• Home
  • Everbridge IT Alerting vs. Splunk Enterprise Security

Everbridge IT Alerting vs Splunk Enterprise Security comparison

Cancel
You must select at least 2 products to compare!
Everbridge Logo

Everbridge IT Alerting

Read 22 Everbridge IT Alerting reviews
1,251 views|759 comparisons
100% willing to recommend
Splunk Logo

Splunk Enterprise Security

Read 228 Splunk Enterprise Security reviews
25,711 views|20,955 comparisons
92% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
IT Alerting and Incident Management
March 2024
Executive Summary

We performed a comparison between Everbridge IT Alerting and Splunk Enterprise Security based on real PeerSpot user reviews.

Find out what your peers are saying about PagerDuty, Atlassian, Everbridge and others in IT Alerting and Incident Management.
To learn more, read our detailed IT Alerting and Incident Management Report (Updated: March 2024).
Download the complete report
768,886 professionals have used our research since 2012.
Featured Review
Anonymous User
Helps in identifying potential impact and allows us to see where our assets are in relation to a risk event
It's much easier to determine the impact, especially as we're developing a crisis management program. One of the things that the program was... Read more →
Anonymous User
Helps improve our incident response, is robust, and user-friendly
CloudWatch, the native AWS monitoring tool, offers limited metric detail and a complex navigation experience across different data streams. In... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"We have been able to use it to track and verify that people are on the bridge.""I manage the platform, and I don't really use it. The scheduling aspect of it is valuable where you create your groups and then either manually or via API call, you can initiate an alert. It'll look at the schedule and only contact those people who are on-call. So, it takes the guesswork out.""With SaaS, we can implement in other regions without having to physically go to there.""You can program in rotations, shifts, and scenarios of different kinds and it allows you to page multiple people, or people in sequence, or a group of people simultaneously.""The most valuable feature is the support calendars.""You can configure the tool to escalate if no action is taken within a certain time period. That avoids sending off an alert that nobody deals with and where nobody knows that nobody has dealt with it.""Valuable features include incident management and ease of integrations.""I personally love VCC because I just think there needs to be more data to support it so we can be more proactive and easily assess the impact. So, I appreciate the visual aspect, but it has to have the data to support it. It has proved very useful, particularly because we have a GSOC that's not technically 24/7. We do have an 800 number that people call 24/7. If something happens, they can easily send Everbridge a notification to activate the team off hours. It is useful in that respect too. We use it in conjunction with teams, but off-hours and for additional people outside of the core team, we use Everbridge, which is useful."

More Everbridge IT Alerting Pros →

"The integration is seamless with many devices and operating systems.""We are much faster finding and addressing issues with Splunk.""Splunk has machine learning which is a valuable feature.""We are using Microsoft 365 and we're using the Exchange Mail Service. It's good for monitoring that in particular.""Splunk has give us the capability to easily track problems and their status.""Splunk would be my choice for the presentation layer because it comes with inbuilt reports and a dashboard that you can customize.""It is easy to use in any environment.""Splunk has a wide range of features that customers use to find and analyze all kinds of logs."

More Splunk Enterprise Security Pros →

Cons
"Their integration capabilities are still progressing, but not quite where we'd like to see them yet. They're moving there with that orchestration capability where they're seeing the potential of an API-first mentality. So instead of trying to build custom connections into everything, you open up APIs to allow other systems to talk to IT Alerting and allow IT Alerting to talk to other systems. There is room for improvement, but they get it.""I would like to have a little bit more flexibility in the member portal.""The incident templates can get complex and hard to troubleshoot, so it helps to focus on keeping it simple.""There is some room to improve the initial-rollout functions which are a little bit painful.""It could use more enhancement type integrations, but no improvements to functionality are needed.""One thing that could be improved would be to enable the mobile app to more easily display published calendars via the Member Portal. Currently, it is quite difficult.""With their templates, you can only have a maximum of three phases: new, updated, and resolved. It's not always that easy when we open up a call, that we identify who we need, page out, and we're good. A lot of time it requires multiple page-outs. Being restricted to those three phases, there's no way to say, "I want this variable to be persistent, and this one to not be." ...I would like to see a bit more flexibility and tighter control over the templates and the variables you can create.""The ability for members to change their schedules, and change the person their swapping with, could use improvement. The GUI is a little tough to navigate. It's not very straightforward when someone is trying to change schedules."

More Everbridge IT Alerting Cons →

"One issue is that we are getting a lot of false positives. We are trying to reduce them by customizing the default rules, changing thresholds, and using white-listing and black-listing. It's getting better and better as a result. But they need to build components that would reduce the false positives.""The documentation is in definite need of improvement.""Sometimes the communication with support happens with multiple staff. They should reduce the time to resolution.""The price has room for improvement.""The initial setup is complex, but this is necessary. We needed to take into consideration how to direct log files from thousands of machines to Splunk, and how to ingest those files.""The cluster environment should be improved. We have a cluster. In the Splunk cluster environment, in the case of heavy searches and heavy load, the Splunk cluster goes down, and we have to put it in the maintenance mode to get it back. We are not able to find the actual culprit for this issue. I know that cluster has RF and SF, but it has been down so many times. There should be something in Splunk to help users to find the reason and the solution for such issues.""This is not really a monitoring solution.""Splunk can improve its third-party device application plugins."

