We compared Dynatrace and Splunk Enterprise Security across several parameters based on our users' reviews. After reading the collected data, you can find our conclusion below:
Features: Dynatrace is highly regarded for its advanced AI engine and ability to identify infrastructure automatically. It also offers session replay and impressive visualization features. Splunk Enterprise Security stands out for its efficiency, extensive integration options, and powerful search functionality.
Room for Improvement: Some Dynatrace reviewers feel the learning curve is a little steep, and the documentation could be clearer. Users say that Dynatrace should offer more security options and improve integration with other tools. Splunk users recommended improvements in AI capabilities, user-friendliness, and analytics.
Service and Support: Users generally found Dynatrace's customer service to be satisfactory, but some said that the response times and documentation have room for improvement. While some users found Splunk support to be responsive and helpful, others reported slow response times and a lack of expertise.
Ease of Deployment: Dynatrace's setup is simple, efficient, and requires minimal technical configuration. It takes a few hours at most. Some users thought Splunk Enterprise Security was easy to deploy, while others found it challenging and needed assistance from Splunk engineers or third-party integrators.
Pricing: Users say Dynatrace is expensive. Some noted that the licensing model is complicated and not transparent. Some said they struggled to accurately predict the number of units needed. Some users consider Splunk Enterprise Security to be expensive, but others said the price is reasonable. A few users expressed concerns about the cost of scaling up the solution and managing large volumes of data.
ROI: Dynatrace users said the solutions saved them money and reduced downtime. Users said that it’s challenging to calculate an ROI for Splunk Enterprise Security, and the return varies depending on individual circumstances. While some users have observed a substantial ROI, others have not actively explored or been engaged in ROI conversations.
"It reduces time and provides detailed info, showing problem correlation, and a single point of diagnosis."
"Stability has been very nice, and Dynatrace runs on the Linux system."
"It helps our organization identify potential problems by doing thorough analysis of systems which integrate with one another."
"Mean time to recover (MTTR) has reduced significantly during major outages due to specific data pinpointed by DT applications."
"The PurePaths are valuable because that's where somebody who is a non-developer can figure out where the problem is and send appropriate PurePaths, clean charts, or even the link to the developer. The developer can then look at it and figure out exactly where the problem is, this is the piece of code that took the longest time, and then resolve it."
"Support from Dynatrace is excellent. They are always on hand for any queries, demos, and/or issues."
"The best feature of the product for me is the real troubleshooting capability through the PurePath analysis."
"The Recorder for setting up a synthetic monitor is a really great tool for non-technical staff to be able to set up a monitor."
"It's extremely scalable. It's a very robust solution and certainly has the capability of handling far bigger data requirements than a lot of the other tools. Generally what ends up happening with me is that my clients tend, for the most part, to be mid-tier organizations where the cost of that solutions would be accompanying requirements for people just becomes way too prohibitive. Especially considering the model that they use for costing, which is based on the volume of data. Of course, they're going to put everything including the Coke machine as the ability to collect data off of it, because of course the more they can put through the tool the more money they make."
"With good domain knowledge, one can build almost anything. If you throw in Alert Manager or an integration with ServiceNow. Then, you have your own SIEM"
"I like the ease with which dashboards can be created."
"It allows for transparency into IT metrics for insightful business analytics."
"We can automatically suspend or terminate suspicious sessions."
"Aggregation searches have reduced time and difficulty of identifying trends and conditions which need to reviewed."
"It's basically one of the best SIEM products on the market."
"The graph visualization is the most valuable feature."
"We sometimes have to run plugins on docker containers."
"I would like to see internal synthetic tests in the next release, which is already on the roadmap."
"There are a lot of features that could be added that would make this a very useful solution, but it is getting there."
"In AppMon, the performance could be improved. That is the one thing I am most interested in."
"In the new Dynatrace solution, support for legacy applications is still not there. "
"Mainly navigation needs improvement. It is easier to follow a flow. Following the flow of the admin now is not easy."
