We performed a comparison between Alert Logic and Splunk User Behavior Analytics based on real PeerSpot user reviews.
Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It has the ability to install agents. It is pretty straightforward. You can automate the process pretty easily."
"The solution was consistently available, and I cannot recall any instances where it was down."
"We receive infrastructure security warnings from it. So, we know what is going on and what needs to be addressed."
"The initial setup is pretty straightforward."
"The quicker implementation of changes to our infrastructure from Alert Logic tell us if there are any problems."
"Notifications and the detail of notifications are most valuable. It is a user-friendly solution."
"It improves our security. Before, we didn't have anything scanning our containers. We had software scanning all the physical servers, but we had nothing to scan our containers. With Alert Logic, we can do that."
"Everything is in one dashboard; I'm notified when there's an incident and advised on what steps to take."
"We are really pleased with Splunk and its features. It would be practically impossible to function without it. To provide a general overview of the system, it's important to note that the standard log files are currently around 250 gigabytes per day. It would be impossible to manually walk through these logs by hand, which is why automation is essential."
"The most valuable features are the indexing and powerful search features."
"It's straightforward in terms of configuration and troubleshooting and log management and monitoring as well. These are the edge points in addition to it being a modular solution where you can capitalize on your current licenses with extra licensing models, which can match the customer's business requirement and it can help the customer to design or to actually plan for their own roadmap."
"It's easily scalable."
"The solution appears to be stable, although we haven't used it heavily."
"The solution's most valuable feature is Splunk queries, which allow us to query the logs and analyze the attack vectors."
"The most valuable feature is being able to take data and put it into other systems so that we could see the output, and to see where we need to apply our focus."
"The solution is extremely scalable. Our customers are regularly scaling up after installing Splunk."
"This product needs to mature more. While it is a good product, there are some areas where it needs work."
"As a user involved with the user interface, I believe there is a need to continue improving it based on feedback from our customers."
"Its menu is not very intuitive. I would like to see the user menu expanded a bit. The user menu is very layered, and because of the layers, you have to go down a path that is not very intuitive."
"We'd like to have triggered alerts sent to us so we see errors quicker."
"Alert Logic needs to expand its SOCs to serve more markets, such as the Middle East and Asia. There should be infrastructure that covers more time zones. The company should also develop an EDR that is natively integrated into their solution. Currently, a client must buy another EDR solution like CrowdStrike or Sophos. I think Alert Logic is developing this. Built-in email security could also be developed and integrated."
"Could be more of an endpoint protector."
"I would like to see it do initial scans and start capturing data, which it will truly analyze, not just be a reporting system saying, "Here is an email. Here is an email. Here is an email.""
"The documentation, especially with the initial setup, needs improvement."
"In the future I would like to see simplified statistics and analytical threats."
"Currently, a lot of network operations need improvement. We still need people to handle incidents. Our vision is to leverage status and convert it directly from the network devices. It would be ideal if we could take action using APIs and API code and remove manual processes."
"The price of Splunk UBA is too high."
"We'd like the ability to do custom searches."
"I would like improved downward integration with other tools such as McAfee and other GCP solutions."
"We want to have an automated system for bot hunting that enables us to detect anomalies predictively based on historical data. It would be helpful if Splunk included process mining as an alternative option. We have a threat workflow, but it would be useful if we could supplement that with some process mining capabilities over time."
"The solution is much more expensive than relative competitors like ArcSight or LogRhythm. It makes it hard to sell to customers sometimes."
"The correlation engine should have persistent and definable rules."
More Splunk User Behavior Analytics Pricing and Cost Advice →
Alert Logic is ranked 29th in Vulnerability Management with 11 reviews while Splunk User Behavior Analytics is ranked 2nd in User Entity Behavior Analytics (UEBA) with 18 reviews. Alert Logic is rated 8.0, while Splunk User Behavior Analytics is rated 8.2. The top reviewer of Alert Logic writes "Great reporting and session logic with an easy initial setup". On the other hand, the top reviewer of Splunk User Behavior Analytics writes "Easy to configure and easy to use solution that integrates with many applications and scripts ". Alert Logic is most compared with CrowdStrike Falcon Complete, Arctic Wolf Managed Detection and Response, Sophos MDR, Rapid7 InsightIDR and SentinelOne Vigilance, whereas Splunk User Behavior Analytics is most compared with Darktrace, Microsoft Defender for Identity, IBM Security QRadar, Cynet and Exabeam Fusion SIEM. See our Alert Logic vs. Splunk User Behavior Analytics report.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.