We performed a comparison between Palantir Foundry and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two IT Operations Analytics solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The ease of use is my favorite feature. We're able to build different models and projects or combine different projects to build one use case."
"The interface is really user-friendly."
"Palantir Foundry is a robust platform that has really strong plugin connectors and provides features for real-time integration."
"Encapsulates all the components without the requirement to integrate or check compatibility."
"Great features available in one tool."
"It's scalable."
"The data lineage is great."
"The security is also excellent. It's highly granular, so the admins have a high degree of control, and there are many levels of security. That worked well. You won't have an EDC unless you put everything onto the platform because it is its own isolated thing."
"I am satisfied with the support."
"It has reduced the time to resolution, time to investigate, and time to troubleshoot for debugging issues."
"The most valuable features for us include its robust log management capabilities, which allow us to efficiently handle and retain logs for extended periods as needed."
"Splunk has significantly reduced the time in performing the task of aggregating logs, reviewing as well as time spent during investigations."
"Splunk has a wide range of features that customers use to find and analyze all kinds of logs."
"We have a one stop dashboard for health of some of our services where you can click in and it takes you to other dashboards that have custom near real-time metrics that show the application's health."
"Splunk has significantly helped with aggregation and correlation of critical logs. Not having to grep on each individual server has made everyone more efficient."
"Low barrier to start searching with the ability to normalize data on the fly."
"Cost of this solution is quite high."
"Some error messages can be very cryptic."
"The solution's visualization and analysis could be improved."
"They do not have a data center in Europe, and we have lots of personally identifiable information in our dataset that needs to be hosted by a third-party data center like Amazon or Microsoft Azure."
"Difficult to receive data from external sources."
"The frontend capabilities of Palantir Foundry could be improved."
"The data lineage was challenging. It's hard to track data from the sources as it moves through stages. Informatica EDC can easily capture and report it because it talks to the metadata. This is generated across those various staging points."
"If you want to create new models on specific data sets, computing that is quite costly."
"It needs to improve the way to install third-party apps and enable installation without logging into splunk.com."
"The presence of multiple layers creates a significant challenge for monitoring across cloud environments."
"The solution could use a different licensing model."
"This is not really a monitoring solution."
"The algorithms customization of Splunk could improve. They have limited algorithms for machine learning support. If they can allow the user to add more machine learning algorithms, such as the ability to choose the algorithm that a user might want. Additionally, they should provide the required libraries for those algorithms, and then analyzes the data for use."
"Being a SIEM solution with a centralized dashboard, we would like to have more options to customize it."
"The biggest problem is data compression. Splunk is an outstanding product, but it is a resource hog. There should be better data compression for being able to maintain our data repositories. We end up having to buy lots of additional storage just to house our Splunk data. This is my only complaint about it."
"Splunk does not build apps. They only go back and validate the apps that somebody has already built. They should have remote consulting support. They have a wonderful solution. They have 24/7 security. Nobody needs to depend on any third party and will therefore just buy Splunk on the cloud."
Palantir Foundry is ranked 5th in IT Operations Analytics with 14 reviews while Splunk Enterprise Security is ranked 1st in IT Operations Analytics with 246 reviews. Palantir Foundry is rated 7.6, while Splunk Enterprise Security is rated 8.4. The top reviewer of Palantir Foundry writes "The data visualization is fantastic and the security is excellent". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Palantir Foundry is most compared with Azure Data Factory, Palantir Gotham, SAP Data Services, AWS Glue and Mule Anypoint Platform, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel. See our Palantir Foundry vs. Splunk Enterprise Security report.
See our list of best IT Operations Analytics vendors.
We monitor all IT Operations Analytics reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.