"It would be nice to have a simplified monitoring feature for non-Java applications."
"One of the features that we are lacking is on the reports side. We don't have much reporting available. And the dashboards. I checked on their blog and they said that they are working on the dashboard front where you can create the dashboards. We do have dashboards available. They said they are bringing in a lot of things there, so I'm looking forward to that, on reports."
"Endpoint access is the only issue I can think to mention, even though the endpoint access we have with Cisco is fine."
"The user access control could be much more granular, so that the admins can control r/w/x access for specific features of the product like dashboards, etc."
"Integrating tools and creating use cases could be easier. It's hard for a junior security engineer with only a couple of years of experience to write use cases. They can do it, but it's much easier in a solution like IBM QRadar. Setting conditions is like a multiple-choice type of thing. It's a more user-friendly process."
"Not even Splunk's support guy, who came to our firm, could help with defining proper role management."
"The Web Application Firewall will send you too much information because it's more dedicated to security than a normal firewall."
"I love the solution, but I would like to see more accessibility to the machine-learning capabilities that are sprinkled around Splunk."
"Its interface and usability can always be improved."
"The integration could be a bit better. They charge for certain integrations."
Dynatrace is ranked 4th in Log Management with 340 reviews while Splunk Enterprise Security is ranked 1st in Log Management with 228 reviews. Dynatrace is rated 8.8, while Splunk Enterprise Security is rated 8.4. The top reviewer of Dynatrace writes "AI identifies all the components of a response-time issue or failure, hugely benefiting our triage efforts". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Dynatrace is most compared with Datadog, New Relic, AppDynamics, Azure Monitor and Elastic Observability, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Elastic Security, Microsoft Sentinel and Datadog. See our Dynatrace vs. Splunk Enterprise Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
As far as I know, Splunk is used as a syslog system only and DynaTrace is an application monitoring system. So you will use Splunk to collect events/logs from servers and devices and you will use DynaTrace to monitor applications and send alerts to end users, provide dashboards etc.
Dynatrace is for APM / ITOM solution. Dynatrace trace can inspect the .net, Java, PHP Program. Splunk is for Log management and SIEM which Dynatrace does not focus on.
They are two different function products.
We use Dynatrace for deep dive transaction tracking to find performance issues of applications. We use Splunk various log analysis tasks mainly in the area of security.
It really depends on the use case. Dynatrace can actually enrich the data collected by Splunk and Dynatrace has an out of the box connection to Splunk. If the goal is application performance and end-user analytics then Dynatrace is the better solution. If the goal is security and threat analytics then Splunk is the right solution.
Splunk and Dynatrace are two different solutions. Most organizations use both of them. Splunk can aggregate logs from Dynatrace. It also depends on what is the purpose of the usage. If you intend to measure end to end application performance and the application logs are instrumenting the metrics, then Splunk alone can do the job. It also allows you to correlate other events like firewall, network and other dependent applications/services.
Dynatrace and Splunk are two different solutions that provide insight from different perspectives. Dynatrace is installed on servers/applications to provide APM and Splunk is more a log and data analytics solution that processes logs (traps/syslog/Windows Events/Firewall Logs/etc.).
Dynatrace provides application performance management (APM), artificial intelligence for operations (AIOps), cloud infrastructure monitoring, and digital experience management (DEM), with products for the information technology departments and digital business owners of medium and large businesses. The company's services include performance management software for programs running on-premises and in the cloud. This software manages the availability and performance of software applications and the impact on user experience in the form of deep transaction tracing, synthetic monitoring, real user monitoring, and network monitoring.
Splunk (the product) captures, indexes, and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards, and visualizations.
Splunk makes machine data accessible across an organization by identifying data patterns, providing metrics, diagnosing problems, and providing intelligence for business operations. Splunk is a horizontal technology used for application management, security and compliance, as well as business and web analytics.
Ref - from experience, their own websites and other related sites.