Splunk Primary Use Case

Engineercb47
Engineering Manager at a manufacturing company with 10,001+ employees
It is mostly centralized logging, a whole bunch of BI metrics, and an aggregation point, which we have adulterated for some PCI data. It does meet our use case for the most part. View full review »
Colt Rodgers
Infrastructure Engineer at Zirous, Inc.
Our primary use case of Splunk has been on the implementation side for clients. Splunk has proven, on multiple occasions, to be extremely useful in the proactive monitoring of clients' hardware, networking, and security operations. Some use cases that we have implemented include, but are not limited to, proactive account lockouts based on machine learning of a typical person's average number of failed login attempts, aggregation of a servers logs in order to predict downtime/maintenance/hardware failures quite accurately, as well as helping administrators of all sorts to gain a full picture of their environments under a single screen. View full review »
Kenn Brodhagen
DevOps Engineer at Amplify
We use it for application log monitoring. It is a logging product. Our application generates log files, then we upload them to Splunk. We run their agent on our EC2 instances in AWS, then we view the logs through their product, and it is all stored on their infrastructure. View full review »
Find out what your peers are saying about Splunk, IBM, LogRhythm and others in Security Information and Event Management (SIEM). Updated: October 2019.
373,262 professionals have used our research since 2012.
Tony Fabrikant
CTO at IHS Markit
We use it for logging and troubleshooting. View full review »
Gavan McLaughlin
Application Engineer at Expedia
The primary use case is for log analytics. Although, we have been using it as a hammer which hits all the nails. We have sort of overused it in some areas where it doesn't need to be used. View full review »
Enterpri4059
Enterprise Architect at a tech services company with 10,001+ employees
We use it for log aggregation. If you have a large number of devices, you need to aggregate log data to make more sense of it for parsing, troubleshooting, and metrics. This is all we use it for. If I need to track logs for certain application, I will push all of those logs to Splunk so I can run reports on those logs. It is more about what you are trying to do with it and what you need from it. View full review »
Gregg Woodcock
Consultant at Splunxter, Inc.
Security. We have built SIEM solutions three times from the ground up (not ES) using Splunk for some of the largest companies in the world. View full review »
Presal0998
Presales Manager at a tech services company with 11-50 employees
We use it for security incident event management and for IT service intermediates. View full review »
Direct9887
Director of Information Security with 201-500 employees
* SIEM * Security information * Event management View full review »
Sam Osborn
Software Engineer at Tableau Software
We use it for searching logs in a production environment. View full review »
Shaveta Datta
Technical Project Manager at Aricent
Our primary use case was really as a client organization, like the government and the IT industries, we are in the telecoms sector. We analyze security reports. We use Splunk to order them and put them in a system and we use the various kinds of integration with Oracle Cloud which is helpful. View full review »
Michael Kaericher
Application Engineer at a financial services firm with 5,001-10,000 employees
Security analysis to identify issues and for use in incident handling. Correlating logs across over 1000 servers with different operating systems and applications logs to provide security insights. View full review »
Yosef Tavin
Devops Engineer at Controlup
We use Splunk for a few different use cases: * We package it as part of one of our on-premise software offerings which includes our in-house customized dashboards. * We use it for Application Monitoring of many of our back-end systems. Monitoring is done completely through Splunk by forwarding application and other logs to Splunk and many configured customized alerts and dashboards for the Ops, Dev, product, and management teams. * We created a custom anomaly detection data model to monitor the activity of our back-end services on an hourly basis relative to the past three months of activity. View full review »
Mui Tran
Project Manager at Idemitsu Oil & Gas
We need something to collect all our logs in a centralized solution. We have several servers but we don't have any log collection system. View full review »
AmirJalilzadeh
Security Operation Center Analyst at Sadad
Splunk is a SIEM, a Security Information and Event Management solution. It is used, for example, for monitoring security logs and security information in companies and organizations. It is also used for correlation, meaning making policies, for detecting/monitoring attacks, and the like; for monitoring security logs, security events, preventing hackers from attacking. It's really for business continuity. View full review »
