We compared Dynatrace and Splunk Enterprise Security across several parameters based on our users' reviews. After reading the collected data, you can find our conclusion below:
Features: Dynatrace is highly regarded for its advanced AI engine and ability to identify infrastructure automatically. It also offers session replay and impressive visualization features. Splunk Enterprise Security stands out for its efficiency, extensive integration options, and powerful search functionality.
Room for Improvement: Some Dynatrace reviewers feel the learning curve is a little steep, and the documentation could be clearer. Users say that Dynatrace should offer more security options and improve integration with other tools. Splunk users recommended improvements in AI capabilities, user-friendliness, and analytics.
Service and Support: Users generally found Dynatrace's customer service to be satisfactory, but some said that the response times and documentation have room for improvement. While some users found Splunk support to be responsive and helpful, others reported slow response times and a lack of expertise.
Ease of Deployment: Dynatrace's setup is simple, efficient, and requires minimal technical configuration. It takes a few hours at most. Some users thought Splunk Enterprise Security was easy to deploy, while others found it challenging and needed assistance from Splunk engineers or third-party integrators.
Pricing: Users say Dynatrace is expensive. Some noted that the licensing model is complicated and not transparent. Some said they struggled to accurately predict the number of units needed. Some users consider Splunk Enterprise Security to be expensive, but others said the price is reasonable. A few users expressed concerns about the cost of scaling up the solution and managing large volumes of data.
ROI: Dynatrace users said the solutions saved them money and reduced downtime. Users said that it’s challenging to calculate an ROI for Splunk Enterprise Security, and the return varies depending on individual circumstances. While some users have observed a substantial ROI, others have not actively explored or been engaged in ROI conversations.
"Since Appmon has been leveraged, we are now down to just hours (sometimes minutes) in resolution times."
"It has more functionality, better additional components, and better management of problems. It also has a good AI."
"The initial setup is easy."
"It eases the investigation process (faster feedback loop with clients), better pro-activity on possible outages (in order to avoid outages), and eases the process of fine tuning allocation of resources to processes."
"We know exactly which line, which method, and which program needs fixing, so we directly go to the right developer and the guy comes in fixes it."
"The most valuable feature is that we can see every database call executed from Java applications."
"Understanding how the user was being targeted by the application as well as knowing their behavior using those applications."
"It helps developers fix old and new problems, helps businesses to understand conversions, statistics, and service health."
"The most valuable aspect of the solution is the dashboard. It's very intuitive."
"Integration with the cloud is pretty important and good for us. We found the integration with a lot of tools, not all tools yet, valuable. It does make the transfer of data, log files, and other things easier for us."
"It is easy to use, and easy to implement."
"It gives me notifications of notable events."
"Its compatibility with other SIEMS is very useful."
"The solution helped reduce our alert volume."
"It scales better in the cloud than on-premise."
"Search language is easy to understand and teach to new users."
"Our environment is very complicated anyway, so the initial setup was a bit of a struggle, but only because we have so many applications and JVMs that we have been working on for long time."
"C language integration requires manual implementation through the SDK, which is rather difficult and time consuming."
"As we move into using more AWS native architectures, it should support everything that we want to do. We don't want to adopt another tool."
"More visibility into Python processes."
"More integrations could prove very beneficial to us."
"If you have many distributed servers, you will need to install or migrate every agent. This can be a problem if you have too many, and it takes time."
"It needs improvement with proprietary protocols for the DC RUM part."
"They need to develop how to capture the JDBC and MBeans metrics."
"I think the tech support response time could be a bit better. Sometimes I need to wait more than 24 hours for a response to my tickets."
"Splunk could improve its default machine-learning models. Also, Splunk Enterprise's native threat intelligence isn't that good. I prefer a custom threat intelligence model."
"It can be tough to determine if you are getting all of the value out of your investment at times."
"If you monitor too much, you can lose performance on your systems."
"Considering the contract thing and the whole legal area, it takes forever to get the contracts signed and to be able to agree to the terms and conditions for my company as well as for Splunk's team."
"There are a lot of competitive products that are doing better than what Splunk is doing on the analytics side."
"It would be nice if they had a wizard to construct searches, including more complex searches that include math or statistics."
"The algorithms customization of Splunk could improve. They have limited algorithms for machine learning support. If they can allow the user to add more machine learning algorithms, such as the ability to choose the algorithm that a user might want. Additionally, they should provide the required libraries for those algorithms, and then analyzes the data for use."
Dynatrace is ranked 4th in Log Management with 341 reviews while Splunk Enterprise Security is ranked 1st in Log Management with 240 reviews. Dynatrace is rated 8.8, while Splunk Enterprise Security is rated 8.4. The top reviewer of Dynatrace writes "AI identifies all the components of a response-time issue or failure, hugely benefiting our triage efforts". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Dynatrace is most compared with Datadog, New Relic, AppDynamics, Azure Monitor and Elastic Observability, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Elastic Security, Microsoft Sentinel and Datadog. See our Dynatrace vs. Splunk Enterprise Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
As far as I know, Splunk is used as a syslog system only and DynaTrace is an application monitoring system. So you will use Splunk to collect events/logs from servers and devices and you will use DynaTrace to monitor applications and send alerts to end users, provide dashboards etc.
Dynatrace is for APM / ITOM solution. Dynatrace trace can inspect the .net, Java, PHP Program. Splunk is for Log management and SIEM which Dynatrace does not focus on.
They are two different function products.
We use Dynatrace for deep dive transaction tracking to find performance issues of applications. We use Splunk various log analysis tasks mainly in the area of security.
It really depends on the use case. Dynatrace can actually enrich the data collected by Splunk and Dynatrace has an out of the box connection to Splunk. If the goal is application performance and end-user analytics then Dynatrace is the better solution. If the goal is security and threat analytics then Splunk is the right solution.
Splunk and Dynatrace are two different solutions. Most organizations use both of them. Splunk can aggregate logs from Dynatrace. It also depends on what is the purpose of the usage. If you intend to measure end to end application performance and the application logs are instrumenting the metrics, then Splunk alone can do the job. It also allows you to correlate other events like firewall, network and other dependent applications/services.
Dynatrace and Splunk are two different solutions that provide insight from different perspectives. Dynatrace is installed on servers/applications to provide APM and Splunk is more a log and data analytics solution that processes logs (traps/syslog/Windows Events/Firewall Logs/etc.).
Dynatrace provides application performance management (APM), artificial intelligence for operations (AIOps), cloud infrastructure monitoring, and digital experience management (DEM), with products for the information technology departments and digital business owners of medium and large businesses. The company's services include performance management software for programs running on-premises and in the cloud. This software manages the availability and performance of software applications and the impact on user experience in the form of deep transaction tracing, synthetic monitoring, real user monitoring, and network monitoring.
Splunk (the product) captures, indexes, and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards, and visualizations.
Splunk makes machine data accessible across an organization by identifying data patterns, providing metrics, diagnosing problems, and providing intelligence for business operations. Splunk is a horizontal technology used for application management, security and compliance, as well as business and web analytics.
Ref - from experience, their own websites and other related sites.