We performed a comparison between SECDO Platform and Splunk SOAR based on real PeerSpot user reviews.
Find out what your peers are saying about VMware, ServiceNow, IBM and others in Security Incident Response."Technical support is great. Palo Alto is extremely helpful and responsive."
"The ease of deployment is a valuable feature."
"It basically automates the entire alert investigation process."
"It has definitely saved a decent amount of time for our analysts so they can focus on other tasks."
"My understanding is the initial setup isn't too hard."
"The product’s integration with other Splunk products is valuable."
"Our customers find it easy to conduct searches and consider it an excellent content management system."
"Splunk SOAR's extensive library of pre-built integrations allows it to connect with a vast array of popular security and IT applications, streamlining workflows across our existing security stack."
"The most valuable feature is the risk-based access control."
"When you design a playbook, you can integrate multiple log sources and define rules... After that, the platform automatically compiles all these activities and, based on the results, the analyst only has to indicate whether the result is a true or false positive. That reduces the time and effort involved."
"The playbooks are valuable. They are the core component. Being able to implement and build a code process to work through and scale out what we want to do is valuable."
"Many will try to use this as an out-of-the-box solution, however, it needs to be configured to fit what a company would like to do with it."
"Maybe the notifications setting could use a simpler setting."
"The price should be reduced in order to be more competitive in the market."
"The pricing could be a bit more reasonable. It would be great if it were feasible for smaller organizations."
"The Splunk SOAR platform was not designed specifically for case management which is why this area needs improvement."
"The scalability could be better."
"Splunk's support for integration is subpar and has room for improvement."
"There is a lot of room for improvement with the UI."
"We've had trouble implementing the solution with Microsoft products. There seems to be an integration gap."
"Creating playbooks using the solution’s playbook editor, for me, is very cumbersome. There have been instances where I have said to myself that I just don't want to use this editor. I might just use a code block and write my own code within it... The functionality in the playbook editor is 80 percent there, but that 20 percent is still lacking. They could make it more efficient."
"SOAR is probably the most unreliable product Splunk has and that's because most of it is content driven from what you put into it. There are certain parts of it that have a little bit of difficulty at volume too. It's always changing. There is new stuff coming out for it that's going to make it a little bit better, but it does have some drawbacks."
Earn 20 points
SECDO Platform is ranked 10th in Security Incident Response while Splunk SOAR is ranked 3rd in Security Orchestration Automation and Response (SOAR) with 33 reviews. SECDO Platform is rated 9.0, while Splunk SOAR is rated 8.0. The top reviewer of SECDO Platform writes "Great documentation, good technical support, and very in-depth". On the other hand, the top reviewer of Splunk SOAR writes "Takes most of the work away, but the time they take to implement new features is a little bit of concern". SECDO Platform is most compared with Fortinet FortiSOAR, whereas Splunk SOAR is most compared with Palo Alto Networks Cortex XSOAR, Cortex XSIAM, ServiceNow Security Operations, Torq and Swimlane.
We monitor all Security Incident Response reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.