We use Splunk Enterprise Platform as a Security Incident and Event Management (SIEM) tool.
Splunk Enterprise
SplunkExternal reviews
444 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Splunk, incredible big data platform
What do you like best about the product?
The searching abilities are increadbile, the log indexing and speed is pretty much unmatchable to other solutions
What do you dislike about the product?
Searching quiries can get complicted, does require extensive setup and maintance.
What problems is the product solving and how is that benefiting you?
SIEM thats able to solve alot of issues, including all security monitoring, notification and rules on specific keywords, or string of words, the alerts to help with all the activities on the network.
Best log analysis and monitoring tool
What do you like best about the product?
Splunk gives the flexibility to customize the logs to be indexed and also allows a lot of features to extract the log information. Splunk also provies the possibility to create dynamic dashboards with time series and tables with various templates.
Splunk also has the ability to create alerts and reports based on the logs analysis.
Splunk also has the ability to create alerts and reports based on the logs analysis.
What do you dislike about the product?
Splunk some times is very complicated to configure. If not configured rightly may impact the performance of the applications
What problems is the product solving and how is that benefiting you?
Splunk helps to monitor realtomy ecomm sales and application issues by analyzing logs
A customizable solution that can be used as a Security Incident and Event Management (SIEM) tool
What is our primary use case?
What is most valuable?
The most valuable feature of Splunk Enterprise Platform is that it's a customizable solution.
What needs improvement?
Splunk Enterprise Platform needs a bit of tuning, and it would be beneficial if it came with some prebuilt use cases.
Splunk Enterprise Platform should include more integrations with other security tools.
For how long have I used the solution?
I have been using Splunk Enterprise Platform for six years.
What do I think about the stability of the solution?
I rate Splunk Enterprise Platform a nine out of ten for stability.
What do I think about the scalability of the solution?
I rate Splunk Enterprise Platform an eight to nine out of ten for scalability.
How are customer service and support?
The technical support team's initial response is too late.
I rate the solution's technical support a five or six out of ten.
How would you rate customer service and support?
Neutral
How was the initial setup?
The solution's initial setup is average and a little bit tricky. On a scale from one to ten, where one is difficult, and ten is easy, I rate Splunk Enterprise Platform a three out of ten for the ease of its initial setup.
What about the implementation team?
Splunk Enterprise Platform was deployed in a month in our organization.
What's my experience with pricing, setup cost, and licensing?
Splunk Enterprise Platform is an expensive solution.
On a scale from one to ten, where one is cheap, and ten is expensive, I rate the solution's pricing a nine out of ten.
What other advice do I have?
I am working with the latest version of Splunk Enterprise Platform. Splunk Enterprise Platform is deployed on-cloud in our organization.
I recommend that users not expect value from Splunk Enterprise Platform immediately. It might take time to set it up and get any value out of it.
Overall, I rate Splunk Enterprise Platform a nine out of ten.
Best Log Monitoring Tool
What do you like best about the product?
Indexing , correlations and user interfrace are the key feature of splunk and help us to get the logs. Its user friendly and offer free foundation training. easy to integrate with serviceNow to generate alerts for analysis
What do you dislike about the product?
getting data from glacier and processing time of the query
What problems is the product solving and how is that benefiting you?
building use case of security alert and helping us to with system logs and activities. I like feature of log analysis and simple search query
A solution that offers a good analytics part along with great integration capabilities with other applications
What is our primary use case?
My company uses Splunk Enterprise Platform for monitoring and user base filtering.
What is most valuable?
The most valuable feature of the solution is the analytics part. Integration with other applications is another valuable feature of Splunk Enterprise Platform.
What needs improvement?
Splunk Enterprise Platform is already a refined product, so I don't have any recommendations related to areas that need improvement.
The cost of Splunk Enterprise Platform is an area of concern where improvements can be made by bringing down the costs. Product-related, I don't have any feedback.
The support offered by Splunk Enterprise Platform has certain shortcomings that need improvement.
For how long have I used the solution?
I have been using Splunk Enterprise Platform for a few weeks since it was recently deployed in my company. I use the solution's latest version. My company operates as a service provider of the solution.
