We performed a comparison between Alert Logic and Splunk User Behavior Analytics based on real PeerSpot user reviews.
Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It improves our security. Before, we didn't have anything scanning our containers. We had software scanning all the physical servers, but we had nothing to scan our containers. With Alert Logic, we can do that."
"The installation and configuration were slick."
"We receive infrastructure security warnings from it. So, we know what is going on and what needs to be addressed."
"The most valuable aspect of Alert Logic is its technology platform. They have SOCs in the US and Europe, giving them global visibility of the threat landscape. They detect and respond to threats in minutes. Their biggest value is human expertise. You're being attacked by a human, and you cannot respond to it unless you have a human on the other side. They have the human and technological resources to respond."
"The initial setup is pretty straightforward."
"Notifications and the detail of notifications are most valuable. It is a user-friendly solution."
"The solution was consistently available, and I cannot recall any instances where it was down."
"While I still have on-premises appliances, I can remotely monitor everything from the cloud, and Alert Logic's ease-of-access features have helped me streamline my workflow and reduce implementation time."
"The solution is extremely scalable. Our customers are regularly scaling up after installing Splunk."
"We are really pleased with Splunk and its features. It would be practically impossible to function without it. To provide a general overview of the system, it's important to note that the standard log files are currently around 250 gigabytes per day. It would be impossible to manually walk through these logs by hand, which is why automation is essential."
"It's straightforward in terms of configuration and troubleshooting and log management and monitoring as well. These are the edge points in addition to it being a modular solution where you can capitalize on your current licenses with extra licensing models, which can match the customer's business requirement and it can help the customer to design or to actually plan for their own roadmap."
"The solution appears to be stable, although we haven't used it heavily."
"It's easily scalable."
"The most valuable features are its data aggregation and the ability to automatically identify a number of threats, then suggest recommended actions upon them."
"This intelligent user behavior analytics package is easy to configure and use while remaining feature filled."
"The most valuable feature is being able to take data and put it into other systems so that we could see the output, and to see where we need to apply our focus."
"We'd like to have triggered alerts sent to us so we see errors quicker."
"The product needs to mature. We don't want to be bombarded with unnecessary issues and have the real ones slip through."
"I would like to see it do initial scans and start capturing data, which it will truly analyze, not just be a reporting system saying, "Here is an email. Here is an email. Here is an email.""
"Alert Logic needs to expand its SOCs to serve more markets, such as the Middle East and Asia. There should be infrastructure that covers more time zones. The company should also develop an EDR that is natively integrated into their solution. Currently, a client must buy another EDR solution like CrowdStrike or Sophos. I think Alert Logic is developing this. Built-in email security could also be developed and integrated."
"They have ideas and email you whatever they find, but they don't have a dedicated security team who will work on an attack or a specific security instance."
"This product needs to mature more. While it is a good product, there are some areas where it needs work."
"As a user involved with the user interface, I believe there is a need to continue improving it based on feedback from our customers."
"The setup process was complex."
"I would like improved downward integration with other tools such as McAfee and other GCP solutions."
"The ability to do more complicated data investigation would be a welcome addition for pros, though the functionality now gives most people what they need."
"It could be easier to scale the solution if you are using it on-premise, not in the cloud."
"We'd like the ability to do custom searches."
"We want to have an automated system for bot hunting that enables us to detect anomalies predictively based on historical data. It would be helpful if Splunk included process mining as an alternative option. We have a threat workflow, but it would be useful if we could supplement that with some process mining capabilities over time."
"The correlation engine should have persistent and definable rules."
"The price of Splunk UBA is too high."
"The initial setup was complex because some of the configurations that we required needed customization."
More Splunk User Behavior Analytics Pricing and Cost Advice →
Alert Logic is ranked 25th in Vulnerability Management with 11 reviews while Splunk User Behavior Analytics is ranked 2nd in User Entity Behavior Analytics (UEBA) with 17 reviews. Alert Logic is rated 8.0, while Splunk User Behavior Analytics is rated 8.2. The top reviewer of Alert Logic writes "Great reporting and session logic with an easy initial setup". On the other hand, the top reviewer of Splunk User Behavior Analytics writes "Easy to configure and easy to use solution that integrates with many applications and scripts ". Alert Logic is most compared with CrowdStrike Falcon Complete, Arctic Wolf Managed Detection and Response, Sophos MDR, Rapid7 InsightIDR and SentinelOne Vigilance, whereas Splunk User Behavior Analytics is most compared with Darktrace, Microsoft Defender for Identity, IBM Security QRadar, Varonis Datalert and Cynet. See our Alert Logic vs. Splunk User Behavior Analytics report.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
