What users are saying about
94 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener'>Customer Verified: Read more.</a>
Top Rated
230 Ratings
94 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 8.5 out of 100

Splunk Enterprise Security (ES)

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener'>Customer Verified: Read more.</a>
Top Rated
230 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 8.5 out of 100

Feature Set Ratings

  • Splunk Cloud ranks higher in 1 feature set: Security Information and Event Management (SIEM)

Security Information and Event Management (SIEM)

8.6

Splunk Cloud

86%
8.4

Splunk Enterprise Security (ES)

84%
Splunk Cloud ranks higher in 7/13 features

Centralized event and log data collection

8.3
83%
12 Ratings
9.0
90%
101 Ratings

Correlation

8.4
84%
12 Ratings
8.6
86%
100 Ratings

Event and log normalization/management

9.7
97%
21 Ratings
8.6
86%
102 Ratings

Deployment flexibility

7.7
77%
12 Ratings
8.4
84%
102 Ratings

Integration with Identity and Access Management Tools

8.4
84%
10 Ratings
8.4
84%
98 Ratings

Custom dashboards and workspaces

9.6
96%
21 Ratings
8.7
87%
104 Ratings

Host and network-based intrusion detection

8.2
82%
10 Ratings
8.5
85%
98 Ratings

Data integration/API management

8.0
80%
2 Ratings
8.1
81%
100 Ratings

Behavioral analytics and baselining

7.7
77%
3 Ratings
8.0
80%
97 Ratings

Rules-based and algorithmic detection thresholds

8.4
84%
3 Ratings
8.2
82%
99 Ratings

Response orchestration and automation

9.1
91%
2 Ratings
7.8
78%
90 Ratings

Reporting and compliance management

8.7
87%
3 Ratings
7.6
76%
99 Ratings

Incident indexing/searching

9.7
97%
3 Ratings
8.6
86%
102 Ratings

Attribute Ratings

  • Splunk Cloud is rated higher in 1 area: Support Rating
  • Splunk Enterprise Security (ES) is rated higher in 2 areas: Likelihood to Recommend, Usability

Likelihood to Recommend

8.3

Splunk Cloud

83%
12 Ratings
8.7

Splunk Enterprise Security (ES)

87%
106 Ratings

Likelihood to Renew

Splunk Cloud

N/A
0 Ratings
8.6

Splunk Enterprise Security (ES)

86%
2 Ratings

Usability

8.0

Splunk Cloud

80%
1 Rating
8.2

Splunk Enterprise Security (ES)

82%
3 Ratings

Availability

Splunk Cloud

N/A
0 Ratings
9.1

Splunk Enterprise Security (ES)

91%
1 Rating

Performance

Splunk Cloud

N/A
0 Ratings
8.2

Splunk Enterprise Security (ES)

82%
1 Rating

Support Rating

7.3

Splunk Cloud

73%
8 Ratings
7.0

Splunk Enterprise Security (ES)

70%
7 Ratings

In-Person Training

Splunk Cloud

N/A
0 Ratings
9.1

Splunk Enterprise Security (ES)

91%
1 Rating

Online Training

Splunk Cloud

N/A
0 Ratings
8.2

Splunk Enterprise Security (ES)

82%
1 Rating

Implementation Rating

Splunk Cloud

N/A
0 Ratings
9.1

Splunk Enterprise Security (ES)

91%
1 Rating

Configurability

Splunk Cloud

N/A
0 Ratings
7.3

Splunk Enterprise Security (ES)

73%
2 Ratings

Contract Terms and Pricing Model

Splunk Cloud

N/A
0 Ratings
7.3

Splunk Enterprise Security (ES)

73%
1 Rating

Ease of integration

Splunk Cloud

N/A
0 Ratings
6.4

Splunk Enterprise Security (ES)

64%
2 Ratings

Product Scalability

Splunk Cloud

N/A
0 Ratings
7.9

Splunk Enterprise Security (ES)

79%
104 Ratings

Professional Services

Splunk Cloud

N/A
0 Ratings
9.1

Splunk Enterprise Security (ES)

91%
1 Rating

Vendor post-sale

Splunk Cloud

N/A
0 Ratings
8.2

Splunk Enterprise Security (ES)

