We performed a comparison between Splunk Cloud Platform and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two Data Visualization solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's made searching for data easier. Users like it. We're still in the migration process, but overall, it's a lot easier to use."
"Index manager is most valuable because we do not have to bother about internal storage. It is all managed by the Splunk team."
"Splunk has sped up our response and reduced the time we spend manually monitoring any logs for ticketing tools or servers. It saves us around two hours daily."
"The Splunk search is powerful compared to similar solutions. We get millions of data points within seconds."
"Splunk Cloud Platform's search modes are a powerful feature."
"This is a complete log reporting tool."
"The solution is user friendly and has extensive uses."
"The most valuable feature of Splunk Cloud Platform is the alerting feature."
"We saw the granularity that we could get from Splunk far exceeded what we already had. We had the ability to have our security team really focus on the platform and stay within the platform, but they could correlate with a variety of other stakeholders, and our stakeholders were growing."
"Easy to deploy and simple to use."
"Aggregation searches have reduced time and difficulty of identifying trends and conditions which need to reviewed."
"The most valuable aspect of the solution is the dashboard. It's very intuitive."
"Alerts when a server is malfunctioning, monitors external attacks, and takes action to stop spreading viruses."
"The product is good, it satisfies our customers."
"We are much faster finding and addressing issues with Splunk."
"Integration with the cloud is pretty important and good for us. We found the integration with a lot of tools, not all tools yet, valuable. It does make the transfer of data, log files, and other things easier for us."
"I have not come across anything that I would consider missing as such. If anything, sometimes we have dashboards that would not go into the dark mode. It is a minor issue, but it is the only thing that I wish was there. The dark mode would definitely help."
"Splunk currently manages the components, which restricts our ability to access them directly."
"Every time they launch new versions, we experience a few bugs. The most recent version had a couple of bugs in the databases. We contacted the vendor and got assistance solving these bugs, so the environment is more stable."
"They can streamline the process of creating custom apps."
"Customization could be simplified."
"Support could be improved."
"They need to provide more training options."
"Its stability and performance can be better. Very rarely does a day go by when we do not see an error in the console, such as a health check error. Because it is cloud-hosted, we do not have access to the backend to figure it out ourselves. We are reliant on their support to figure it out, and a couple of days later, the error comes back or it is a different error. It is a never-ending cycle of support tickets. Their support is also not great."
"Cybersecurity and infrastructure monitoring have room for improvement."
"The monitoring aspect of Splunk could be improved. We have to do some queries to get as much information as CrowdStrike or other solutions provide. If you run a big query, you will see a delay. That is the only concern we have because it will take some time if you query large data sets."
"Some of the search functions can be better. There has been a lot of talk at the conference about the update of SPL before each iteration. That will be a lot of help."
"We had some connections issues with the solution at the beginning."
"This is a costly solution."
"Sometimes the communication with support happens with multiple staff. They should reduce the time to resolution."
"Splunk could add more ways to manage archiving and storage. There isn't a web interface. You can do this on the SaaS version, but the on-premise platform doesn't have this option. It has other things but no option for remote NAS. I would like to have a personal web interface where I can specify how long logs should be stored. To have this readily available on the web, you need to adjust some settings on the backend. That is tricky."
"Its interface could be improved."
Splunk Cloud Platform is ranked 3rd in Data Visualization with 34 reviews while Splunk Enterprise Security is ranked 2nd in Security Information and Event Management (SIEM) with 228 reviews. Splunk Cloud Platform is rated 8.0, while Splunk Enterprise Security is rated 8.4. The top reviewer of Splunk Cloud Platform writes "Does not require backend maintenance, is easily integrated and utilized". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Splunk Cloud Platform is most compared with Wazuh, Check Point Security Management, AppInsights, Fortinet FortiAnalyzer and Panther, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Microsoft Sentinel and Elastic Security. See our Splunk Cloud Platform vs. Splunk Enterprise Security report.
We monitor all Data Visualization reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.