• Home
  • LogicMonitor vs. Splunk Enterprise Security

LogicMonitor vs Splunk Enterprise Security comparison

Cancel
You must select at least 2 products to compare!
LogicMonitor Logo
LogicMonitor
Read 25 LogicMonitor reviews
5,645 views|3,148 comparisons
100% willing to recommend
Splunk Logo
Splunk Enterprise Security
Read 251 Splunk Enterprise Security reviews
23,657 views|19,419 comparisons
92% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
IT Infrastructure Monitoring
May 2024
Executive Summary

We performed a comparison between LogicMonitor and Splunk Enterprise Security based on real PeerSpot user reviews.

Find out what your peers are saying about Zabbix, Datadog, Auvik and others in IT Infrastructure Monitoring.
To learn more, read our detailed IT Infrastructure Monitoring Report (Updated: May 2024).
Download the complete report
772,679 professionals have used our research since 2012.
Featured Review
Vinil Vijayan
Reliable with good monitoring features and excellent support
We didn't have a monitoring tool previously, so we monitored via independent components. Once we implemented LogicMonitor, we gained a centralized... Read more →
Anonymous User
Provides insights to customers about what their users are doing and alerts them to anomalies
The solution improves our customers' integrations. They really want insights into what their users are doing. They want to be alerted to anomalies,... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature is the visualization of the data that it is collecting. I have used many products in the past and they tend to roll up the data. So, if you're looking at data over long periods of time, they start averaging the data, which can skew the figures that you're looking at. With LogicMonitor, they have the raw data there for two years, if you are an enterprise customer. If you are looking at that long duration of data, you're seeing exactly what happened during that time.""Whenever we reach out to our customers, we give LogicMonitor as a dashboard to them so they don't need to monitor the hardware side separately. For example, if my service is running on their hardware X, that means they don't need to monitor hardware X and our services too. LogicMonitor has the capability of monitoring their hardware as well as our services. This is how LogicMonitor helps us.""We get full visibility into whatever the customer wants us to monitor and we get it pretty rapidly. That is very important. Only having certain metrics that other platforms will give you out-of-the-box means you only get a small picture, a thumbnail picture. Whereas with LogicMonitor, you get the entire "eight by 10 picture", out-of-the-box. Rather than some availability metrics, you get everything. You get metrics on temperature, anything related to hardware failure, or up and down status.""The solution’s overall reporting capabilities are pretty powerful compared to ones that I have used previously. It seems like it has a lot of customizations that you can put in, but some of the out-of-the-box reports are useful too, like user logon duration and website latency. Those type of things have been helpful and don't require a lot of, if any, changes to get useful content out of them. They have also been pretty easy to implement and use.""Having a full team at LogicMonitor for support is super helpful as they are available all the time to answer any questions you may have.""The most valuable feature of LogicMonitor is the infrastructure monitoring capability.""It is easy to set up and monitor an entire facility. This is crucial because we have around 80 facilities that require monitoring. LifePoint is a hub-and-spoke environment, so it is essential to understand all of the WAN interfaces.""LogicMonitor improved on-premises infrastructure monitoring in several ways. One key feature was dynamic resource allocation, although we didn't utilize it much in our system. The main functionalities we benefited from were email alerts, network mapping, and dashboards."

More LogicMonitor Pros →

"The alerts are very effective.""Capability to expand the functionality through custom code for data inputs, commands, visualization, alerts, and machine learning.""It is very scalable.""You can check up on security from the dashboards.""It provides a risk score for each object, device, or user. We can then take action if they are at a higher risk.""The completeness of the solution is what we like the most.""Splunk Enterprise Security is a standard solution providing good customer service and partnership.""The level of robustness on offer is very good."