82%
2 Ratings

Vendor pre-sale

Splunk Cloud

N/A
0 Ratings
8.2

Splunk Enterprise Security (ES)

82%
2 Ratings

Likelihood to Recommend

Splunk

I will highly recommend this software because using Splunk
Cloud has helped us become more proactive about handling our security concerns
and better manage our environment. It is one of the finest security software
that is easy to use and also provides analytics. It has excellent features like
creating dashboard security and managing features etc. So you must give it a try once!
Read full review

Splunk

Splunk Enterprise Security will be more suited in research dense areas, and also have a good scope in defense-related projects, cyber specialists, etc. It is less recommended for normal companies where the hosted application data do not require high-security environments. Also, this requires special admins to configure and monitor the logs effectively.
Read full review

Pros

Splunk

  • Splunk Cloud allows me to search the volumes of information help in Windows Server Logs quickly and accurately.
  • Splunk Cloud allows me to create Dashboards for everyday monitoring of multiple parameters.
  • Splunk Cloud allows me to create and schedule reports for Management on network usage and statistics.
Read full review

Splunk

  • Its best feature is its user interface, which is easy to navigate and understand. All you need is a little tutorial on how to use the Splunk query language and you're done.
  • Logs can be easily uploaded or shared across multiple platforms and display a highly insightful graphical representations of data using graphs, tables, and many other formats.
Read full review

Cons

Splunk

  • Splunk Cloud support is increasing a lot now a days and I see no cons other than the price factor to the other compared products. Overall Splunk Cloud is a very good product all together.
  • I can see that Splunk Cloud can still improve in the form of SLA.
  • Splunk Cloud generally lags behind the available splunk upgrades. They are always one version behind the one available for enterprise.
Read full review

Splunk

  • ES on the cloud (SaaS) has too many limitations with platform administration.
  • Supported integrations are not always on par with enterprise support especially when dependent on 3rd-party proprietary APIs.
  • In later versions, unforeseen glitches seem to show up that have no resolution except version upgrade. This used to not be the case in prior versions which were very stable.
Read full review

Pricing Details

Splunk Cloud

Starting Price

Editions & Modules

Splunk Cloud editions and modules pricing
EditionModules

Footnotes

    Offerings

    Free Trial
    Free/Freemium Version
    Premium Consulting/Integration Services

    Entry-level set up fee?

    No setup fee

    Additional Details

    Splunk Enterprise Security (ES)

    Starting Price

    Editions & Modules

    Splunk Enterprise Security (ES) editions and modules pricing
    EditionModules

    Footnotes

      Offerings

      Free Trial
      Free/Freemium Version
      Premium Consulting/Integration Services

      Entry-level set up fee?

      No setup fee

      Additional Details

      Pricing Info

      Likelihood to Renew

      Splunk

      No answers on this topic

      Splunk

      We are very happy with Splunk and would advise anyone to take a serious look at it. It might look pricey but the rewards Splunk offers seem endless.
      Read full review

      Usability

      Splunk

      Overall, it is very usable. I would like if recent searches were saved for longer because I always have to refer to my notes when I'm looking for something specific and it's been a few weeks. But that's a small issue, and the actual search and browsing interface is easy to use and powerful.
      Read full review

      Splunk

      You definitely need to learn how to use Splunk to get the most of the tool. There are many courses available for free to get up to speed on the usability of the tool but it's not that simple. It will take time to digest all the data and to understand how to query for what you are looking for.
      Read full review

      Reliability and Availability

      Splunk

      No answers on this topic

      Splunk

      I'm not an ES user, but, in my implementation I usually try to prevent all service stops to guarantee High availability to the final customers.
      Read full review

      Performance

      Splunk

      No answers on this topic

      Splunk

      ES requires a very performant infrastructure: if it has it's performant, otherwise not. I had situation with a very performant infrastructure and I didn't notized that it was a distributed architecture, it seemed that there ware few data on my PC, othewise I experienced less performant infrastructures with less performaces.
      Read full review

      Support Rating

      Splunk

      Splunk Cloud support is sorely lacking unfortunately. The portal where you submit tickets is not very good and is lacking polish. Tickets are left for days without any updates and when chased it is only sometimes you get a reply back. I get the feeling the support team are very understaffed and have far too much going on. From what I know, Splunk is aware of this and seem to be trying to remedy it.
      Read full review

