We performed a comparison between ServiceNow Cloud Observability and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out what your peers are saying about Datadog, Dynatrace, New Relic and others in Application Performance Monitoring (APM) and Observability."The ability to create a stream based on different parameters, operation name, service name, URL, tags, and URI part, is one valuable feature."
"The solution Lightstep/ServiceNow has a couple of pretty advanced functionalities to help us investigate a deviation and help the development teams have better observability in the environment using distributed and complex services."
"The UI is very intuitive."
"Splunk's interface is user-friendly, and it has apps and add-ons for most applications. We can easily normalize the data to make it readable and understand the logs. We easily get all the field extractions and enrichment done by using the apps and add-ons. This helps us understand the application logs because the raw data is useless unless we extract some useful information from it. These add-ons make it so much easier."
"You can integrate Splunk with third-party security automation solutions and set rules for automatic response."
"Splunk Enterprise Security's dashboards are a key asset."
"The most valuable feature is the custom dashboard feature."
"It is very scalable."
"The correlation search functions that generate all the notables are valuable. That can get pretty complicated, and it handles that pretty well."
"The SIEM is the most valuable feature of the product."
"Deployment server for deploying changes in one go."
"The design of this solution is not very intuitive and probably could come with more friendly tips for beginners."
"The dashboard and graphics must be improved."
"The support team could be better. Because of the different versions of different tactics of integrating reactive code base, the documentation is not very clear if someone has to be onboard. I would rate the documentation of Lightstep a five out of ten. It could need improvement."
"The UI could be better. This is applicable to Splunk in general. I know that a lot of people who get their hands on Splunk are hesitant to use it just because they find it overwhelming. There are a lot of options."
"The monitoring aspect of Splunk could be improved. We have to do some queries to get as much information as CrowdStrike or other solutions provide. If you run a big query, you will see a delay. That is the only concern we have because it will take some time if you query large data sets."
"Splunk needs local technical support."
"The product was designed for security and IT with business intelligence needs, such as PDF exporting, but this has not been the highest priority. While the functionality is there, it could be developed more."
"For on-premise, it's more about optimization. With such a heavy byte scale of data that we are operating on, the search for disparate data sometimes takes about a minute. This is understandable considering the amount of data that we are pumping into it. The only optimization that I recommend is better sharding, when it comes to Splunk, so that data retrieval can be faster."
"I find that the learning curve for Splunk is relatively lengthy."
"The complexity could be worked on so that it's even easier and faster."
"We are waiting for Dashboard Studio to mature a little bit more. There are some things that we are using with Classic Dashboards which have not yet made it to Dashboard Studio. We are waiting for that."
ServiceNow Cloud Observability is ranked 48th in Application Performance Monitoring (APM) and Observability with 3 reviews while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 240 reviews. ServiceNow Cloud Observability is rated 7.4, while Splunk Enterprise Security is rated 8.4. The top reviewer of ServiceNow Cloud Observability writes "Provides effective observability and offers robust alerting and monitoring capabilities". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". ServiceNow Cloud Observability is most compared with Grafana, New Relic, Dynatrace, Datadog and Sentry, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Microsoft Sentinel.
We monitor all Application Performance Monitoring (APM) and Observability reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.