We performed a comparison between BigPanda and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out what your peers are saying about Zabbix, Datadog, Auvik and others in IT Infrastructure Monitoring."The event correlation is really good and it is able to reduce the noise. It is a good tool for anomaly detection."
"The best of a bad lot was the error message deduping."
"The most valuable features of BigPanda are the API integration was good. It enables us to do faster onboarding."
"One of the most valuable features of BigPanda is its user-friendly interface."
"The main thing that we like about BigPanda is the user interface."
"Alert deduplication and correlation - In an environment like the NOC where you're ingesting hundreds and thousands of alerts from various monitoring sources, it's time consuming and difficult to go through individual alerts and also difficult to spot critical issues. It's been great to have BigPanda not only deduplicate alerts but also correlate alerts that are seemingly unrelated, to create a clearer picture."
"Alert aggregation was the primary requirement. BigPanda pulls all this together into a single UI for us, allowing us to see related alerts grouped together into an incident, and enables us to easily create a JIRA ticket and Slack channel to manage an issue."
"The solution is user-friendly and has good performance and certification."
"Splunk UBA is useful for fraud detection and for detection of APTs, advanced persistent threats."
"You can run reports against multiple devices at the same time. You are able to troubleshoot a single application on a thousand servers. You can do this with a single query, since it is very easy to do."
"Being able to track impossible travel logins and things of that nature is valuable. We can track user logins from various IPs, various countries, and at various times to see if everything adds up."
"I like the Splunk dashboard and search engine."
"I haven't had the chance to properly sink my teeth into Enterprise Security but so far I like that they added the MITRE ATT&CK features."
"I like the ease with which dashboards can be created."
"Visualizations are the best way to understand deviation techniques from the norm."
"The most valuable feature is that it's very good for log aggregation."
"The observability can be enriched with regards to infrastructure and the application-integrated environment. The dashboard and reports could be improved."
"Our infrastructure is quite large - tens of thousands of servers, often with 30-plus checks running on each host with one minute intervals. This generates a lot of data often in bursts (when we have a large scale failure). This has caused some delay in the ingestion pipeline."
"BigPanda could improve by syncing its threshold settings with Dynatrace to align with users' familiarity."
"The UI for this solution could be improved. It is very hard to find what you are looking for."
"BigPanda can improve the correlations. We didn't see any big value. It is still good at the same event deduplication, event processing, and ticket creation, but I was more looking at event analysis and event correlation. In that area, it is still no big difference between the other solutions on the market. All of them, are in the same immature stage."
"The solution could improve by having better integration."
"We had to use a partner for the deployment."
"The cost of this product is too high compared to New Relic."
"The Web Application Firewall will send you too much information because it's more dedicated to security than a normal firewall."
"It could be more user friendly, in terms of the end-user experience."
"Splunk is more expensive than other solutions."
"A lot of people are averse to using new tools so if they make it even more user-friendly than it already is, I think that could go a long way."
"The UI could be better. This is applicable to Splunk in general. I know that a lot of people who get their hands on Splunk are hesitant to use it just because they find it overwhelming. There are a lot of options."
"The cluster environment should be improved. We have a cluster. In the Splunk cluster environment, in the case of heavy searches and heavy load, the Splunk cluster goes down, and we have to put it in the maintenance mode to get it back. We are not able to find the actual culprit for this issue. I know that cluster has RF and SF, but it has been down so many times. There should be something in Splunk to help users to find the reason and the solution for such issues."
"I think the machine learning should be emphasized. Now, it's really important to analyze Big Data, data mining. A SIEM solution, like Splunk, needs an improved data mining solution, artificial intelligence."
"There is improvement needed when importing from some types of data sources."
BigPanda is ranked 43rd in IT Infrastructure Monitoring with 12 reviews while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 246 reviews. BigPanda is rated 7.2, while Splunk Enterprise Security is rated 8.4. The top reviewer of BigPanda writes "Offers comprehensive alert monitoring and a user-friendly interface but requires manual validation to provide accurate alerts". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". BigPanda is most compared with ServiceNow, Moogsoft, IBM Tivoli NetCool OMNIbus, ServiceNow IT Operations Management and Dynatrace, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel.
We monitor all IT Infrastructure Monitoring reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.