      Splunk

      It's good when it's responsive, but I've had times where I had to wait quite a while for a response. But these are typically the exceptions rather than the rule. When you do get a response it is always well-informed and appropriate. I would say they've been trending better over time with this.
      Read full review

      In-Person Training

      Splunk

      No answers on this topic

      Splunk

      I experienced only on-line training, but the trainers were very professional and competent. Maybe it could be more useful if they also have an experience in projects because sometimes they didn't have a real project experience to communicate to the students. Anyway, it was very interesting and I learned many thing that's very difficoult (or maybe impossible!) to have by myself, aven if I have more than 10 years of Splunk activity experience.
      Read full review

      Online Training

      Splunk

      No answers on this topic

      Splunk

      It was very interesting and I learned many thing that's very difficoult (or maybe impossible!) to have by myself. The only problem was that, when I worked with the Splunk Professional Services, I found some difference between the training contents and the information from PS. In addition is required a long experience on Splunk Enterprise for the data ingestion part, in other words I'm able to work with ES because I'm worling on Splunk since 11 years, otherwise I'd some problem.
      Read full review

      Implementation Rating

      Splunk

      No answers on this topic

      Splunk

      It's a fantatic product and it was very useful the presence of Splunk Professional Services for the Design Phase and the final Health Check.
      Read full review

      Alternatives Considered

      Splunk

      Splunk Cloud blows Sumo Logic out of the water. The experience is night and day. We went from several highly stressed IT security professionals who were unsure if the data they were getting was valuable, to very happy IT security professionals who can now be more proactive and get all the information they need.
      Read full review

      Splunk

      - Schema on the fly indexing --> Gives you faster index searches. Even if you use Datamodes, it's 100x time faster as well. - Correlation with other domains easily gives you total visibility and reduces the time to investigate and understand the problem. - With lookups and trust, you can easily ingest your TI platforms and look for backlog and real-time data. - Splunkbase - RBA is using unsupervised learning also, so it's not like Qradar or McAfee. If we look at Qradar or McAfee, they are giving some magnitude values with static rules and define incident levels with that. - Advanced investigation option and out-of-box security metrics tell you that where you are.
      Read full review

      Contract Terms and Pricing Model

      Splunk

      No answers on this topic

      Splunk

      for my exterience, unit pricing and billing frequency are correct. As I already said, I hint to have more discount flexibility, expecially with new customers, because there are competitors less expensive and very aggressive that are dangerous. In addition the possibility to don't pay the license for the development period could be a very interesting feature for the final customers.
      Read full review

      Scalability

      Splunk

      No answers on this topic

      Splunk

      Splunk Enterprise Security gives us a variety of hybrid deployment options, vast data gathering capabilities, and complete visibility so that we can gather large data from many Cloud services, analyze it, deal with threats, and take fast investigative action using data-driven algorithms.
      Read full review

      Professional Services

      Splunk

      No answers on this topic

      Splunk

      I had a fantastic experience with Splunk Professional Services: they worked with us in our last SON project (a SOC migration for a very large customer) and helped to build a multi tenent environment even if ES isn't a multi tenant platform. Th Splunk PS was a very professional and competent people, he is italian and was able to speak with our italian customers.
      Read full review

      Return on Investment

      Splunk

      • The biggest return on investment is how quickly logs are now consumed, and how quickly we can follow events that occur in logs.
      • The number of logs that can be consumed by Splunk is much higher than previous solutions.
      • We have much better visibility into our logs, and are able to spot patterns in events with the built-in graphs and reports.
      Read full review

      Splunk

      • ES has highly impacted ROI because as the customer of the ES the work we do for creating use cases for clients in terms of security-related aspects by their logs has given more return than investment.
      • The correlation searches we run to get detailed results from the Data models are very less time-consuming than Splunk Enterprise itself we can get quick responses to the use cases and dashboards populated because of ES.
      • The CIM compliance feature is ES has made more jobs easy in the terms of finding more Authentication related data we can get data onboarded in the Email data model from O365 and search is email data model instead of searching for particular indexes.
      Read full review

      Add comparison