We compared Splunk Enterprise Security and Check Point Security Management across several parameters based on our users' reviews. After reading the collected data, you can find our conclusion below:
Features: Splunk Enterprise Security stands out for its efficiency, extensive integration options, and powerful search functionality. Users say Splunk is a highly scalable and customizable solution. Check Point Security Management is praised for its centralized management features, user-friendly interface, and extensive monitoring capabilities.
Room for Improvement: Splunk users recommended improvements in AI capabilities, user-friendliness, and analytics. Check Point Security Management could improve by simplifying the migration of security policies, optimizing performance, and expanding its management API. Other pain points include threat tracking and documentation.
Service and Support: While some users found Splunk support to be responsive and helpful, others reported slow response times and a lack of expertise. Check Point Security Management's customer service is widely praised for being knowledgeable, supportive, and reliable. Although some users had problems with inexperienced agents and coordination issues, the overall support experience was positive.
Ease of Deployment: Some users thought Splunk Enterprise Security was easy to deploy, while others found it challenging and needed assistance from Splunk engineers or third-party integrators. Check Point Security Management is generally seen as easy to set up if the user has some expertise.
Pricing: Some users consider Splunk Enterprise Security to be expensive, but others said the price is reasonable. A few users expressed concerns about the cost of scaling up the solution and managing large volumes of data. Check Point Security Management is seen as a solid investment, offering flexibility and a good value for the price.
ROI: Users said that it’s challenging to calculate an ROI for Splunk Enterprise Security, and the return varies depending on individual circumstances. While some users have observed a substantial ROI, others have not actively explored or been engaged in ROI conversations. Check Point users said the solution offers a steady ROI over time.
"We can easily push the policies to any of our gateways."
"The solution is ideal for use and deployment in a large infrastructure environment."
"The control is granular, so you can set policy profiles for different organizational profiles."
"The support is pretty incredible. Check Point has support rep programs that go all the way up to putting one of their own people in your business to help you. Then, they have support programs. If you're an expert, you just need to be able to download updated files and stuff. They have support programs like that, too."
"The firewall's blades are the solution's most valuable feature."
"The company uses software called Harmony. Check Point integrates nicely, whether on an endpoint or mobile device. It integrates well with the firewall and can give me reports that I can check without going to an online portal."
"The features we like and find the most valuable are the ways we can manage the policy, create objects, and drag and drop objects in our daily operation. It makes our daily operation on the firewall management much easier than going, for example, to one firewall, then going to the other."
"Check Point Security Management Server offers a wide range of security features, including firewall, intrusion prevention, VPN, application control, and threat prevention capabilities."
"Three features stand out for me: the SDK for writing Python, the customizable and adaptable diagnostic dashboard, and the optimizer for collecting data."
"Integrity with many vendors: This simplifies the implementation and integration with different devices"
"Compared to IBM QRadar, Splunk Enterprise Security offers faster alert resolution."
"The data representation options in the dashboards are excellent."
"The technical support is among the best in the market."
"Aggregation searches have reduced time and difficulty of identifying trends and conditions which need to reviewed."
"The ability to analyze huge amounts of sales data and accurate prediction of sales forecasting is the most valuable feature."
"The most valuable features of Splunk Enterprise Security are its high-performance data collection, flexible query language, and its versatility across the organization."
"I guess it lacks in providing visibility of the many incidents."
"Support is the main area that they need to improve. Our support experience is not very smooth. We are based in Africa, and we don't know whether it is because of our region. I would like a feature where there is a workflow to provide authorization to some users before they're able to create and apply rules. Such a feature should be integrated with the management. It should not be in the box that comes with it."
"The reporting should be improved in future releases. It needs to be very explicit. This is very important."
"Installing a policy takes a very long time to complete."
"It also offers compatibility with third-party security solutions, however, it is not a lot. This needs to be improved."
"The graphical interface is nice but it is a bit heavy."
"I like that the Compliance software blade is available for free with the Security Management server purchase, but it is free for only one year - after that you have to buy an additional license to continue using it. I think such an important feature is vital for the management server, and should not be licensed separately."
"I would like to bind users to their network, as well as their local office machine."
"Splunk could improve its default machine-learning models. Also, Splunk Enterprise's native threat intelligence isn't that good. I prefer a custom threat intelligence model."
"Most of my interaction is with the user community, which is how Splunk wants it. When I need help, that community is very hit or miss."
"It needs integration with a configuration management solution."
"This is not really a monitoring solution."
"Its search or filtering capability is nice, but it can be improved. It is currently a bit complicated, and it should be simplified. If we can write the search filter in a more simplified way, it would be better."
"The case management area of the ES could be improved. The ability to move cases through various stages and states. The ability to close a case would be key improvement."
"It does not give us permission to implement on-premise so we implement them on the cloud."
"The historical data extraction needs improvement. I would like the capability of taking data and having it trend longer."
More Check Point Security Management Pricing and Cost Advice →
Check Point Security Management is ranked 9th in Log Management with 55 reviews while Splunk Enterprise Security is ranked 1st in Log Management with 227 reviews. Check Point Security Management is rated 8.8, while Splunk Enterprise Security is rated 8.4. The top reviewer of Check Point Security Management writes "Great DDoS protection, high availability, and useful firewall rule implementation". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Check Point Security Management is most compared with Wazuh, Fortinet FortiAnalyzer, IBM Security QRadar, LogRhythm SIEM and Splunk Cloud Platform, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Microsoft Sentinel and Elastic Security. See our Check Point Security Management vs. Splunk Enterprise Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.