Splunk User Behavior Analytics vs. Trellix Helix

Trellix Helix

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Splunk User Behavior Analytics	Score 10.0 out of 10	N/A	Splunk supplies security analytics as a standalone solution or priced as an add-on for users of its popular SIEM products, to protect enterprises against unknown threats and malicious behavior, via the Splunk User Behavior Analytics application.	N/A
Trellix Helix	Score 7.1 out of 10	Enterprise companies (1,001+ employees)	Trellix Helix (formerly FireEye Helix) is a SIEM solution providing a non-malware threat detection solution.	$0 Events per second

Pricing

Splunk User Behavior Analytics

Trellix Helix

Editions & Modules

No answers on this topic

Helix Console: $0
Events per second
Helix Enterprise: $0
Events per second

Offerings

Pricing Offerings
Splunk User Behavior Analytics	Trellix Helix
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	Yes

Entry-level Setup Fee

No setup fee

Optional

Additional Details

—

More Pricing Information

Pricing Info

Community Pulse
	Splunk User Behavior Analytics	Trellix Helix

Features

Splunk User Behavior Analytics

Trellix Helix

Security Information and Event Management (SIEM)

Comparison of Security Information and Event Management (SIEM) features of Product A and Product B
	Splunk User Behavior Analytics - Ratings	Trellix Helix 9.6 3 Ratings 19% above category average
Centralized event and log data collection	00 Ratings	9.93 Ratings
Correlation	00 Ratings	9.93 Ratings
Event and log normalization/management	00 Ratings	9.03 Ratings
Deployment flexibility	00 Ratings	9.73 Ratings
Integration with Identity and Access Management Tools	00 Ratings	9.63 Ratings
Custom dashboards and workspaces	00 Ratings	9.03 Ratings
Host and network-based intrusion detection	00 Ratings	10.03 Ratings

Best Alternatives
	Splunk User Behavior Analytics	Trellix Helix
Small Businesses	ActivTrak Score 8.6 out of 10	LevelBlue USM Anywhere Score 7.5 out of 10
Medium-sized Companies	ManageEngine ADAudit Plus Score 9.0 out of 10	Sumo Logic Score 8.8 out of 10
Enterprises	ManageEngine ADAudit Plus Score 9.0 out of 10	Sumo Logic Score 8.8 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Splunk User Behavior Analytics	Trellix Helix
Likelihood to Recommend	10.0 (2 ratings)	9.8 (3 ratings)
Support Rating	9.0 (1 ratings)	9.0 (1 ratings)
Ease of integration	- (0 ratings)	9.8 (3 ratings)

User Testimonials
	Splunk User Behavior Analytics	Trellix Helix
Likelihood to Recommend	Cisco Splunk User Behavior Analytics application is necessary when any company wants to capture the threat based on user behavior instead of just counting the number of occurrences of particular event. With Splunk UBA, we can analyse number of anomalies captured and which in turn creating threats which are nearly true positive. Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) Great for organizations that are considering improving their operational security by utilizing their threats intelligence capabilities. It offers a great collection and analysis of security events and provides solutions to solve them. When considering a solution that is secure and can provide very extensive visualization of your environment for threats. Shirleen Muraya Branch Manager Read full review
Pros	Cisco Monitor and troubleshoot for any system errors. Get the insights on application data sets and do some predictive analysis. Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) Single location for all security event management Detect advanced threats Provide audit artifacts to ensure compliance Incentivized Verified User Anonymous Read full review
Cons	Cisco Performance-wise, it can be improved. Queries take a long time. Dataset exploration - More data visualization charts can be added. Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) Additional integration points (API cloud integrations). Incentivized Verified User Anonymous Read full review
Support Rating	Cisco No answers on this topic	Trellix (FireEye + McAfee) We've been fairly happy with FireEye Helix support overall. Most issues are resolved the same day the case is opened. Incentivized Verified User Anonymous Read full review
Alternatives Considered	Cisco Easier we were using Splunk Enterprise on heavy forwarder on which all the add-on were installed and were using Splunk Cloud with respect to search head and indexers stack. And with Splunk Enterprise Security premium app, we were relying on correlation rules which were throwing more number of false positive but after implementing Splunk UBA, we are now getting real-time true positive threat or incidents. Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) It offers extensive visibility thus easy detection of threats and easy mitigation practices. Utilization of its threats intelligence capabilities thus early detection of incidents and maximization of security investments. Offers great integration of cloud resources with existing security tools thus ensuring seamless performance and all-time security for the organizational resources. Shirleen Muraya Branch Manager Read full review
Return on Investment	Cisco Fewer team members to work on real threats. Less time required to deal with real incidents. Easy to implement across the network. Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) Optimization of your security investments. Operations are seamless and better with easy integrations that enhance performance. Efficiency in running of incidences with enhanced case management for all its alerts. Shirleen Muraya Branch Manager Read full review
ScreenShots		Trellix Helix Screenshots