We performed a comparison between Evolven and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, New Relic, Devo and others in IT Operations Analytics."It facilitates infrastructure readiness and consistency."
"It provides visualization of risk levels."
"It follows MITRE ATT&CK and Cyber Kill Chain frameworks. There are certain notable events for which we can configure our security posture."
"There are a lot of third-party applications that can be installed."
"The most valuable feature of Splunk Enterprise Security is website activity monitoring."
"We can automatically suspend or terminate suspicious sessions."
"We are using Microsoft 365 and we're using the Exchange Mail Service. It's good for monitoring that in particular."
"Splunk is extremely flexible, which allows us to create custom visualizations along with other customizations."
"The most valuable features are the logs, which allow us to identify what happened and who interacted with the web repository."
"I like the search feature and the indexing. It's very fast and comprehensive."
"Alerting needs improvement."
"The price has room for improvement."
"It will be helpful for customers if they can create some real-world cases, and we can find a case study to align with. I know that Splunk has tremendous potential. We only include a tiny piece of it. There is a lot of stuff that we need to learn. If Splunk can provide more real-time examples, that will be helpful for customers."
"Writing queries is a bit complicated sometimes."
"Splunk is very expensive. The license is based on the volume of the logs ingested. I was responsible for managing the contract with our service integrator. I don't know the precise details of the competing solution, but I have heard that Splunk is more expensive than others. I don't know what the going rate is on the market, but I think there are at least two competitors that are less expensive. We have experienced a few issues with our service providers in terms of log filtering and ingestion, so we continue to pay a bit more per day for our logs."
"One issue is that we are getting a lot of false positives. We are trying to reduce them by customizing the default rules, changing thresholds, and using white-listing and black-listing. It's getting better and better as a result. But they need to build components that would reduce the false positives."
"Splunk ES could have more pre-built integrations and rules. The detection is fairly accurate, but it depends on the rules you create. Splunk's out-of-the-box configuration isn't that useful."
"Configuring a few apps is complex, not straightforward."
"I find the graphical options really limited and you don't have enough control over how to display the data that you want to see."
Earn 20 points
Evolven is ranked 17th in IT Operations Analytics while Splunk Enterprise Security is ranked 1st in IT Operations Analytics with 240 reviews. Evolven is rated 7.0, while Splunk Enterprise Security is rated 8.4. The top reviewer of Evolven writes "Provides visualization of risk levels. However, alerting needs improvement". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Evolven is most compared with , whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Microsoft Sentinel.
See our list of best IT Operations Analytics vendors.
We monitor all IT Operations Analytics reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.