9 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 8.5 out of 100
8 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 7.5 out of 100

Attribute Ratings

  • Splunk User Behavior Analytics (UBA) is rated higher in 1 area: Likelihood to Recommend

Likelihood to Recommend

8.4

Cisco Secure Malware Analytics (Threat Grid)

84%
2 Ratings
10.0

Splunk User Behavior Analytics (UBA)

100%
2 Ratings

Likelihood to Renew

8.0

Cisco Secure Malware Analytics (Threat Grid)

80%
1 Rating

Splunk User Behavior Analytics (UBA)

N/A
0 Ratings

Availability

10.0

Cisco Secure Malware Analytics (Threat Grid)

100%
1 Rating

Splunk User Behavior Analytics (UBA)

N/A
0 Ratings

Support Rating

Cisco Secure Malware Analytics (Threat Grid)

N/A
0 Ratings
9.0

Splunk User Behavior Analytics (UBA)

90%
2 Ratings

Implementation Rating

7.0

Cisco Secure Malware Analytics (Threat Grid)

70%
1 Rating

Splunk User Behavior Analytics (UBA)

N/A
0 Ratings

Ease of integration

6.0

Cisco Secure Malware Analytics (Threat Grid)

60%
1 Rating

Splunk User Behavior Analytics (UBA)

N/A
0 Ratings

Likelihood to Recommend

Cisco

Threat Grid is best suited to integration along side other Cisco products. On its own, its neat, but with VirusTotal and other free malware submission sites, it may seem not worth the price. However, integrated into Cisco's AMP product, it provides a continuous investigation of sties and files. If AMP has an alert, you can hop over to ThreatGrid to see what it found out.
Read full review

Splunk

Splunk User Behavior Analytics application is necessary when any company wants to capture the threat based on user behavior instead of just counting the number of occurrences of particular event. With Splunk UBA, we can analyse number of anomalies captured and which in turn creating threats which are nearly true positive.
Read full review

Pros

Cisco

  • Deep malware analysis
  • You will get transparent integration
  • Faster investigation and response
  • Always prioritizes threats
  • Scalable visibility and security analytics
  • Extend your visibility
Read full review

Splunk

  • Monitor and troubleshoot for any system errors.
  • Get the insights on application data sets and do some predictive analysis.
Read full review

Cons

Cisco

  • The VMs are very sluggish (probably unavoidable at this scale)
  • Sometimes it seems unclear how Threat Grid is evaluating a site
Read full review

Splunk

  • Performance-wise, it can be improved. Queries take a long time.
  • Dataset exploration - More data visualization charts can be added.
Read full review

Pricing Details

Cisco Secure Malware Analytics (Threat Grid)

Starting Price

Editions & Modules

Cisco Secure Malware Analytics (Threat Grid) editions and modules pricing
EditionModules

Footnotes

    Offerings

    Free Trial
    Free/Freemium Version
    Premium Consulting/Integration Services

    Entry-level set up fee?

    No setup fee

    Additional Details

    Pricing Info

    Splunk User Behavior Analytics (UBA)

    Starting Price

    Editions & Modules

    Splunk User Behavior Analytics (UBA) editions and modules pricing
    EditionModules

    Footnotes

      Offerings

      Free Trial
      Free/Freemium Version
      Premium Consulting/Integration Services

      Entry-level set up fee?

      No setup fee

      Additional Details

      Likelihood to Renew

      Cisco

      We lean heavily on the Cisco security stack currently and really find value in Threat Grid. However, we are investigating level 5 licensing with Microsoft, so there is small chance we may lift our security stack elsewhere. However, I am unaware of an equivalent at Microsoft. It would be hard to do without Threat Grid, so without an equivalent we would continue with it and AMP.
      Read full review

      Splunk

      No answers on this topic

      Reliability and Availability

      Cisco

      We have seen no availability issues with Threat Grid. It has always been online in whenever I have needed it. I use it many times throughout the week at variable times. I have seen no outage and no slowdowns in performance. I have have used it considerably for the last 1.5 years.
      Read full review

      Splunk

      No answers on this topic

      Implementation Rating

      Cisco

      Overall it is good, but I believe our implementation needs some tuning. Currently, it is integrated with Cisco Secure Endpoint (AMP). It is able to pull data from there and AMP can upload files directly to it. I would like to improve our range of scenarios and playbooks that Threat Grid uses. Currently, I can only select one type of VM profile in my AMP settings. It would be great if a group of plays could be run on an individual file. I would also like an integration with Umbrella and our Cisco Firepowers to further leverage automation
      Read full review

      Splunk

      No answers on this topic

      Alternatives Considered

      Cisco

      We have never used any other products besides this
      Read full review

      Splunk

      Easier we were using Splunk Enterprise on heavy forwarder on which all the add-on were installed and were using Splunk Cloud with respect to search head and indexers stack. And with Splunk Enterprise Security premium app, we were relying on correlation rules which were throwing more number of false positive but after implementing Splunk UBA, we are now getting real-time true positive threat or incidents.
      Read full review

      Return on Investment

      Cisco

      • Provides more security for malware
      Read full review

      Splunk

      • Fewer team members to work on real threats.
      • Less time required to deal with real incidents.
      • Easy to implement across the network.
      Read full review

      Add comparison