TrustRadius

Splunk SOAR vs. Splunk On-Call

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Splunk SOAR
Score 8.4 out of 10
N/A
Splunk now offers a security orchestration, automation, and response (SOAR) platform via its acquisition of Phantom. Splunk Security Orchestration and Automation (Splunk SOAR) provides playbook automation and is available as a standalone solution.N/A
Splunk On-Call
Score 6.2 out of 10
N/A
Formerly known as VictorOps, Splunk On-Call is an incident response system for developers, devops and operations teams that helps reduce outage time.N/A
Pricing
Splunk SOARSplunk On-Call
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Splunk SOARSplunk On-Call
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Splunk SOARSplunk On-Call
Considered Both Products
Splunk SOAR

No answer on this topic

Splunk On-Call
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Chose Splunk On-Call
Splunk on Call is less performant but much less expensive then the others and it's natively integrated with Splunk.
Best Alternatives
Splunk SOARSplunk On-Call
Small Businesses

No answers on this topic

No answers on this topic

Medium-sized Companies
LogRhythm NextGen SIEM Platform
LogRhythm NextGen SIEM Platform
Score 7.7 out of 10
Freshservice
Freshservice
Score 8.4 out of 10
Enterprises
Palo Alto Networks Cortex XSOAR
Palo Alto Networks Cortex XSOAR
Score 1.3 out of 10
Freshservice
Freshservice
Score 8.4 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Splunk SOARSplunk On-Call
Likelihood to Recommend
7.0
(41 ratings)
6.0
(11 ratings)
Likelihood to Renew
7.5
(3 ratings)
9.0
(1 ratings)
Usability
7.0
(2 ratings)
7.0
(2 ratings)
Performance
8.2
(40 ratings)
-
(0 ratings)
Support Rating
8.2
(1 ratings)
5.0
(3 ratings)
Online Training
8.2
(1 ratings)
-
(0 ratings)
Implementation Rating
8.2
(1 ratings)
9.0
(1 ratings)
Configurability
8.2
(1 ratings)
-
(0 ratings)
Product Scalability
8.2
(1 ratings)
-
(0 ratings)
User Testimonials
Splunk SOARSplunk On-Call
Likelihood to Recommend
Cisco
Our company has very complex and dynamic security operations because of the large number of security tools and systems that we need to manage and coordinate. Moreover, it helps us to meet many regulatory and compliance requirements because it helps us to automate and document our security operations. We also use it to streamline our security operations and improve our response to potential threats.
PK
Priya Kumar
Security Engineer
Read full review
Cisco
I recommend Splunk on-call is more suited where there are high incident queues; multiple teams need to be involved in handling a P1 severity issue. Multiple levels of escalation are needed environment where automated action is required. I recommend the solution for large-scale & medium-scale business units. For small-scale business units, I see the functional value is less.
Santhana Krishnan Janakiraman | TrustRadius Reviewer
Santhana Krishnan Janakiraman
Architect Cloud Services
Read full review
Pros
Cisco
  • Its security orchestration and integration capability that supports multiple tools.
  • Easy coding that automates our security actions.
  • Enables us to easily collaborate and respond to security issues faster.
  • Splunk SOAR is a flexible product that is easy to deploy.
  • Efficient tracking and monitoring capability.
  • Excellent real-time reporting functionality.
Angelica Cavalli | TrustRadius Reviewer
Angelica Cavalli
Senior Software Engineer
Read full review
Cisco
  • Easily assign work/tickets between multiple users
  • Supports a wide variety of software integrations
  • Easy to manage scheduling tool
  • As part of the Splunk toolset, provides detailed levels of data analysis at our engineers fingertips
Verified User
Anonymous
Read full review
Cons
Cisco
  • A lack of instruction It can be difficult to contact the support staff. Limited experience from current users.
  • It takes some effort to set up and learn new technology at first. More assistance is required from the support staff. The product's price needs to go down.
  • Cost of the larger version.
Pavan sreevatsav Akula | TrustRadius Reviewer
Pavan sreevatsav Akula
Cybersecurity Analyst
Read full review
Cisco
  • The user interface can be furthe improved
  • Licensing needs to be simplified and packaged as a bundle with other Splunk product like Enterprise Security
  • Customer outreach can be further enhanced
Mubeen Akhtar | TrustRadius Reviewer
Mubeen Akhtar
Senior Cybersecurity Engineer
Read full review
Likelihood to Renew
