We performed a comparison between AlienVault OSSIM and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Better than other SIEM solutions because almost everything can be integrated."
"The initial setup is straightforward."
"The most valuable features of AlienVault OSSIM are case management, ease of configuration, and investigation."
"The solution has a very good open source community, and whenever we have problems, we are always able to resolve it online."
"With AlienVault you get everything in one box."
"AlienVault OSSIM's GUI is very user-friendly."
"The initial setup was straightforward. I didn't have any problems."
"The solution is very stable. Compared to Qradar and Splunk, it's very stable."
"Splunk's visualizations make it easy for users to understand the data."
"Low barrier to start searching with the ability to normalize data on the fly."
"It provides a lot of analytics with the underlying AI engine, and it is a lot easier than other solutions. There are some products that do automated AI-based detection and drawing up charts, but for network monitoring and all of the monitoring aspects, it is quite a nice tool. It is very convenient for business users because they get more or less a lot of data readily available. If you're familiar with the Splunk query language, you can pretty much do whatever you want."
"It helps streamline troubleshooting and log analysis."
"Splunk Enterprise Security's dashboards are a key asset."
"There are a lot of third-party applications that can be installed."
"It has a big user base, so the community is useful."
"The solution's most valuable feature is the dashboard, which allows us to see everything on the same page and provides easy visibility into problems."
"AlienVault OSSIM gives unwanted notifications."
"I would like the solution to be able to integrate with my firewall, my IDS and my Honeypot solutions so that it can provide real-time reporting as things occur and then have alert sent to me on my phone when suspicious activity is happening."
"The price of this solution is very high and it could be cheaper."
"Lacking in depth of reporting."
"We need more dashboards and we need more customization for dashboards."
"AlienVault OSSIM is costly."
"AlienVault OSSIM should improve the deployment and make it unified like the USM."
"The incidence reporting could be better."
"The setup time is quite long."
"The historical data extraction needs improvement. I would like the capability of taking data and having it trend longer."
"Its pricing is extremely high. There are other tools out in the market that are competitive. They do not necessarily have all the functionality, but they are competitive. The professional services we have used have been high as well in comparison to the market."
"The documentation is in definite need of improvement."
"The analytics of Splunk could be improved."
"Splunk can improve its third-party device application plugins."
"Enterprise security: Splunk must work on clarifying the solution to customers and explain how to gain more from it."
"Its reporting can be improved. That's the only complaint I have heard. I don't need the reporting part, but I know that other people in the organization need it."
AlienVault OSSIM is ranked 14th in Security Information and Event Management (SIEM) with 28 reviews while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 246 reviews. AlienVault OSSIM is rated 7.4, while Splunk Enterprise Security is rated 8.4. The top reviewer of AlienVault OSSIM writes "An easy-to-scale open-source solution used for monitoring events on devices ". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". AlienVault OSSIM is most compared with Wazuh, Elastic Security, USM Anywhere, Microsoft Sentinel and Fortinet FortiSIEM, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel. See our AlienVault OSSIM vs. Splunk Enterprise Security report.
See our list of best Security Information and Event Management (SIEM) vendors.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.