We performed a comparison between Elastic Security and Splunk Cloud Platform based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The scalability is good. It can be scaled easily in the production environment."
"Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because of Elastic's efficient search engine."
"Just the ability to do a lot more than just up-down is nice, which a lot of people take for granted."
"The most valuable feature of Elastic Security is that you can install agents, and they are not separately licensed."
"The most valuable feature for me is Discover."
"We've found the initial setup to be quite straightforward."
"It's very customizable, which is quite helpful."
"The most valuable feature is the speed, as it responds in a very short time."
"Splunk Cloud Platform's search modes are a powerful feature."
"The initial setup was straightforward."
"We only buy the services we need. We don't have to pay for other things we don't."
"The cloud is very fast."
"It's made searching for data easier. Users like it. We're still in the migration process, but overall, it's a lot easier to use."
"The solution is user friendly and has extensive uses."
"The most valuable feature for me is the flexibility of being able to send the log to the https endpoint."
"As compared to other tools, it is very easy. It is very easy to learn. It also integrates well."
"The problem with ELK is it's difficult to administer. When you have a problem, it can be very, very difficult to rebuild indexes."
"We're using the open-source edition, for now, I think maybe they can allow their OLED plugin to be open source, as at the moment it is commercialised."
"The process of designing dashboards is a little cumbersome in Kibana. Unless you are an expert, you will not be able to use it. The process should be pretty straightforward. The authentication feature is what we are looking for. We would love to have a central authentication system in the open-source edition without the need for a license or an enterprise license. If they can give at least a simple authentication system within a company. In a large organization, authentication is very essential for security because logs can contain a lot of confidential data. Therefore, an authentication feature for who accesses it should be there."
"Upgrades currently released as stacks when it should be a plugin or an extension to save removal and reinstallation."
"The interface could be more user friendly because it is sometimes hard to deal with."
"It would be better if Elastic Security had less storage for data. My customers do not like this. Other vendors have local support in different countries, but Elastic Security doesn't. I would like to have Operational Technology (OT) security in the next release."
"If you compare this with CrowdStrike or Carbon Black, they can improve."
"This solution cannot do predictive maintenance, so we have to build our own modules for doing it."
"The training models can only be accessed for 30 days, even if it is paid training."
"Support could be improved."
"The current visuals on the dashboard could be more impactful."
"The administration could use improvement. We have to rely on support more often than we're used to."
"Splunk should increase the frequency of new feature releases, particularly those related to real-time operational flow monitoring and analytics reporting."
"Some of the implementation is challenging. They're not very proxy-aware."
"When one of my customers needs an app, and I am able to find that app on the Splunk base, I have to create a ticket and wait for five days for them to download the app into the cloud environment. That is probably one of the main things. It is painful because I have to wait to get that app in the cloud."
"The on-premises version of Splunk includes all the integrations, while the Cloud platform lacks certain integrations and is limited in terms of the number of supported apps."
Elastic Security is ranked 5th in Log Management with 59 reviews while Splunk Cloud Platform is ranked 3rd in Data Visualization with 37 reviews. Elastic Security is rated 7.6, while Splunk Cloud Platform is rated 8.0. The top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". On the other hand, the top reviewer of Splunk Cloud Platform writes "Does not require backend maintenance, is easily integrated and utilized". Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and Microsoft Defender for Endpoint, whereas Splunk Cloud Platform is most compared with Wazuh, Splunk Enterprise Security, Fortinet FortiAnalyzer, AppInsights and Check Point Security Management. See our Elastic Security vs. Splunk Cloud Platform report.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.