More Splunk Enterprise Security Pros →

Cons
"The process of upgrading some of the collectors has been a little bit confusing. I need to understand that better.""LogicMonitor's reporting capabilities definitely could use an improvement. We have made do with the dashboarding and done what we can to make that work for our customers. However, there are definitely customers who would like a PDF or some kind of report along those lines, where we have been utilizing other tools to provide them. The out-of-the-box LogicMonitor reporting is the only thing that we have been less than impressed with.""There is a lack of automation, especially in terms of remediating problems. The problem is seen and identified, but there is a need and a gap where LogicMonitor can help us automate the remediation of the problem.""One thing that could be really better is the mapping. Auvik is really good at it. They have a really nice way to give you a visual representation of your network, but in LogicMonitor, this functionality is not as powerful and as good as Auvik.""There are some very specific things that need improvement in LogicMonitor. One is the lack of formatting for customized alerts, particularly the delivery of them to our email channel. We'd also like to see further customization of dashboards. Finally, something that is specific to us as an MSP that uses LogicMonitor, is white-labeling or skinning of the product, so we can make it look more customer-focused for our customers.""The ease of use with data source tuning could be improved. That can get hairy quickly. When I reach out for help, it's usually around a data source or event source configuration. That can get challenging.""We would like to see more functionality around mapping of topologies, in terms of networks. An improvement that we would like to see is added functionality to get more detail out of mapping. For example, if the LogicMonitor Collector identifies a connection between two network endpoints, it would be great to actually see which ports are connecting the two endpoints together. That functionality is something we greatly desire. It would actually make our documentation more dynamic in the sense that we wouldn't need to manually document. If this is something that the platform could provide, then this would be a great asset.""I'd like to see more automation in the tool, especially around remediation."

More LogicMonitor Cons →

"Splunk can be an expensive solution. Technical support could be improved as well.""I haven't found a way for me to create my own plugins and integrate them into Splunk, but this isn't necessarily a limitation; it could simply be a lack of knowledge on my part.""Its setup is a little bit complex for a distributed environment. Their support can also be better. If we miss the response for more than a week, they usually close the case. Sometimes, it can take us more than a week to reply.""The tool itself is very difficult to configure. It's great for its number of inputs, for the different types of systems devices, and things that it could collect information from. To actually make good use of it, you need a fairly dedicated team of people that have some reasonably good programming or modeling skills to be able to do the things that you need to do with it. Whereas a lot of the other tools are better packaged for that, and so require a lot less training and a lot less dedication.""If it could be made available as a service, this would be much better than as a product.""There can be a bit of complexity around some fields during the initial setup.""Given the ever-increasing number of threats, I would like Splunk to update its threat signatures more frequently.""The implementation and the scanning of the logs can be difficult."

More Splunk Enterprise Security Cons →

Pricing and Cost Advice
  • "It's affordable. The price we get per license is a lot cheaper than what we were getting with some of the other tools. There are other monitoring tools out there that are cheaper, but what you get with LogicMonitor, out-of-the-box, makes it worth the cost."
  • "It definitely pays for itself in the amount of time we're not spending with false errors or things that we haven't quite dealt with monitoring. It has been good cost-wise."
  • "I know we are saving at least several hundred thousand dollars in that we're not buying Cisco Prime."
  • "We pay for the enterprise tech support."
  • "We have definitely seen ROI with LogicMonitor. We used to provide 24/7 IT support for our users. We have since been able to change to operating just within normal business hours for IT support, and LogicMonitor was a large part of being able to accomplish that."
  • "It can handle scaling. It is like any other cloud service. There is a cost associated with scaling, so we currently don't monitor all of our environments. We monitor just the customer-facing production environments. It would be nice if we could monitor our dominant environments, but we will have to pay a lot more due to the scaling issue. So, there's a balance there between what we would like and what we are willing to pay for."
  • "The licensing side of things with LogicMonitor, is quite simple. It is one license per device. Recently, you have additional licenses with things, like LM Cloud, which does confuse things a bit. Because it's very hard to estimate how many licenses you're going to need until you're monitoring it, so it's quite hard through that process to give a customer price to say, "This is how much this services will cost.""
  • "As a managed services provider, the licensing model that LogicMonitor provides us is excellent. We are able to scale up and scale down as needed. The pricing is reasonable for the amount of features and support that they provide."

    • More LogicMonitor Pricing and Cost Advice →

  • "Pricing and licensing is quite expensive. But for the value the product provides, it seems at par in the market."
  • "Although Splunk is an expensive product, it is designed to be utilized across your organization in order to maximize your ROI and lower your TCO."
  • "It is not cheap."
  • "Splunk Enterprise becomes extremely expensive after the 20GB/month license."
  • "You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive."
  • "Splunk licensing model might seem expensive but with all the gain in functionalities you will have compared to traditional SIEM solutions I think it’s worth the price."
  • "Pricing is pretty fair."
  • "While licensing can be a concern, there are ways to reduce the licensing costs including filtering some events."

