Splunk Review

Log aggregation helps us quickly detect widespread threats, but it can be resource-heavy


What is our primary use case?

We use Splunk for log analysis and security monitoring.

How has it helped my organization?

Splunk allows us to look at logs from different groups within NIH and see if there's a widespread threat or issue.

What is most valuable?

The most valuable feature is the log aggregation, being able to scan through all of the logs.

What needs improvement?

Queries are not always as easy or straightforward as they might be, so it can be difficult to figure out what you need to look for.

In the next release of this product, I would like to see it offer more recommendations as to what needs to be done.

For how long have I used the solution?

We have been using Splunk for between two and three years.

What do I think about the stability of the solution?

In terms of stability, the product seems to work just fine. We haven't had any problems with it.

What do I think about the scalability of the solution?

It can be somewhat of a resource hog; some of the scans can take a while. We do plan to increase our usage in the future.

How are customer service and technical support?

Technical support for Splunk is good.

How was the initial setup?

The initial setup is relatively straightforward.

What about the implementation team?

There were consultants involved in the deployment.

What other advice do I have?

I would rate this solution a seven out of ten.

Which deployment model are you using for this solution?

On-premises
**Disclosure: I am a real user, and this review is based on my own experience and opinions.
More Splunk reviews from users
...who work at a Financial Services Firm
...who compared it with LogRhythm NextGen SIEM
Learn what your peers think about Splunk. Get advice and tips from experienced pros sharing their opinions. Updated: March 2021.
473,792 professionals have used our research since 2012.
Add a Comment
Guest