We performed a comparison between Splunk APM and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two Application Performance Monitoring (APM) and Observability solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution is stable and reliable."
"Splunk APM has helped us to standardize logging and monitoring procedures."
"Detectors are a powerful feature."
"The volume it handles is very good, including the number of metrics, the volume number of traces, and more."
"This solution is very quick to deploy as it is a SaaS solution and integrates with tools like ServiceNow."
"I like the fact that Splunk APM makes it easy to connect to the application database and run queries against the data."
"The solution's service map feature allows us to have a holistic overview and to see quickly where the issues are."
"It is a good tool. It allows you to set alerts for application and infrastructure monitoring, and it allows you to create dashboards."
"Being able to track impossible travel logins and things of that nature is valuable. We can track user logins from various IPs, various countries, and at various times to see if everything adds up."
"The solution has made us more secure."
"From the class that I took this week, being able to create notable events from whatever you find in the data set is pretty useful."
"The most valuable feature of Splunk is the management and built-in workflows."
"What is nice about the solution is that it makes it easy to build the queries, search for the events and then do analysis."
"It has a big user base, so the community is useful."
"I have also been able to take advantage of some of the more complex statistical capabilities when analyzing logs."
"The feature that I have found most valuable with Splunk is the ability to sift through a bunch of data very quickly."
"The monitoring of workloads when using SignalFx could be improved."
"Primarily, the logs in Slunk APM can be challenging to navigate and comprehend, making it difficult to understand the details within each log. Compared to other tools like LogDNA, which are more intuitive in this aspect, the logs in Slunk APM can require more effort to understand."
"Splunk APM should include a better correlation between resources and infrastructure monitoring."
"They can improve the flow system and the keyword language. It has predefined keywords, but they can be improved."
"The licensing model is expensive. We need to monitor the amount of data ingested because the cost is based on the data collected."
"Splunk's functionality could be improved by adding database connectors for other platforms like AWS and Azure."
"There are some predefined metrics.......we may want to create customized metrics."
"The cardinality is pretty low."
"Splunk is query-based, which is not the case with most cybersecurity tools. It is based on search queries and can be difficult to use. It would be good if they can make it easier to understand how to create search queries. They can improve the knowledge base for better understanding. To create your dashboard, you need to have a search query. We have multiple firewalls in our company, and we need a dashboard for them. It would be helpful if a default firewall dashboard is included in Splunk to make monitoring easier. If a dashboard is available for a security device, the operation part will be more efficient. We won't have to follow a manual process for this."
"Splunk needs local technical support."
"The presence of multiple layers creates a significant challenge for monitoring across cloud environments."
"It would be good if the solution had some kind of copilot to automate or help write correlation searches."
"If you monitor too much, you can lose performance on your systems."
"Splunk should have more regional data centers in the Middle East."
"I'd say I am happy with the technical support, not elated. They provide great support, but sometimes they don't have the answers that I need."
"The solution should also have more advanced capabilities in comparison with QRadar, which offers Watson."
Splunk APM is ranked 13th in Application Performance Monitoring (APM) and Observability with 13 reviews while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 246 reviews. Splunk APM is rated 8.2, while Splunk Enterprise Security is rated 8.4. The top reviewer of Splunk APM writes "Provides great visibility, analysis, and data telemetry". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Splunk APM is most compared with Splunk ITSI (IT Service Intelligence), Sentry, Monte Carlo, Elastic Observability and Observe, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel. See our Splunk APM vs. Splunk Enterprise Security report.
We monitor all Application Performance Monitoring (APM) and Observability reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.