    • More Splunk Enterprise Security Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which IT Infrastructure Monitoring solutions are best for your needs.
    See Recommendations
    772,679 professionals have used our research since 2012.
    Comparison Review
    Vinod Shankar
    HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
    We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are based on Gartner Magic Q which is what Organizations typically use to select SIEM vendors. The Vendors mentioned here in the deck are : 1. HP ArcSight 2. McAfee Nitro 3. IBM QRadar 4. Splunk SIEM 5. RSA Security Analytic 6. LogRhythm. SIEM Technology Space SIEM market analysis of the last 3 years suggest: Market consolidation of SIEM players (25 vendors in 2011 to 16 vendors in 2013)Only products with technology maturity and a strong road map have featured in leaders quadrant.HP ArcSight & IBM Q1 Labs have maintained leadership in SIEM industry with continued technology upgradeMcAfee Nitro has strong product features & road map to challenge HP & IBM for leadershipHPArcSight The ArcSight Enterprise Threat and Risk Management (ETRM) Platform is an integrated set of products for collecting, analysing, and managing enterprise Security Event information ArcSight Enterprise Security Manager (ESM): Correlation and analysis engine used to identify security threat in real-time& virtual environments ArcSight Logger: Log storage and Search solution ArcSight IdentityView: User Identity tracking/User activity monitoring ArcSight Connectors: For data collection from a variety of data… Read more →
    Questions from the Community
    What is the best network monitoring software for large enterprises?
    Top Answer:It actually depends on the exact purpose or requirements. Some tools are better for only network devices while others are better from a cloud monitoring or APM monitoring perspective.  You can check… more »
    Read all 18 answers   →
    What do you like most about LogicMonitor?
    Top Answer:LogicMonitor helps us prevent potential downtime. It's pretty good. It generates low-level warnings that aren't necessarily preemptive but can still alert us to issues we should investigate. These… more »
    Read all 33 answers   →
    What is your experience regarding pricing and costs for LogicMonitor?
    Top Answer:The solution is not expensive.
    Read all 32 answers   →
    What SOC product do you recommend?
    Top Answer:For tools I’d recommend:  -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also,… more »
    Read all 12 answers   →
    What is a better choice, Splunk or Azure Sentinel?
    Top Answer:It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log… more »
    How does Splunk compare with Azure Monitor?
    Top Answer:Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we… more »
    Read all 2 answers   →
    Ranking
    13th
    out of 108 in IT Infrastructure Monitoring
    Views
    5,645
    Comparisons
    3,148
    Reviews
    8
    Average Words per Review
    687
    Rating
    8.6
    1st
    out of 80 in Security Information and Event Management (SIEM)
    Views
    23,657
    Comparisons
    19,419
    Reviews
    85
    Average Words per Review
    894
    Rating
    8.4
    Comparisons
    Learn More
    LogicMonitor
    Splunk
    Overview

    LogicMonitor, a unified observability platform, brings together comprehensive monitoring capabilities and enables observability across data centers, public/private clouds, and applications. LogicMonitor provides correlation, context, and clarity to understand the business impact and causes of complex IT incidents.

    LogicMonitor is a SaaS-based unified observability platform that enables today’s digital enterprises to adopt a cloud-ready operating model for effectively meeting key business demands. The solution provides clarity across hybrid enterprise IT, and brings diverse IT and development teams together to solve complex problems. In addition, it enables IT to innovate faster while improving operations efficiency to the critical IT services they deliver. 

    LogicMonitor unifies IT teams around a single platform that allows for the collection, analysis, contextualization, and exploration of observable data in hybrid settings.

    LogicMonitor Features

    LogicMonitor has many valuable key features. Some of the most useful ones include:

    • A single source of truth for data onboarding, management, and exploration across infrastructure, apps, and IT stacks.
    • A robust ecosystem of community-supported LM modules to accelerate onboarding.
    • Provides an intuitive interface with dashboarding, reporting, and data exploration to regularly and effectively monitor and troubleshoot.
    • AIOps capabilities enable anomaly detection, early warning detection, and rapid root cause analysis for services, applications, and infrastructure.
    • Monitors across networks, systems, storage, and other IT infrastructure.
    • OpenTelemetry-based application microservices with business context and vendor independence.
    • Logging to aid infrastructure monitoring, anomaly identification, and troubleshooting.

    LogicMonitor Benefits

    There are many benefits to implementing LogicMonitor. Some of the biggest advantages the solution offers include:

    • Instantly resolve issues across DevOps and ITops teams with a single source of truth. Anticipate and discover problems early, eliminate dead ends in troubleshooting, and deploy more frequently with the confidence that hybrid IT is under control.

