We compared Dynatrace and Splunk Enterprise Security across several parameters based on our users' reviews. After reading the collected data, you can find our conclusion below:
Features: Dynatrace is highly regarded for its advanced AI engine and ability to identify infrastructure automatically. It also offers session replay and impressive visualization features. Splunk Enterprise Security stands out for its efficiency, extensive integration options, and powerful search functionality.
Room for Improvement: Some Dynatrace reviewers feel the learning curve is a little steep, and the documentation could be clearer. Users say that Dynatrace should offer more security options and improve integration with other tools. Splunk users recommended improvements in AI capabilities, user-friendliness, and analytics.
Service and Support: Users generally found Dynatrace's customer service to be satisfactory, but some said that the response times and documentation have room for improvement. While some users found Splunk support to be responsive and helpful, others reported slow response times and a lack of expertise.
Ease of Deployment: Dynatrace's setup is simple, efficient, and requires minimal technical configuration. It takes a few hours at most. Some users thought Splunk Enterprise Security was easy to deploy, while others found it challenging and needed assistance from Splunk engineers or third-party integrators.
Pricing: Users say Dynatrace is expensive. Some noted that the licensing model is complicated and not transparent. Some said they struggled to accurately predict the number of units needed. Some users consider Splunk Enterprise Security to be expensive, but others said the price is reasonable. A few users expressed concerns about the cost of scaling up the solution and managing large volumes of data.
ROI: Dynatrace users said the solutions saved them money and reduced downtime. Users said that it’s challenging to calculate an ROI for Splunk Enterprise Security, and the return varies depending on individual circumstances. While some users have observed a substantial ROI, others have not actively explored or been engaged in ROI conversations.
"RCA (Root Cause Analysis) and the PurePaths, where you can see the stack trace, are helpful in finding problems."
"PurePaths help us drill down to the root cause of problems and escape the war room."
"We can see all the degradation of services in real-time, then we know exactly what the root cause of degradation is."
"Dynatrace alerts are based off of deviations from baseline metrics, which it is constantly collecting."
"The autodiscovery of service intercommunication has saved countless man hours and is dynamically updated when new services are added."
"The UEM feature, User Experience Management: Understanding how users are perceiving the application and then connecting that back into back-end systems to understand why things have gotten slow and then dealing with things."
"Dynatrace's new AI stuff really out shines its competitors. "
"Whether it is the server, database, network, or application, Dynatrace provides a consistent unambiguous view of performance."
"The solution allows easy gathering and ingestion of the data."
"Internal tracking is helpful because we do not like to deal with multiple ticketing systems, and I am not a fan of ServiceNow. We are able to keep everything internal and utilize Enterprise Security."
"Its dashboard is valuable. If you have a good knowledge of how to create a dashboard, you can create any dashboard related to cybersecurity. If fine-tuned, the alarms that are triggered for instant review are also very valuable and useful."
"The most valuable feature is the incident dashboard, and the extensive use of correlation searches, which isn't available with a standard Splunk search package. This feature is important to me because it enables SOC analysts to do their job more efficiently and be able to investigate or mediate incidents at a faster pace."
"I like the ease with which dashboards can be created."
"Splunk works based on parsing log files."
"Splunk provides immediate visibility into key business metrics and new business insights that deliver immediate value."
"Our clients use the solution to find any threats or vulnerabilities inside their environment."
"Session export for offline analysis, like it was in AppMon, would be also nice."
"I think at times AppMon has given some folks some headaches from a configuration standpoint, and a maintenance standpoint, but aside from that I don't think they've really had many headaches with it."
"We have a load testing team, they completely rely on the reporting for analyzing the data. They should have a template to create a report and they should have something to auto-deliver the report into your email box."
"The web interface, in some cases, is a little ambiguous to use."
"Configuring nodes and agents should be more like plug and play."
"They need to develop how to capture the JDBC and MBeans metrics."
