We performed a comparison between Check Point IPS and Splunk User Behavior Analytics based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Protection in real-time is very good. It helps us detect things on time and make decisions to improve perimeter security."
"There's an automatic update after every 2 hours which makes sure that the database is up to date and providing zero-day vulnerability protection."
"I can easily monitor all of our connected devices and I get instant notification of reconnections and new connections, which removes some of the monitoring burden."
"The Check Point IPS module allows me granularity in creating rules."
"The Check Point IPS feature I find the most valuable is the firewall. It is great and easy to work with."
"There's less admin burden to detect these threats as Check Point IPS will do it all for you and suggest the best preventive actions to protect the network."
"Among its great features is the ability to detect outgoing malware or extraction of compromised data and stop it, thus safeguarding us by isolating the network, the equipment, or the identity of the affected users."
"This is a very stable product."
"The most valuable features are its data aggregation and the ability to automatically identify a number of threats, then suggest recommended actions upon them."
"The solution appears to be stable, although we haven't used it heavily."
"The solution is extremely scalable. Our customers are regularly scaling up after installing Splunk."
"The most valuable feature is the ability to search through a large amount of data."
"The product is at the forefront of auto-remediation networking. It's great."
"We are really pleased with Splunk and its features. It would be practically impossible to function without it. To provide a general overview of the system, it's important to note that the standard log files are currently around 250 gigabytes per day. It would be impossible to manually walk through these logs by hand, which is why automation is essential."
"The solution is definitely scalable."
"It's straightforward in terms of configuration and troubleshooting and log management and monitoring as well. These are the edge points in addition to it being a modular solution where you can capitalize on your current licenses with extra licensing models, which can match the customer's business requirement and it can help the customer to design or to actually plan for their own roadmap."
"What I would like to improve in IPS would be the capacity of the hardware. I would also like to be able to sort signatures by severity. This would greatly impact how well I can manage my environment."
"The price has room for improvement."
"Threat Prevention policies are not very easily manageable as there are several profiles/policies/etc. Therefore, there are several ways to add exceptions and check the configuration."
"There are a lot of false positives. I would like to see integration with some kind of network detection and response in order to make some automation on IPS configuration."
"The installation documentation has room for improvement."
"Sometimes we had false positives where packages that were legitimate for us were blocked and we had to unblock them through exceptions."
"There is no standalone IPS appliance available."
"Support is the biggest area for improvement."
"In the future I would like to see simplified statistics and analytical threats."
"I'm not aware of any lacking features."
"The correlation engine should have persistent and definable rules."
"The initial setup was complex because some of the configurations that we required needed customization."
"The ability to do more complicated data investigation would be a welcome addition for pros, though the functionality now gives most people what they need."
"It could be easier to scale the solution if you are using it on-premise, not in the cloud."
"The price of Splunk UBA is too high."
"Currently, a lot of network operations need improvement. We still need people to handle incidents. Our vision is to leverage status and convert it directly from the network devices. It would be ideal if we could take action using APIs and API code and remove manual processes."
More Splunk User Behavior Analytics Pricing and Cost Advice →
Check Point IPS is ranked 3rd in Intrusion Detection and Prevention Software (IDPS) with 45 reviews while Splunk User Behavior Analytics is ranked 12th in Intrusion Detection and Prevention Software (IDPS) with 17 reviews. Check Point IPS is rated 8.6, while Splunk User Behavior Analytics is rated 8.2. The top reviewer of Check Point IPS writes "Great for detection and access with the capabilities of defining specific rules". On the other hand, the top reviewer of Splunk User Behavior Analytics writes "Easy to configure and easy to use solution that integrates with many applications and scripts ". Check Point IPS is most compared with Darktrace, Palo Alto Networks URL Filtering with PAN-DB, Palo Alto Networks Advanced Threat Prevention, Trend Micro TippingPoint Threat Protection System and Cisco NGIPS, whereas Splunk User Behavior Analytics is most compared with Darktrace, Microsoft Defender for Identity, IBM Security QRadar, Varonis Datalert and Cynet. See our Check Point IPS vs. Splunk User Behavior Analytics report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
