TrustRadius

TheHive vs. Splunk On-Call

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
TheHive
Score 9.7 out of 10
Enterprise companies (1,001+ employees)
TheHive is a collaborative case management platform that helps security teams centralize, structure, speed up and scale their alert management, investigations and incident response.N/A
Splunk On-Call
Score 6.2 out of 10
N/A
Formerly known as VictorOps, Splunk On-Call is an incident response system for developers, devops and operations teams that helps reduce outage time.N/A
Pricing
TheHiveSplunk On-Call
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
TheHiveSplunk On-Call
Free Trial
YesNo
Free/Freemium Version
YesNo
Premium Consulting/Integration Services
YesNo
Entry-level Setup FeeOptionalNo setup fee
Additional DetailsTheHive Gold and Platinum editions are priced per number of users (seats) and orgnizations (tenants). Prices start from 1 organization and 5 users.
More Pricing Information
Community Pulse
TheHiveSplunk On-Call
Features
TheHiveSplunk On-Call
Incident Response Platforms
Comparison of Incident Response Platforms features of Product A and Product B
TheHive
10.0
1 Ratings
12% above category average
Splunk On-Call
-
Ratings
Company-wide Incident Reporting10.01 Ratings00 Ratings
Integration with Other Security Systems10.01 Ratings00 Ratings
Centralized Dashboard10.01 Ratings00 Ratings
Live Response for Rapid Remediation10.01 Ratings00 Ratings
Best Alternatives
TheHiveSplunk On-Call
Small Businesses
ThreatDown, powered by Malwarebytes
ThreatDown, powered by Malwarebytes
Score 9.3 out of 10

No answers on this topic

Medium-sized Companies
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Freshservice
Freshservice
Score 8.4 out of 10
Enterprises
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Freshservice
Freshservice
Score 8.4 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
TheHiveSplunk On-Call
Likelihood to Recommend
10.0
(1 ratings)
6.0
(11 ratings)
Likelihood to Renew
-
(0 ratings)
9.0
(1 ratings)
Usability
-
(0 ratings)
7.0
(2 ratings)
Support Rating
-
(0 ratings)
5.0
(3 ratings)
Implementation Rating
-
(0 ratings)
9.0
(1 ratings)
User Testimonials
TheHiveSplunk On-Call
Likelihood to Recommend
StrangeBee
Managing incident response - it does exactly what it is supposed to do!
PG
Patrick Green
Cyber Security and Resilience
Read full review
Cisco
I recommend Splunk on-call is more suited where there are high incident queues; multiple teams need to be involved in handling a P1 severity issue. Multiple levels of escalation are needed environment where automated action is required. I recommend the solution for large-scale & medium-scale business units. For small-scale business units, I see the functional value is less.
Santhana Krishnan Janakiraman | TrustRadius Reviewer
Santhana Krishnan Janakiraman
Architect Cloud Services
Read full review
Pros
StrangeBee
No answers on this topic
Cisco
  • Easily assign work/tickets between multiple users
  • Supports a wide variety of software integrations
  • Easy to manage scheduling tool
  • As part of the Splunk toolset, provides detailed levels of data analysis at our engineers fingertips
Verified User
Anonymous
Read full review
Cons
StrangeBee
No answers on this topic
Cisco
  • The user interface can be furthe improved
  • Licensing needs to be simplified and packaged as a bundle with other Splunk product like Enterprise Security
  • Customer outreach can be further enhanced
Mubeen Akhtar | TrustRadius Reviewer
Mubeen Akhtar
Senior Cybersecurity Engineer
Read full review
Likelihood to Renew
StrangeBee
No answers on this topic
Cisco
It was a good solution with a good comprimise prize/features for our use cases
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Usability
StrangeBee
No answers on this topic
Cisco
Not a lot of love given to VO since the acquisition by Splunk from my POV
Verified User
Anonymous
Read full review
Support Rating
StrangeBee
No answers on this topic
Cisco
VictorOps support has proven excellent for us. Because it is such a widely used tool, there is a lot of documentation on usage, and a large community of users to lean on. Also, many engineers have had experience working with VictorOps already, and the tool is so easy to setup / manage that much support isn't really necessary.
Gabriel Samaroo | TrustRadius Reviewer
Gabriel Samaroo
Senior Software Engineer
Read full review
Implementation Rating
StrangeBee
No answers on this topic
Cisco
It was a good solution with a good comprimise prize/features for our use cases
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Alternatives Considered
StrangeBee
No answers on this topic
Cisco
Splunk On-Call integrates better with our Splunk Cybersecurity and Reporting products due to the same family tree of the same eco system. We were previously using built-in on-call from individual applications and while adequate, they were difficult to manage and support SLA varied greatly across different applications. In addition we also used xMatters which did not integrate well with SAP products nor Citrix products so we were still using more than a single on-call product which was solved by implementing Splunk On-Call
Keith Kyaw, MBA, ITIL, CCA | TrustRadius Reviewer
Keith Kyaw, MBA, ITIL, CCA
Senior Citrix Engineer
Read full review
Return on Investment
StrangeBee
No answers on this topic
Cisco
  • It runs our on call rotation so it makes it easy for us.
  • It integrates with Slack so it makes it easy for us to manage through Slack.
AO
Read full review
ScreenShots

TheHive Screenshots

Screenshot of Alert Management: Go through your dedicated and detailed Alert page, make comments, identify similar Alerts, define custom statuses and fields. Then decide whether or not they should be escalated to investigations or to incident response.Screenshot of Case Management: Create cases and associated tasks and observables. Identify similar cases and alerts, define the PAP (Permissible Actions Protocol) level on each Observable, or improve your Incident Response process using a simple yet powerful template engine.Screenshot of Muti Tenant Environments: Define the different organizations and teams and get them to work in a dedicated or collaborative mode: tenants' cases can be isolated or investigated by users from different organizations based on customizable roles and permissions.Screenshot of User Management: Define and customize user profiles, assign them to users within their organizations and synchronise them via LDAP or AD.Screenshot of Metrics and Dashboards: Compile and correlate statistics on cases, tasks, observables, metrics and more to generate useful KPIs and MBOs with our dynamic dashboard engine.Screenshot of MISP Integration: Get shared Indicators of compromise quickly imported and ready to use or share yours easily with your communities by connecting TheHive with MISP.