution.
On a scale from one to ten, where one is cheap, and ten is expensive, I rate the solution's pricing a nine out of ten.
What other advice do I have?
I am working with the latest version of Splunk Enterprise Platform. Splunk Enterprise Platform is deployed on-cloud in our organization.
I recommend that users not expect value from Splunk Enterprise Platform immediately. It might take time to set it up and get any value out of it.
Overall, I rate Splunk Enterprise Platform a nine out of ten.
Best Log Monitoring Tool
What do you like best about the product?
Indexing , correlations and user interfrace are the key feature of splunk and help us to get the logs. Its user friendly and offer free foundation training. easy to integrate with serviceNow to generate alerts for analysis
What do you dislike about the product?
getting data from glacier and processing time of the query
What problems is the product solving and how is that benefiting you?
building use case of security alert and helping us to with system logs and activities. I like feature of log analysis and simple search query
A solution that offers a good analytics part along with great integration capabilities with other applications
What is our primary use case?
My company uses Splunk Enterprise Platform for monitoring and user base filtering.
What is most valuable?
The most valuable feature of the solution is the analytics part. Integration with other applications is another valuable feature of Splunk Enterprise Platform.
What needs improvement?
Splunk Enterprise Platform is already a refined product, so I don't have any recommendations related to areas that need improvement.
The cost of Splunk Enterprise Platform is an area of concern where improvements can be made by bringing down the costs. Product-related, I don't have any feedback.
The support offered by Splunk Enterprise Platform has certain shortcomings that need improvement.
For how long have I used the solution?
I have been using Splunk Enterprise Platform for a few weeks since it was recently deployed in my company. I use the solution's latest version. My company operates as a service provider of the solution.
What do I think about the stability of the solution?
The product's stability is good. Stability-wise, I rate the solution a nine out of ten.
What do I think about the scalability of the solution?
Scalability-wise, I rate the solution a nine out of ten.
Around 5,000 people use the solution. Around 10 to 15 analysts use Splunk Enterprise Platform in my company.
The solution is used on a regular and daily basis in my company.
How are customer service and support?
I am moderately satisfied with the solution's technical support. I rate the technical support an eight out of ten.
How would you rate customer service and support?
Positive
How was the initial setup?
Splunk Enterprise Platform was easy to implement. I rate the product's implementation phase an eight out of ten, where one is difficult, and ten is easy.
The solution is deployed on an on-premises model.
The solution's deployment phase was carried out over a period of one or two months.
What's my experience with pricing, setup cost, and licensing?
I rate the product's pricing a ten on a scale of one to ten, where one is cheap, and ten is expensive. It is a very pricey tool.
What other advice do I have?
I would recommend the product to those who plan to use it, provided the pricing of the solution is brought down.
I rate the overall product an eight out of ten.
Which deployment model are you using for this solution?
On-premises
showing 51 - 60