    • By evaluating IT data in real time for anomaly detection, you can gain predictive insights. Identify potential flaws by analyzing billions of metrics and data points from hundreds of IT devices and resources.

    • Consolidate monitoring across IT infrastructure and apps to save money and reduce risk. By replacing several point products, you can save money on licensing and maintenance.

    • Consolidate enterprise-scale and innovative capabilities into a single platform.

    • To enhance productivity, the solution offers complete visibility across the technological stack with insights, context, and correlation.

    Reviews from Real Users

    LogicMonitor stands out among its competitors for a number of reasons. Two major ones are its robust root cause analysis and its event correlation tool. PeerSpot users take note of the advantages of these features in their reviews: 

    Valentine C., Technical Service Delivery Manager at Sparx Solutions, writes of the solution, “As a support resource, I don't need to use multiple platforms to connect to a device to further investigate the issue. It is all consolidated. From that perspective, it saves time because a resource now only needs to use one platform.” He adds, “I will rate it as a solid nine out of 10.”

    Robert V., Teamlead at i-LEVEL ICT Solutions, notes, “One thing that's very valuable for us is the technical knowledge of the people who work with LogicMonitor. We looked at several products before we decided to use LogicMonitor, and one of the key decision-making points was the knowledge of the things that they put in the product. It provides real intelligence regarding the numbers that you see on the product, which makes it easy for us technical people to troubleshoot.”

    Splunk Enterprise Security is a SIEM, log management, and IT operations analytics tool. The solution provides users with the ability to secure their information and manage their data in the cloud, data centers, or other applications. Splunk Enterprise Security also offers visibility from different areas, levels, and devices, rather than from a single system, thus, providing its users with flexibility. Splunk Enterprise Security can monitor data and analyze, detect, and prevent intrusions. This benefits users as it provides alerts to possible intrusions, helps users to be proactive, and reduces risk factors. 

    Full visibility across your environment

    Break down data silos and gain actionable intelligence by ingesting data from multicloud and on-premises deployments. Get full visibility to quickly detect malicious threats in your environment.

    Fast threat detection

    Defend against threats with advanced security analytics, machine learning and threat intelligence that focus detection and provide high-fidelity alerts to shorten triage times and raise true positive rates.

    Efficient investigations

    Gather all the context you need and initiate flexible investigations with security analytics at your fingertips. The built-in open and extensible data platform boosts productivity and drives down fatigue.

    Open and scalable

    Built on an open and scalable data platform, you can stay agile in the face of evolving threats and business needs. Splunk meets you where you are on your cloud journey, and integrates across your data, tools and content.

    Sample Customers
    Kayak, Zendesk, Ted Baker, Trulia, Sophos, iVision, TekLinks, Siemens
    Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
    Top Industries
    REVIEWERS
    Computer Software Company33%
    Comms Service Provider25%
    University8%
    Educational Organization8%
    VISITORS READING REVIEWS
    Computer Software Company22%
    Financial Services Firm10%
    Manufacturing Company7%
    Healthcare Company7%
    REVIEWERS
    Computer Software Company19%
    Financial Services Firm14%
    Government9%
    Energy/Utilities Company8%
    VISITORS READING REVIEWS
    Financial Services Firm15%
    Computer Software Company14%
    Government9%
    Manufacturing Company8%
    Company Size
    REVIEWERS
    Small Business37%
    Midsize Enterprise30%
    Large Enterprise33%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise13%
    Large Enterprise60%
    REVIEWERS
    Small Business31%
    Midsize Enterprise12%
    Large Enterprise58%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise13%
    Large Enterprise68%
    Buyer's Guide
    IT Infrastructure Monitoring
    May 2024
    Download Free Report
    Find out what your peers are saying about Zabbix, Datadog, Auvik and others in IT Infrastructure Monitoring. Updated: May 2024.
    DOWNLOAD NOW
    772,679 professionals have used our research since 2012.

    LogicMonitor is ranked 13th in IT Infrastructure Monitoring with 25 reviews while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 251 reviews. LogicMonitor is rated 9.0, while Splunk Enterprise Security is rated 8.4. The top reviewer of LogicMonitor writes "We went from nothing to full visibility across our internal and external estates of equipment". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". LogicMonitor is most compared with ScienceLogic, SolarWinds NPM, Zabbix, OpsRamp and SCOM, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel.

    We monitor all IT Infrastructure Monitoring reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.