We performed a comparison between Elastic Security and Splunk Cloud Platform based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's a good platform and the very best in the current market. We looked at the Forester report from December 2022 where it was said to be a leader."
"The product has huge integration varieties available."
"I use the stack every morning to check the errors and it's just so clear. I don't see any disadvantage to using Logstash."
"It is very quick to react. I can set it to check anomalies or suspicious behavior every 30 seconds. It is very fast."
"ELK documentation is very good, so never needed to contact technical support."
"The solution is quite stable. The performance has been good."
"It's not very complicated to install Elastic."
"We've found the initial setup to be quite straightforward."
"Index manager is most valuable because we do not have to bother about internal storage. It is all managed by the Splunk team."
"Dashboards and alerting are the most valuable features. The dashboards let us see how the system looks in terms of anomalies, and the alerts trigger us to go and look at what possible problems are happening."
"The most valuable feature is we don't have to deal with any back-end server maintenance because the solution is cloud-based."
"Splunk Cloud Platform's search modes are a powerful feature."
"The cloud is very fast."
"I like the Cloud monitoring console feature."
"The most valuable feature of Splunk Cloud Platform is its flexibility and readiness because it's already prebuilt, and everything is click-to-go."
"We only buy the services we need. We don't have to pay for other things we don't."
"I would like the process of retrieving archived data and viewing it in Kibana to be simplified."
"In terms of improvement, there could be more automation in responding to and evaluating detections."
"We had issues with scalability. Logstash was not scaling and aggregation was getting delayed. We moved to Fluentd making our stack from ELK to EFK."
"Anything that supports high availability or ease of deployment in a highly available environment would help to improve this solution."
"This solution is very hard to implement."
"The tool should improve its scalability."
"There is room for improvement in the Kibana dashboard and in the asset management for the program."
"Email notification should be done the same way as Logentries does it."
"The pricing model makes the product costly."
"Splunk Cloud Platform should improve its integrations and consider multiple integrations or direct integration with other platforms like Microsoft Azure, Google Cloud, or AWS."
"There could be better searches, but mainly, it needs to improve the performance with a vast amount of data. That will make it better and easier to use."
"Its stability and performance can be better. Very rarely does a day go by when we do not see an error in the console, such as a health check error. Because it is cloud-hosted, we do not have access to the backend to figure it out ourselves. We are reliant on their support to figure it out, and a couple of days later, the error comes back or it is a different error. It is a never-ending cycle of support tickets. Their support is also not great."
"The training models can only be accessed for 30 days, even if it is paid training."
"The search for bulk data needs to be improved. When we were looking for the flow, we had to search really hard. I wanted to request the Splunk team to add some features for better search because getting the flow of the bulk data was sometimes hard."
"Although there is documentation available, it is really hard for me to find relevant topics on what it is that I'm searching for."
"In the case of knowledge objects, even a Splunk admin does not have access to delete them. If we want to remove a knowledge object, we need to contact Splunk support and raise a case. After that, they delete it. They should give us access to delete knowledge objects."
Elastic Security is ranked 5th in Log Management with 58 reviews while Splunk Cloud Platform is ranked 3rd in Data Visualization with 34 reviews. Elastic Security is rated 7.6, while Splunk Cloud Platform is rated 8.0. The top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". On the other hand, the top reviewer of Splunk Cloud Platform writes "Does not require backend maintenance, is easily integrated and utilized". Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and Microsoft Defender for Endpoint, whereas Splunk Cloud Platform is most compared with Wazuh, Splunk Enterprise Security, Fortinet FortiAnalyzer, AppInsights and Check Point Security Management. See our Elastic Security vs. Splunk Cloud Platform report.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.