Jerry Castille
Chief Architect at Pathmaker Group
We primarily use it for SIEM. View full review »
Omar Sánchez (Mr.Tech)
Information Security Advisor, CISO & CIO, Docutek Services at Docutek Services
I work in the HIPAA industry. I work at a healthcare company in Puerto Rico. HIPAA requires us to go over security risks. Our use case right now is to be compliant. In our hierarchy, we have 1000 servers and 16,000 endpoints. We also have 100 entry points and 3000 VPN connections. It's huge. View full review »
Rajesh Mandale
Splunker at a tech services company
The primary use case is to analyse and monitor big data, creating various dashboards, alerts, etc. View full review »
Christopher Mooney
Incident Manager at a tech services company with 201-500 employees
We started using Splunk to serve as a SIEM. In addition to correlating security information, we have begun to use it as a developer and customer advocate by analyzing user behaviors and system response times. View full review »
Tomi Juslin
QA Lead at a financial services firm with 11-50 employees
We use it mostly for log monitoring, and also for trying to raise alarms. View full review »
reviewer718113
IT Analyst at a energy/utilities company with 1,001-5,000 employees
In the beginning, we just wanted to collect the logs from the different devices, like the nano storage, Linux, Windows, and VMware. We tried to get the uniform solution to collect and analyze all of the system logs. View full review »
Roman Burdakov
Engineering Manager at Cengage Learning
We use it for logging, essentially for auditing and troubleshooting errors in production and finding out what happened. I have used the product personally for five years and at my current company for a year and a half. View full review »
Ken Orr
Security Engineer at a tech services company with 501-1,000 employees
We primarily use it to correlate logs throughout the enterprise for both searching and use in investigations. View full review »
Security1747
Security Architect at a comms service provider with 10,001+ employees
We use it for log analysis and alerting, and our stock analysts use it. I have used the product for more than five years. Then, in the cloud, I have used it for probably a year. It scales better in the cloud than on-premise. View full review »
Director158d
Director at a tech services company with 10,001+ employees
* Log mining * Log analysis View full review »
Seyfallah Tagrerout
IT & Cloud Architect at AiM Services
Our primary use case is reporting from the Windows administration. We have SCCM that configures the manager to update every PC workstation and server in the company. We have a lot of PCs and servers in our environment and we use Splunk for the gathering of the PCs and Windows service. We also use it to collect information from the security tools, for example, to provide the management information about how the everyday connection is. View full review »
MS Alam
System Administrator at Abdullah Al-Othaim Markets
* Searches the logs for all network devices and server. * Monitors clients' hardware, networking, and security operations. * It is good for the administrator to use it when maintaining the whole IT Infrastructure. View full review »
Reviewer0932
Project Manager at a comms service provider with 10,001+ employees
My primary use case for Splunk is for log file visualization and monitoring alert management. View full review »
leadsyst865026
Lead Systems Architect at a energy/utilities company with 10,001+ employees
Splunk provided me a platform to analyze both infrastructure loads and application performance for quick troubleshooting saving a load of time. Versatile apps at Splunkbase helped me to better configure and enhance visualization of the KPIs in my application. View full review »
Madison Moss
Splunk Architect at a aerospace/defense firm with 5,001-10,000 employees
Central repository for log collection and analysis in a complex environment. We have used it for a variety of use cases involving SIEM and operational support. View full review »
Colin Jackson, CISSP, MMIS, GMON
Information Security Engineer/Architect at a tech services company
We use Splunk for operations, application monitoring, and security. We are both cloud and on-premise based, so it has been very versatile for us. View full review »
Engineer9887
Engineer at a integrator with 11-50 employees
Our primary use case is for monitoring and cybersecurity. View full review »
Rudi Wicaksono
Architecture and Security Team Leader at Offshore North West Java (ONWJ)
We were using Splunk for our networking to know exactly what kind of the traffic was going from one network to another network because we had a lot of the connections on other sites. View full review »
Marc Chan
Net Sec at a tech services company with 11-50 employees
Our primary use case of this solution is as a centralized lab collection. View full review »
seniorcl859464
Senior Cloud Operations Analyst at a tech vendor with 1,001-5,000 employees
Splunk is our monitoring and investigating Swiss Army knife for key applications and systems. If we run it, we Splunk it. View full review »