"In AppMon, the performance could be improved. That is the one thing I am most interested in."
"Graphically, it is not good."
"One issue is that we are getting a lot of false positives. We are trying to reduce them by customizing the default rules, changing thresholds, and using white-listing and black-listing. It's getting better and better as a result. But they need to build components that would reduce the false positives."
"The solution could improve by making it more business analysis oriented. The way it is now is designed more for developers."
"I would like to see an updated dashboard. The dashboard is a little out-of-date. It could be made prettier."
"Its search or filtering capability is nice, but it can be improved. It is currently a bit complicated, and it should be simplified. If we can write the search filter in a more simplified way, it would be better."
"It currently has limited default rules and customizations. If they can concentrate more on the compliance part and the security information part, it would be helpful. The platform part is good, but it requires many features from the security aspect."
"Endpoint access is the only issue I can think to mention, even though the endpoint access we have with Cisco is fine."
"It needs more thoroughly tested releases. Every new big version (6, 7, etc.) has had so many bugs that it makes me wary of customers upgrading right away."
"Some of the search functions can be better. There has been a lot of talk at the conference about the update of SPL before each iteration. That will be a lot of help."
Dynatrace is ranked 4th in Log Management with 340 reviews while Splunk Enterprise Security is ranked 1st in Log Management with 228 reviews. Dynatrace is rated 8.8, while Splunk Enterprise Security is rated 8.4. The top reviewer of Dynatrace writes "AI identifies all the components of a response-time issue or failure, hugely benefiting our triage efforts". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Dynatrace is most compared with Datadog, New Relic, AppDynamics, Azure Monitor and Elastic Observability, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Elastic Security, Microsoft Sentinel and Datadog. See our Dynatrace vs. Splunk Enterprise Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
As far as I know, Splunk is used as a syslog system only and DynaTrace is an application monitoring system. So you will use Splunk to collect events/logs from servers and devices and you will use DynaTrace to monitor applications and send alerts to end users, provide dashboards etc.
Dynatrace is for APM / ITOM solution. Dynatrace trace can inspect the .net, Java, PHP Program. Splunk is for Log management and SIEM which Dynatrace does not focus on.
They are two different function products.
We use Dynatrace for deep dive transaction tracking to find performance issues of applications. We use Splunk various log analysis tasks mainly in the area of security.
It really depends on the use case. Dynatrace can actually enrich the data collected by Splunk and Dynatrace has an out of the box connection to Splunk. If the goal is application performance and end-user analytics then Dynatrace is the better solution. If the goal is security and threat analytics then Splunk is the right solution.
Splunk and Dynatrace are two different solutions. Most organizations use both of them. Splunk can aggregate logs from Dynatrace. It also depends on what is the purpose of the usage. If you intend to measure end to end application performance and the application logs are instrumenting the metrics, then Splunk alone can do the job. It also allows you to correlate other events like firewall, network and other dependent applications/services.
Dynatrace and Splunk are two different solutions that provide insight from different perspectives. Dynatrace is installed on servers/applications to provide APM and Splunk is more a log and data analytics solution that processes logs (traps/syslog/Windows Events/Firewall Logs/etc.).
Dynatrace provides application performance management (APM), artificial intelligence for operations (AIOps), cloud infrastructure monitoring, and digital experience management (DEM), with products for the information technology departments and digital business owners of medium and large businesses. The company's services include performance management software for programs running on-premises and in the cloud. This software manages the availability and performance of software applications and the impact on user experience in the form of deep transaction tracing, synthetic monitoring, real user monitoring, and network monitoring.
Splunk (the product) captures, indexes, and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards, and visualizations.
Splunk makes machine data accessible across an organization by identifying data patterns, providing metrics, diagnosing problems, and providing intelligence for business operations. Splunk is a horizontal technology used for application management, security and compliance, as well as business and web analytics.
Ref - from experience, their own websites and other related sites.