Cisco
As we already have a lot of clients being catered with Splunk SOAR and because Splunk SOAR is robust and efficient, we are already using it, and we have understood the product to a certain extent, I feel we are personally more enticed to use and scale it to a lot of business.
Gaurav S | TrustRadius Reviewer
Gaurav S
Senior Security Specialist
Read full review
Cisco
It was a good solution with a good comprimise prize/features for our use cases
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Usability
Cisco
Building playbooks through the visual editor is fine for basic tasks, but once you start chaining complex logic or integrating 3rd party APIs you hit a wall that requires deep scripting knowledge.
JP
Julie Pierce
SOC Engineer
Read full review
Cisco
Not a lot of love given to VO since the acquisition by Splunk from my POV
Verified User
Anonymous
Read full review
Performance
Cisco
We are able to automate almost every one of our use cases, even our threat-hunting, and threat intel procedures. We have 20+ playbooks and cover almost everything, even searching logs into Splunk, looking into TIP and external systems, enrichment, and collecting evidence for analysts; it can perform concurrent playbooks running.
Muhammed Ali CETİN | TrustRadius Reviewer
Muhammed Ali CETİN
senior Security Engineer
Read full review
Cisco
No answers on this topic
Support Rating
Cisco
Splunk Support is always great! In addition the Community is very efficient and active.
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Cisco
VictorOps support has proven excellent for us. Because it is such a widely used tool, there is a lot of documentation on usage, and a large community of users to lean on. Also, many engineers have had experience working with VictorOps already, and the tool is so easy to setup / manage that much support isn't really necessary.
Gabriel Samaroo | TrustRadius Reviewer
Gabriel Samaroo
Senior Software Engineer
Read full review
In-Person Training
Cisco
I never followed an in-person training, I gave my evaluation based on the online training
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Cisco
No answers on this topic
Online Training
Cisco
I followed training for Phantom admins and it opened a world for me
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Cisco
No answers on this topic
Implementation Rating
Cisco
I already said that the main key insight is the knowledge of Phantom, so a detailed training for all the people involeved.
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Cisco
It was a good solution with a good comprimise prize/features for our use cases
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Alternatives Considered
Cisco
Splunk Phantom integrates well with Splunk ES and has many integrations. One thing that I liked about XSOAR as compared to Phantom is that it has an "app-store" where you can download not only app integrations (similar to Phantom) but Playbooks and dashboards as well.
Verified User
Anonymous
Read full review
Cisco
Splunk On-Call integrates better with our Splunk Cybersecurity and Reporting products due to the same family tree of the same eco system. We were previously using built-in on-call from individual applications and while adequate, they were difficult to manage and support SLA varied greatly across different applications. In addition we also used xMatters which did not integrate well with SAP products nor Citrix products so we were still using more than a single on-call product which was solved by implementing Splunk On-Call
Keith Kyaw, MBA, ITIL, CCA | TrustRadius Reviewer
Keith Kyaw, MBA, ITIL, CCA
Senior Citrix Engineer
Read full review
Scalability
Cisco
me and the customers I encountered found it flexible and scalable
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Cisco
No answers on this topic
Return on Investment
Cisco
  • The playbooks are valuable. They are the core component. Being able to implement and build a code process to work through and scale out what we want to do is valuable
  • Before its use, analyzing each email would take at least 15 to 20 minutes, with some complex cases taking up to 30 minutes...With the automation provided by Splunk Phantom, we could significantly reduce the amount of time and human effort required to complete this task
Verified User
Anonymous
Read full review
Cisco
  • It runs our on call rotation so it makes it easy for us.
  • It integrates with Slack so it makes it easy for us to manage through Slack.
AO
Read full review
ScreenShots