Niket Nilay
Technical Lead at a tech services company with 10,001+ employees
We use Splunk for infrastructure monitoring, application monitoring and in the security space for our organization as well as for our customers. View full review »
SenNetwork4433
Senior Network & Security Architect at a insurance company with 501-1,000 employees
Splunk is our central locale for cybersecurity and protection. View full review »
Nathan Plamondon
Splunk Administrator at a university with 10,001+ employees
We use Splunk primarily to provide our security and ops groups with important insights to more efficiently make decisions and take action. View full review »
Scott Odle
Business Intelligence Developer at a university with 10,001+ employees
* Monitoring IT and other processes for a large university. * Leveraging alerts and dashboards to detect and predict security breaches and other events. View full review »
Michael Linde
Senior Network Security Engineer at a media company with 1,001-5,000 employees
Although my company uses Splunk extensively, my use case is primarily the Enterprise Security add-on. View full review »
Christina Spires
Systems Analyst Staff - SW Eng Compute Analytics Lead at a wireless company with 10,001+ employees
IT service analytics: * Server machine data * Monitoring data * Alerting data * ITSI KPIs * Real-time reporting * Month-over-month reporting. View full review »
reviewer859770
consultant at a non-profit with 1,001-5,000 employees
We use Splunk for both monitoring and SIEM. Our security operations group uses Splunk to track user accounts which may have been compromised as well as follow those accounts through the organization. View full review »
Mick
Sr. Production Support Analyst at a energy/utilities company with 501-1,000 employees
Operational intelligence monitoring for several different systems. We collect logs from applications and performance data from hardware, as well as information pulled from databases. View full review »
reviewer867936
User at a financial services firm with 10,001+ employees
With the use of Splunk, we were able to identify a brute force attack against a "switch" network device. An external attacker attempted to connect multiple times using multiple usernames. Splunk was able to detect these attempts and immediately blocked these attempts. View full review »
Clara Merriman
Business Intelligence Engineer at a hospitality company with 501-1,000 employees
Primary use is business intelligence. View full review »
Noah Woodcock
Data Scientist Intern at a tech vendor with 1-10 employees
I work with Splunk, as a contractor, so I use it in many different areas. Most often it is used to get performance insights on applications or servers. Recently, I have used it in more of an endpoint security mindset. View full review »
Luiz Fernandes
Técnico Judiciário at a government with 1,001-5,000 employees
We use it to do SIEM. View full review »
reviewer860955
Java Technical Lead at a insurance company
* Log monitoring and alerts * Looking up information * Dashboards for nice, fast information about various application servers. View full review »
Robert Pollard
Director of IT at a government with 1-10 employees
We primary use Splunk for log aggregation and search across multiple systems with Splunk Enterprise Security layered on top. View full review »
Gangikunta Somanath
Principal Engineer at a retailer with 10,001+ employees
Security and incident management, which is helpful when organizing the data from different systems and running analysis on all the data together. View full review »
Enterprise677
BS Systems Engineer at a tech services company with 501-1,000 employees
We used it to create a full security operations center (SOC) for our IT department by adding all network and security devices, the AD, and mail servers to it. Then Splunk started to receive their logs, it analyzed them, and provided useful reports. View full review »
reviewer870792
Senior Security Engineer
* IT Ops * Security * Compliance Many IT groups and non-IT groups use the product to gain insights into their environments. View full review »
Reviewer4612
Enterprise Architect and Business with 5,001-10,000 employees
It helps increase our productivity. View full review »
M Ghuyoor Syed
Sr. Manager Information Security with 1,001-5,000 employees
Log collection and search. View full review »
reviewer905577
Principal Consultant with 51-200 employees
* Cybersecurity defense * Web app monitoring * VMware monitoring View full review »
reviewer1048674
Cyber Analyst with 501-1,000 employees
Testing for insider threat behavior. View full review »
Emad Ul Haq
Network & Telco Lead at a energy/utilities company with 1,001-5,000 employees
* Log collection and analysis * Reporting for the whole enterprise environment. View full review »
Find out what your peers are saying about Splunk, IBM, LogRhythm and others in Security Information and Event Management (SIEM). Updated: October 2019.
373,262 professionals have used our research since 2012.
Sign Up with Email