What do I think about the stability of the solution?
The product's stability is good. Stability-wise, I rate the solution a nine out of ten.
What do I think about the scalability of the solution?
Scalability-wise, I rate the solution a nine out of ten.
Around 5,000 people use the solution. Around 10 to 15 analysts use Splunk Enterprise Platform in my company.
The solution is used on a regular and daily basis in my company.
How are customer service and support?
I am moderately satisfied with the solution's technical support. I rate the technical support an eight out of ten.
How would you rate customer service and support?
Positive
How was the initial setup?
Splunk Enterprise Platform was easy to implement. I rate the product's implementation phase an eight out of ten, where one is difficult, and ten is easy.
The solution is deployed on an on-premises model.
The solution's deployment phase was carried out over a period of one or two months.
What's my experience with pricing, setup cost, and licensing?
I rate the product's pricing a ten on a scale of one to ten, where one is cheap, and ten is expensive. It is a very pricey tool.
What other advice do I have?
I would recommend the product to those who plan to use it, provided the pricing of the solution is brought down.
I rate the overall product an eight out of ten.
One of the best tools for Dashboards
What do you like best about the product?
We use Splunk to generate dashboards with quantitative graphs for various aspects which helps each of the teams to have more governance other aspects which need attention on.
The correlated data on the dashboards can also be used to deliver presentations to all stakeholders.
The correlated data on the dashboards can also be used to deliver presentations to all stakeholders.
What do you dislike about the product?
At times when we have complex integrations it takes a bit of time for Splunk to display the charts on the dashboard if Splunk comes up with a way to reduce the time taken to populate the data quickly it would be fantastic.
What problems is the product solving and how is that benefiting you?
Splunk is benefitting us in many ways :
Compliance Monitoring
Team Performance Monitoring
Dashboards for Auditing
Dashboards for Delivering Presentations
Correlated data to drive governance on aspects which need more focus
Compliance Monitoring
Team Performance Monitoring
Dashboards for Auditing
Dashboards for Delivering Presentations
Correlated data to drive governance on aspects which need more focus
A platform for monitoring storage, CPU, RAM, Windows logs, and Cisco network logs on large machines
What is our primary use case?
We have around 38 virtual machines, including the desktop. We have filled our gap network. Splunk Enterprise monitors all network layer traffic, starting with Cisco traffic port violations. We are monitoring Windows logs, CPU, RAM, and disk utilization in Windows.
What is most valuable?
Splunk Enterprise is a wireless enterprise application that can be customized based on training. We can add new machines, Spring Forwarders, and whatever else we need to complete the job.
What needs improvement?
We have an enterprise system that we can only use up to 70% capacity. We have no Internet access. To ensure our system runs optimally, we must configure specific rules, such as RAM, CPU, and space utilization alerts. Also, it is tough for us to reach out to Splunk. We have another software called Nessus, which can be used for vulnerability scans to improve and expand our vulnerability management capabilities. We can add a vulnerability management tool and back network traffic monitoring. This would allow us to add everything into a single platform since we currently use multiple applications for eight solutions.
For how long have I used the solution?
I have been using Splunk Enterprise Platform since 2020. We are using the latest version of the solution.
What do I think about the stability of the solution?
The product is stable.
What do I think about the scalability of the solution?
We have 43 users using this platform.
How was the initial setup?
The initial setup is easy. We manage the installation of Splunk Enterprise Platform. On the first installation day, there are extensive procedures from Splunk and Honeywell. They are explaining how to install the software using Honeywell automation. They have provided a lot of documentation, but it is incomplete. It takes them two days to complete the installation, and then they train us for another week.
What's my experience with pricing, setup cost, and licensing?
We are using 11GB per day. Since I did all the analysis to determine how much we are consuming, we are currently utilizing around 5GB out of 11 GB. Therefore, we can reduce our usage from 11GB/day to 5GB/day. We reached out to Splunk, and they confirmed that this is possible. They also mentioned that there are commercial benefits to signing a longer-term contract. We are currently working on reducing our usage from 11GB/day to 5GB/day.
