Splunk User Behavior Analytics Reviews

Filter by:Reset all filters
industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
rating
Loading...
Filter Unavailable
Real User
Information Security Manager at a financial services firm with 201-500 employees
Mar 20 2019

What is most valuable?

The most valuable feature is the ability to search through a large amount of data.

How has it helped my organization?

It hasn't really improved the way our organization functions. It has been neutral. We have, however, seen a decrease in… more»

What needs improvement?

The feature set isn't too bad as is. My biggest complaint is the way they do pricing.

What's my experience with pricing, setup cost, and licensing?

Pricing is the problem with Splunk. You can never know the pricing for next year. Every single time you adjust to… more»

If you previously used a different solution, which one did you use and why did you switch?

Our previous solution was a really limited version of what Splunk is. Splunk is the number-one leader in this area, so we… more»

What other advice do I have?

I wouldn't buy Splunk because of the cost, because you can't budget for it. You think you can and then you find out later… more»
Real User
Director of Technology at a insurance company with 10,001+ employees
May 09 2019

What is most valuable?

The most valuable feature is being able to take data and put it into other systems so that we could see the output and see where we need to apply… more»

How has it helped my organization?

We have 81000 desktops and we could take logs off those machines and see patterns, and from those patterns, we've been able to reduce the outages… more»

What needs improvement?

I'm not that close to the actual hands-on usage to suggest improvements. One thing I would say is that they should continue to expand it on more… more»

If you previously used a different solution, which one did you use and why did you switch?

We have logs everywhere and trying to look at those logs on an individual basis is quite cumbersome, so taking a tool like this that brings all the… more»

What other advice do I have?

If I had to rate Splunk from one through ten, one being the worst and ten being the best, I would give it a nine. There's always room for… more»
Find out what your peers are saying about Splunk, Darktrace, Cisco and others in Intrusion Detection and Prevention Software. Updated: April 2019.
340,124 professionals have used our research since 2012.
Ahmed Zard
Real User
BS Systems Engineer at a tech services company with 201-500 employees
Jan 03 2019

How has it helped my organization?

In Egypt, we have phones that provide wide internet services to the customer and the customer wants to know what the customer satisfaction and service was. Then, they post on their… more»

What needs improvement?

Splunk can improve the UBA. There are occasional bugs, but they're not so much of an issue. We can definitely improve the features, but it depends on the customer's needs. We need to… more»

What's my experience with pricing, setup cost, and licensing?

I hope we can increase the free license to be more than five gig a day. This would help people who want to introduce a POC or a demo license for the solution.

What other advice do I have?

It is a helpful tool, especially for customers who deal with the service industry.
Real User
Security Operations Center Manager
Mar 27 2019

What is most valuable?

Being able to look at data rapidly to make a decision. We have seen a measurable decrease in the mean time to detect and… more»

How has it helped my organization?

Because of some of the visualizations that we utilize, we are able to understand strange, unusual traffic on our networks.

What needs improvement?

I would like a bit more flexibility on how to configure it. It is still a little locked down, as compared to some open… more»

What's my experience with pricing, setup cost, and licensing?

There are additional costs associated with the integrator.

If you previously used a different solution, which one did you use and why did you switch?

We invested in this solution because our previous way of doing business was not scalable.

What other advice do I have?

It helps us make decisions faster.
Consultant
IT Consultant at Red Hat
Mar 24 2019

What is most valuable?

The most valuable features are its data aggregation and the ability to automatically identify a number of threats, then suggest recommended actions upon them.

How has it helped my organization?

Right now we are working with them as partners, so is more of an integration play. I am not personally using it internally. There is another team that is using it as a consumer. For… more»

What needs improvement?

I would love to see more integration with other solutions and the ability to perform some actions straightaway from the dashboard.

What other advice do I have?

There is a lot of potential in the product. We have seen the product grow over time. There is potential to grow a bit more and become more proactive than it is right now. First assess… more»

Articles

User Assessments By Topic About Splunk User Behavior Analytics

Find out what your peers are saying about Splunk, Darktrace, Cisco and others in Intrusion Detection and Prevention Software. Updated: April 2019.
340,124 professionals have used our research since 2012.

Splunk User Behavior Analytics Questions

Splunk User Behavior Analytics Projects By Members

What is Splunk User Behavior Analytics?

Splunk User Behavior Analytics is a behavior-based threat detection is based on machine learning methodologies that require no signatures or human analysis, enabling multi-entity behavior profiling and peer group analytics – for users, devices, service accounts and applications. It detects insider threats and external attacks using out-of-the-box purpose-built that helps organizations find known, unknown and hidden threats, but extensible unsupervised machine learning (ML) algorithms, provides context around the threat via ML driven anomaly correlation and visual mapping of stitched anomalies over various phases of the attack lifecycle (Kill-Chain View). It uses a data science driven approach that produces actionable results with risk ratings and supporting evidence that increases SOC efficiency and supports bi-directional integration with Splunk Enterprise for data ingestion and correlation and with Splunk Enterprise Security for incident scoping, workflow management and automated response. The result is automated, accurate threat and anomaly detection.
Also known as
Caspida, Splunk UBA
Splunk User Behavior Analytics customers
8 Securities, AAA Western, AdvancedMD, Amaya, Cerner Corporation, CJ O Shopping, CloudShare, Crossroads Foundation, 7-Eleven Indonesia

Sign Up with Email