Splunk Enterprise Security Reviews & Product Details

Splunk ES is very helpful in seamless integration and automation, Data analytics, Investigation, Log source onboarding, dashboard, SPL, ease of search, use-case modification/fine-tuning, you name it. Every task and job in Splunk ES is perfect. Its vendor support is very responsive. Splunk ES has ease of implementation and integration. Review collected by and hosted on G2.com.

Apart from cost, no one dislikes Splunk ES. Due to its costly services, most organizations use other cloud-native security solutions. Recently, one of our clients also proposed another security solution over Splunk ES. so that's cost is the main disadvantage of Splunk ES in my opinion. Review collected by and hosted on G2.com.

Splunk ES is easy to manage and understard even if you are new with SIEMs. The workflows are easy to follow and the language the splunk uses is easy to learn. Also, it has integration with anything so you can ingest logs from pretty much everything you can think of. Review collected by and hosted on G2.com.

Might be very expensinve depend of how much data you are ingesting. Review collected by and hosted on G2.com.

Easy-to-use platform and integrate with different devices Review collected by and hosted on G2.com.

The licensing model based on event consumption and the new owner Review collected by and hosted on G2.com.

The simplified UX is what makes Splunk/Splunk Enterprise Security (ES) seperate from all other competitors. The vast range of data connectors in Splunkbase, simplified architecture, granular level of customization options, out of the box data models and complete coverage of MITRE Att&ck are some of the prime features and services offered by Splunk ES. The data model acceleration, notable events, dashboards and wide range of apps & addons makes searching and data transformation tasks really easy. The customer support is great for any type of issues you might be facing. Review collected by and hosted on G2.com.

The licensing model and cost is bit difficult to understand and manage. Review collected by and hosted on G2.com.

The ease of integration, visualisation and alert creation. Data handling and customisation. Minimalistic maintenance Review collected by and hosted on G2.com.

There are nothing much to dislike here. But I can say search speed will be a bit of issue for me when it is overloaded unless we are using optimal queries Review collected by and hosted on G2.com.

It is easy to use and quick to collect multiple event and data log with best intrusion dection capability. Easy to integrate and quick to customize dashboard and the initial implementation process is also very easy. Review collected by and hosted on G2.com.

Advanced security settings not easy especially when new with the system. The support team deseves merit for being helpful and always available when in need. Review collected by and hosted on G2.com.

One thing I really love about Splunk ES is a very robust and intuitive security platform that has been a game-changer platform when it comes to revolutionizing Cybersecurity. I like it offers advanced threat detection with ability to detect sophisticated threats by correlating data from multiple sources.

Real-time monitoring and alerting which alerts us during critical security events such as suspicious network traffic or any issues occurring without us knowing.

It also offers real-time threat response which helps us to swiftly detecting and responding to security threats on time before they affect our business processes or systems or apps.

Monitoring log activity for potential security incidents.

Amazing and proactive customer support team.

Intuitive UI for investigation which is pretty easy to use. Review collected by and hosted on G2.com.

I have experienced that sometimes the events tab doesn't show logs.

Slow interface incase of high data volume. Review collected by and hosted on G2.com.

One notable aspect of Splunk ES that I find particularly commendable is its extensive array of integration options with various platforms. Furthermore, the inclusion of the adaptive response feature significantly enhances the efficiency and effectiveness of SOC analysts, streamlining their workflows and contributing to a more seamless experience. Review collected by and hosted on G2.com.

One drawback of Splunk ES lies in its implementation complexity, which appears to be comparatively higher when juxtaposed with other SIEM solutions. Additionally, the associated cost is positioned at a premium level in comparison to the majority of SIEM offerings. This may pose a challenge for organizations seeking a more straightforward deployment process and a cost-effective SIEM solution. Review collected by and hosted on G2.com.

Splunk has every aspect of security integration like plugins and also some development software from third party . Review collected by and hosted on G2.com.

Costly and for EPS also takes charges little bit high rather than its competitite product. For 500 workstation integration its good but less than that it suggest to use thier data monitoring and analysis tool. Review collected by and hosted on G2.com.

The best thing is, we can integrate this with other tools as well and it provide proper and nice view of logs with correct time stamp really enjoy working on and it's really helpful for me in finding trades and troubleshooting for part as well. Thanks for helping me out in all expects of cyber security as a part of cyber security team we are on very critical tools so we need to work on it. Thank you all. Review collected by and hosted on G2.com.

Overall, it's a very nice product provide a very granular view of a log or alert but it sometime it lacks for graphical presentation and export export of logs in proper way Review collected by and hosted on G2.com.