We performed a comparison between Splunk Enterprise Security and Tableau based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM)."The machine learning and artificial intelligence on offer are great."
"The Log analytics are useful."
"Azure Application Gateway makes things a lot easier. You can create dashboards, alert rules, hunting and custom queries, and functions with it."
"The most valuable feature is the alert notifications, which are categorized by severity levels: informational, low, medium, and high."
"The most valuable feature is the onboarding of the workloads. You can see all that has been onboarded in your account on the dashboards."
"Free ingestion for Azure logs (with E5 licence)"
"The most valuable features are its threat handling and detection. It's a powerful tool because it's based on machine learning and on the behavior of malware."
"The solution has features that helped improve the security posture of our clients. It provides the ability to correlate a large variety of log sources very cost-effectively, especially for Microsoft sources."
"The feature that we use the most is the correlation search engine within ES."
"The search lookups are useful."
"The logs on the solution are excellent."
"The data representation options in the dashboards are excellent."
"It scales better in the cloud than on-premise."
"It is a one stop shop as a full monitoring and alerting solution for operations and application analysis for most of our back-end systems."
"The most valuable feature is the incident dashboard, and the extensive use of correlation searches, which isn't available with a standard Splunk search package. This feature is important to me because it enables SOC analysts to do their job more efficiently and be able to investigate or mediate incidents at a faster pace."
"It's better than IBM, in my opinion, because it's an independent entity."
"There is a lot of APIs available, which means that Tableau can be customized to a large extent."
"Data handling, visualizations, and aesthetics of it are the most valuable features."
"It is a stable solution."
"The most valuable features of the solution are the permission management and the user management."
"Partner support is very good."
"Very user friendly."
"Tableau's most valuable features are user-friendliness and have a connection between multiple source systems. You can publish a report by using Tableau Public and there you can make your data online, not only batches of data, you can use it as an online analytical tool."
"You are able to see and follow trends."
"Not all information shows up in Sentinel. Sometimes there are items provided in 365 and if you looked in Sentinel you would not see them and therefore think they do not exist. There can be discrepancies between Microsoft tools."
"They only classify alerts into three categories: high, medium, and low. So, from the user's point of view, having another critical category would be awesome."
"Add more out-of-the-box connectors with other SaaS platforms/applications."
"I would like Sentinel to have more out-of-the-box analytics rules. There are already more than 400 rules, but they could add more industry-specific ones. For example, you could have sets of out-of-the-box rules for banking, financial sector, insurance, automotive, etc., so it's easier for people to use it out of the box. Structuring the rules according to industry might help us."
"The following would be a challenge for any product in the market, but we have some in-house apps in our environment... our apps were built with different parameters and the APIs for them are not present in Sentinel. We are working with Microsoft to build those custom APIs that we require. That is currently in progress."
"The reporting could be more structured."
"We'd like also a better ticketing system, which is older."
"They need to work with other security vendors. For example, we replaced our email gateway with Symantec, but we couldn't collect these logs with Azure Sentinel. Instead of collecting these logs with Azure Sentinel, we are collecting them on Qradar. We couldn't do it with Sentinel, which is a problem for us."
"It's difficult to set up initially, and their billing model is also a bit complicated."
"When we do a rollout from the server or host or anything, we'd like to see more automation. It would save us time."
"Professional support is great, but too expensive."
"It is a challenge to manage the environment in such a way, that one’s log, even with the bandwidth license, isn’t exceeded."
"You do need a lot of training and certification with this product."
"The analytics of Splunk could be improved."
"I would like to see an updated dashboard. The dashboard is a little out-of-date. It could be made prettier."
"Splunk is query-based, which is not the case with most cybersecurity tools. It is based on search queries and can be difficult to use. It would be good if they can make it easier to understand how to create search queries. They can improve the knowledge base for better understanding. To create your dashboard, you need to have a search query. We have multiple firewalls in our company, and we need a dashboard for them. It would be helpful if a default firewall dashboard is included in Splunk to make monitoring easier. If a dashboard is available for a security device, the operation part will be more efficient. We won't have to follow a manual process for this."
"Lacks customization in some areas."
"Provide additional enhancements in any business process: Operations, Marketing and Sales, Finance, Human Resources, Logistics, etc."
"Its price is a concern. It is more expensive than Power BI. The other thing that I never liked about Tableau is its ability to handle large sets of data. To present the data in the dashboards, we have to stage it up exactly like it is going to come into the dashboard. We use another tool called Alteryx that does that for us. So, we manipulate the data, get it staged, and then push it into Tableau. Tableau is terrible at handling large data sets, and we knew right away that we couldn't use Tableau to do data manipulation."
"Licensing and pricing options could be made better so that more users would be able to use it."
"When compared to Power BI, it is less user-friendly."
"Reports should be downloadable as PDF files."
"When it comes to large datasets, the data should be extracted faster."
"The solution could use more features in data analytics."
Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 240 reviews while Tableau is ranked 2nd in BI (Business Intelligence) Tools with 293 reviews. Splunk Enterprise Security is rated 8.4, while Tableau is rated 8.4. The top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". On the other hand, the top reviewer of Tableau writes "Provides fast data access with in-memory extracts, makes it easy to create visualizations, and saves time". Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Datadog, whereas Tableau is most compared with Microsoft Power BI, Amazon QuickSight, Domo, SAS Visual Analytics and Databricks.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.