We performed a comparison between Splunk Cloud Platform and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two Data Visualization solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Its monitoring is completely automated."
"We only buy the services we need. We don't have to pay for other things we don't."
"Splunk Cloud's most valuable features are log aggregations, dashboarding, business management, reporting, and business controls. Additionally, it has awesome indexing and the solution is always improving"
"It's made searching for data easier. Users like it. We're still in the migration process, but overall, it's a lot easier to use."
"Its interconnectivity with the cloud platforms, such as Azure and AWS, was valuable."
"Splunk has sped up our response and reduced the time we spend manually monitoring any logs for ticketing tools or servers. It saves us around two hours daily."
"The Splunk Cloud Platform has reduced our mean time to resolve. It has easily saved 20 to 30 minutes every time someone gets locked out. We get 10 or 15 instances per day where people get locked out. It definitely saves a few hours per day."
"We haven't had any limitations or problems connecting to our network devices."
"The visibility is amazing with easy dashboard creation."
"Splunk has facilitated the correlation of information security logs to look for incidents which could cause damage to the company's infrastructure, as well as financial losses from leaks."
"Speeds up root cause analysis and can help identify issues that your organization never realized were occurring."
"Exporting is a good feature. It helps me out when I have to do reports. I do a lot of exporting and crunching of the numbers. Dashboards are okay for showing to the leadership, but for doing statistics and updating tickets, the export feature is very beneficial for me."
"The most valuable aspect of the solution is the dashboard. It's very intuitive."
"You can check up on security from the dashboards."
"It helps us uncover bottlenecks in the network."
"Its dashboard is valuable. If you have a good knowledge of how to create a dashboard, you can create any dashboard related to cybersecurity. If fine-tuned, the alarms that are triggered for instant review are also very valuable and useful."
"The dashboards should be easier to customize."
"The only thing that is missing from Splunk Cloud is the command-line interface."
"There is sometimes no documentation or updated documentation available."
"Its stability and performance can be better. Very rarely does a day go by when we do not see an error in the console, such as a health check error. Because it is cloud-hosted, we do not have access to the backend to figure it out ourselves. We are reliant on their support to figure it out, and a couple of days later, the error comes back or it is a different error. It is a never-ending cycle of support tickets. Their support is also not great."
"In the case of knowledge objects, even a Splunk admin does not have access to delete them. If we want to remove a knowledge object, we need to contact Splunk support and raise a case. After that, they delete it. They should give us access to delete knowledge objects."
"Splunk currently manages the components, which restricts our ability to access them directly."
"The only thing I would say is an issue is the cost. It matches other products. The costs can be justified for the value that we gain. The entire threat analysis stack should come in a bundle. If the cost was matchable with other products I think Splunk would pick up in the market."
"They need to provide more training options."
"There is a definite learning curve to starting out."
"Although the technical support is adequate, there is still room for improvement."
"They should make data onboarding easier."
"Make it easier to include roles and user controls, as it is horrible now."
"The threat detection system has room for improvement."
"Sometimes the communication with support happens with multiple staff. They should reduce the time to resolution."
"The pricing can be better."
"The implementation and the scanning of the logs can be difficult."
Splunk Cloud Platform is ranked 3rd in Data Visualization with 37 reviews while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 251 reviews. Splunk Cloud Platform is rated 8.0, while Splunk Enterprise Security is rated 8.4. The top reviewer of Splunk Cloud Platform writes "Does not require backend maintenance, is easily integrated and utilized". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Splunk Cloud Platform is most compared with Wazuh, Fortinet FortiAnalyzer, AppInsights, Check Point Security Management and Panther, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel. See our Splunk Cloud Platform vs. Splunk Enterprise Security report.
We monitor all Data Visualization reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.