More Splunk Enterprise Security Cons →

Pricing and Cost Advice
  • "When we did our contract, we did a three year contract with fixed pricing. We locked in the pricing for three years. As we have grown, we locked in pricing for additional units of employees."
  • "Their call structure is based on how many people are IT alert people and who is on the calendar, and the cost will be driven by those numbers versus if you are using it for the non-IT alert. As you look at the competition and other vendors, make sure you truly understand your cost structure with them."
  • "They are one of the top three most expensive products. I also understand if you are going to use them for IT alerting, it is worth it. They are competitively priced, but the IT alerting is the differentiator. The way that they market it and push it out. That is their premier function."
  • "Pricing is reasonable."
  • "For us, the pricing is a good value. I can't say whether or not their list pricing looks favorable to everyone who's checking, but I can say that the process of sourcing and procurement with them was very professional, comfortable, and friendly. The negotiations were done well on both sides, and in the end, I'd say the price was very effective... I think that people will find that Everbridge is a great listener and is willing to meet in the middle."
  • "Their pricing is a good value and very reasonable. They are very upfront about their pricing. There is nothing confusing about it."
  • "We thought the base product was pretty reasonable. It can pricey once you start adding stuff on."
  • "It saves us a lot of time."

    • More Everbridge IT Alerting Pricing and Cost Advice →

  • "Pricing and licensing is quite expensive. But for the value the product provides, it seems at par in the market."
  • "Although Splunk is an expensive product, it is designed to be utilized across your organization in order to maximize your ROI and lower your TCO."
  • "It is not cheap."
  • "Splunk Enterprise becomes extremely expensive after the 20GB/month license."
  • "You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive."
  • "Splunk licensing model might seem expensive but with all the gain in functionalities you will have compared to traditional SIEM solutions I think it’s worth the price."
  • "Pricing is pretty fair."
  • "While licensing can be a concern, there are ways to reduce the licensing costs including filtering some events."

    • More Splunk Enterprise Security Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which IT Alerting and Incident Management solutions are best for your needs.
    See Recommendations
    768,886 professionals have used our research since 2012.
    Comparison Review
    Vinod Shankar
    HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
    We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are based on Gartner Magic Q which is what Organizations typically use to select SIEM vendors. The Vendors mentioned here in the deck are : 1. HP ArcSight 2. McAfee Nitro 3. IBM QRadar 4. Splunk SIEM 5. RSA Security Analytic 6. LogRhythm. SIEM Technology Space SIEM market analysis of the last 3 years suggest: Market consolidation of SIEM players (25 vendors in 2011 to 16 vendors in 2013)Only products with technology maturity and a strong road map have featured in leaders quadrant.HP ArcSight & IBM Q1 Labs have maintained leadership in SIEM industry with continued technology upgradeMcAfee Nitro has strong product features & road map to challenge HP & IBM for leadershipHPArcSight The ArcSight Enterprise Threat and Risk Management (ETRM) Platform is an integrated set of products for collecting, analysing, and managing enterprise Security Event information ArcSight Enterprise Security Manager (ESM): Correlation and analysis engine used to identify security threat in real-time& virtual environments ArcSight Logger: Log storage and Search solution ArcSight IdentityView: User Identity tracking/User activity monitoring ArcSight Connectors: For data collection from a variety of data… Read more →
    Questions from the Community
    What do you like most about Everbridge IT Alerting?
    Top Answer:It's mainly for mass notification and pooling of contacts. Pooling of customers is valuable.
    Read all 18 answers   →
    What is your experience regarding pricing and costs for Everbridge IT Ale...
    Top Answer:It's a seven out of ten for us in terms of pricing. We've just gone through a process of looking at other solutions.
    Read all 14 answers   →
    What needs improvement with Everbridge IT Alerting?
    Top Answer:I know that we get frustrated at the capacity of SMS messages. It's not very long, and if you want to send a long message, they end up sending you a link to the rest of the message. It's not easy to… more »
    Read all 18 answers   →
    What SOC product do you recommend?
    Top Answer:For tools I’d recommend:  -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also,… more »
    Read all 12 answers   →
    What is a better choice, Splunk or Azure Sentinel?
    Top Answer:It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log… more »
    How does Splunk compare with Azure Monitor?
    Top Answer:Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we… more »
    Read all 2 answers   →
    Ranking
    9th
    out of 54 in IT Alerting and Incident Management
    Views
    1,251
    Comparisons
    759
    Reviews
    3
    Average Words per Review
    632
    Rating
    8.0
    2nd
    out of 80 in Security Information and Event Management (SIEM)
    Views
    25,711
    Comparisons
    20,955
    Reviews
    63
    Average Words per Review
    958
    Rating
    8.4
    Comparisons
    Learn More
    Everbridge
    Splunk
    Overview