What other advice do I have?
We have annual automation for our automated building and availability building. The maintenance is easy. We will do a vulnerability scan. Then, we need to ask someone from the Splunk team to confirm that upgrading to this version of Windows or applying monthly or weekly patches will not impact the Splunk application. It's not easy or feasible to reach out to Splunk directly. Splunk is an enterprise software platform that monitors storage, CPU, RAM, Windows logs, and Cisco network logs on large machine setups. I suggest Splunk to anyone with these needs. Overall, I rate the solution an eight out of ten.
Splunk very useful for log monitoring
What do you like best about the product?
Easy to install and manage Splunk. Non technical person can also use Splunk.
What do you dislike about the product?
Number of nodes in cluster increase as data increases
What problems is the product solving and how is that benefiting you?
Data visualisation and log filtering
Versatile, adaptable, and applies to many use cases
What is our primary use case?
I use the platform to collect data and report to the clients that need reporting from Splunk. I work on gathering big data from all over my company and exporting it into proper reports.
What is most valuable?
What I find the most valuable about the platform is its DB Connect and its versatility in general. I also like its adaptability to any use case when it comes to collecting and analyzing data.
What needs improvement?
It is hard to say in what areas the platform could be improved since it's very versatile and applies to many use cases. It already has the functioning vetted into the core architecture of the product. In my opinion, there is no need for additional features because it already has many, and I haven't used them all.
For how long have I used the solution?
I've been using Splunk Enterprise Platform for two and a half years. I am a Splunk software architect and Splunk is the only platform I use.
What do I think about the stability of the solution?
It's a very stable platform. A ten out of ten.
What do I think about the scalability of the solution?
The scalability of Splunk is ten out of ten. It's one of the best platforms on the market. Approximately 1,000-2,000 people use the platform at our company, but only two people are needed to maintain it and I'm one of them. Everything is automated and it is very easy to manage 2,000 users on my own.
Which solution did I use previously and why did I switch?
I would compare Splunk Phantom with RSA NetWitness and Elasticsearch. All three solutions give the same output but in a different way. They analyze data in different ways. Each product has its scalability, versatility, and appliances in the current business needs of the company that uses it.
How was the initial setup?
The initial setup is very easy. At our company, we deployed Splunk ourselves because we are a team of Splunk architects and we have done it before.
What's my experience with pricing, setup cost, and licensing?
The platform is too expensive for small businesses. If you choose the free plan, it only has 15 GB of data per day, and it may not be enough to run a small business. You need to pay a subscription based on data ingestion, and that's very expensive. Splunk should focus more on delivering something for small businesses and entrepreneurs. I give the pricing a three or four out of ten. Although the product is pricey, it's truly magnificent.
Which other solutions did I evaluate?
What other advice do I have?
Overall, I give Splunk a nine out of ten and not a solid ten just because there are new updates every day and we don't know exactly what we need to search for since it's not that viewable.
A complete solution to collect logs with faster response
What is most valuable?
The product comes with a faster installation and response time. When I search something on the log, they give the result in a few seconds. Even if I didn’t have EDR, I can investigate rules in Splunk.
What needs improvement?
The solution is only meant for big companies.
For how long have I used the solution?
I have been using the Splunk Enterprise Platform for three years.
What do I think about the stability of the solution?
I rate the solution’s stability a ten out of ten.
What do I think about the scalability of the solution?
We have around ten people working with the solution.
I rate the solution’s scalability a ten out of ten.
How are customer service and support?
I didn’t contacted the customer support. Spunk has a website and community which has everything you need.
How was the initial setup?
The initial setup is easy. For deployment, I created a Splunk demo on my computer and on a POC environment. I ran the demo for 10 clients on 10 machines, and it took about 20 minutes.
What's my experience with pricing, setup cost, and licensing?
Spunk is used by big companies like with 2000 clients.
I rate the solution’s pricing one out of ten.
What other advice do I have?
There are around ten engineer required for troubleshooting of the solution.
I recommend the solution to other organisation since it is very responsive.
Overall, I rate the solution a ten out of ten.
showing 61 - 70