We performed a comparison between Splunk Enterprise Security and Tableau based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM)."We are using Microsoft 365 and we're using the Exchange Mail Service. It's good for monitoring that in particular."
"Splunk has helped improve our company's resilience level."
"The product is good, it satisfies our customers."
"The flexibility of the search capability is most valuable. You can use it for more than just a basic log aggregator. It is powerful in that regard."
"It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query on Splunk. The resolution time is about the same, but it took longer to discover the issue with ArcSight. Our previous solution took about an hour or more, but Splunk can do it within a few minutes or an hour at most."
"We did not encounter any issues with scalability. It is almost seamless to add new index (storage) or search (used to analyze the data) nodes to the cluster."
"The solution's most valuable features are the granularity and analysis of the logs."
"The correlation searches are most valuable just because we are able to do things like RBA."
"Data handling, visualizations, and aesthetics of it are the most valuable features."
"The most valuable feature is the drag and drop, then the simplicity to build dashboards which allows us to provide more usable data to our customers."
"It is very easy to implement and to use."
"Its visualizations are good, and its features make the development process a little less time-consuming. It has an in-memory extract feature that allows us to extract data and keep it on the server, and then our users can use it quickly."
"Tableau Prep tool for data preparation is a most valuable tool."
"There is a lot of APIs available, which means that Tableau can be customized to a large extent."
"Since Tableau is on the cloud, we haven't faced any challenges around scalability."
"Tableau's most valuable features are user-friendliness and have a connection between multiple source systems. You can publish a report by using Tableau Public and there you can make your data online, not only batches of data, you can use it as an online analytical tool."
"The user experience could be improved."
"The ingestion happens quickly, so you can run up the data costs if you use the default settings. It isn't a problem for government agencies in the Saudi market, but many of the corporations in India are small or medium-sized enterprises that cannot afford that kind of ingestion system."
"The administration of the cluster and app deployment to indexers or search heads can be done only using ssh access and command line, there is no GUI tools for that."
"In the next releases, I would like to see more pricing flexibility."
"The CIM model is the method Splunk uses to normalize data and categorize its important parts, but it is quite complex."
"Spam has different plugins but by default, the logs are not organized, it shows that there are roll-ups that are out of the box. I saw many plugins that can help improve or extend Splunk's functionality but I haven't tried any of them."
"The training was mostly sales-focused, like how to monitor your sales. It was hard to then come back from doing the training and try to switch it to a cybersecurity focus because all the training we did was sales oriented. The basic training didn't really touch on any kind of cybersecurity use cases or anything like that. That would have been great to see in the training."
"Writing queries is a bit complicated sometimes."
"Could have more integrations with different platforms."
"If you mainly need a tool for BI reporting, it's not the best option. Tableau needs better abilities to generate simple reports, integrate, create databases, and work with data lakes."
"The solution’s pricing could be improved."
"When it comes to visualizations, Tableau has a limitation as compared to Power BI. It has a limited set of visualizations. Power BI has the entire marketplace, so you can connect and import many visualizations and use them, whereas Tableau has only 10 or 15 visualizations. There should be more visualizations, and there should also be data integration with more cloud providers."
"It's not an aesthetic platform at the moment."
"Its integration with Microsoft products such as Teams should be improved."
"Areas for improvement would be visualization and augmented analytics. In the next release, I would like to see automated insights from the data added to the dashboard."
"There should be more widgets that would help less trained individuals create charts with less difficulty."
Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 246 reviews while Tableau is ranked 2nd in BI (Business Intelligence) Tools with 293 reviews. Splunk Enterprise Security is rated 8.4, while Tableau is rated 8.4. The top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". On the other hand, the top reviewer of Tableau writes "Provides fast data access with in-memory extracts, makes it easy to create visualizations, and saves time". Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel, whereas Tableau is most compared with Microsoft Power BI, Domo, Amazon QuickSight, SAS Visual Analytics and Databricks.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.