    Everbridge IT Alerting is a closed-loop cyber security and incident response automation solution that helps organizations respond to IT Incidents faster and improve teams’ response performance by automating communication, collaboration, and orchestration processes for ServiceOps, IT Security Ops, DevOps, and Disaster Recovery Ops. As a FedRamp-certified solution, IT Alerting capabilities include in-depth scheduling/calendars, interactive & analytical reporting, on-call scheduling, automated escalation, response workflow automation, recording, and much more. The solution is offered as a cloud service based on the secure, highly available, resilient, and globally scalable Everbridge CEM platform.

    Learn why 5,400+ enterprise customers trust Everbridge (NASDAQ (EVBG)) with their IT Response Automation Management and IT Alerting solutions; visit ITAlerting.com to learn more or request a demo.

    Need Integration with your ITOM, ITSM, SIEM tools?

    Plug Everbridge IT Alerting directly into your ITOM, ITSM, SIEM, IT Monitoring tools including ServiceNow or BMC Remedy with our certified, two-way integrations and automatically contact the on-call IT team members, launch conference bridges and automatically escalate to the senior personnel in case of major IT incidents.

    Splunk Enterprise Security is a SIEM, log management, and IT operations analytics tool. The solution provides users with the ability to secure their information and manage their data in the cloud, data centers, or other applications. Splunk Enterprise Security also offers visibility from different areas, levels, and devices, rather than from a single system, thus, providing its users with flexibility. Splunk Enterprise Security can monitor data and analyze, detect, and prevent intrusions. This benefits users as it provides alerts to possible intrusions, helps users to be proactive, and reduces risk factors. 

    Full visibility across your environment

    Break down data silos and gain actionable intelligence by ingesting data from multicloud and on-premises deployments. Get full visibility to quickly detect malicious threats in your environment.

    Fast threat detection

    Defend against threats with advanced security analytics, machine learning and threat intelligence that focus detection and provide high-fidelity alerts to shorten triage times and raise true positive rates.

    Efficient investigations

    Gather all the context you need and initiate flexible investigations with security analytics at your fingertips. The built-in open and extensible data platform boosts productivity and drives down fatigue.

    Open and scalable

    Built on an open and scalable data platform, you can stay agile in the face of evolving threats and business needs. Splunk meets you where you are on your cloud journey, and integrates across your data, tools and content.

    Sample Customers
    Choice Hotels, Alexion, Navy Federal Credit Union, EastWest Bank, IBM, Core Logic, Paypal, Charter Communications, Lowes, Express Scripts, Finastra, Worldpay
    Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
    Top Industries
    REVIEWERS
    Financial Services Firm26%
    Pharma/Biotech Company16%
    Energy/Utilities Company11%
    Manufacturing Company11%
    VISITORS READING REVIEWS
    Computer Software Company14%
    Financial Services Firm14%
    Government11%
    Healthcare Company10%
    REVIEWERS
    Computer Software Company19%
    Financial Services Firm15%
    Government10%
    Energy/Utilities Company7%
    VISITORS READING REVIEWS
    Financial Services Firm15%
    Computer Software Company14%
    Government9%
    Manufacturing Company7%
    Company Size
    REVIEWERS
    Small Business13%
    Large Enterprise88%
    VISITORS READING REVIEWS
    Small Business16%
    Midsize Enterprise11%
    Large Enterprise73%
    REVIEWERS
    Small Business31%
    Midsize Enterprise12%
    Large Enterprise57%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise13%
    Large Enterprise68%
    Buyer's Guide
    IT Alerting and Incident Management
    March 2024
    Download Free Report
    Find out what your peers are saying about PagerDuty, Atlassian, Everbridge and others in IT Alerting and Incident Management. Updated: March 2024.
    DOWNLOAD NOW
    768,886 professionals have used our research since 2012.

    Everbridge IT Alerting is ranked 9th in IT Alerting and Incident Management with 22 reviews while Splunk Enterprise Security is ranked 2nd in Security Information and Event Management (SIEM) with 228 reviews. Everbridge IT Alerting is rated 8.8, while Splunk Enterprise Security is rated 8.4. The top reviewer of Everbridge IT Alerting writes "We have seen substantial savings with its usage as it drives down our MTTR". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Everbridge IT Alerting is most compared with PagerDuty Operations Cloud, ServiceNow, OnSolve Platform for Critical Event Management and xMatters , whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Microsoft Sentinel and Elastic Security.

    We monitor all IT Alerting and Incident Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.