Splunking Great.
With so many disparate systems finding a single fault point within all the interconnected applications is very difficult. Splunk enables …
Overview
What is Splunk Cloud?
A data platform service thats help users search, analyze, visualize and act on data. The service can go live in as little as two days, and with an IT backend managed by Splunk experts, users can focus on acting on…
Recent Reviews
Popular Features
- Event and log normalization/management (15)9.797%
- Correlation (15)9.797%
- Centralized event and log data collection (15)9.090%
- Deployment flexibility (15)9.090%
Reviewer Pros & Cons
Pricing
N/A
Unavailable
What is Splunk Cloud?
A data platform service thats help users search, analyze, visualize and act on data. The service can go live in as little as two days, and with an IT backend managed by Splunk experts, users can focus on acting on data. Search any kind of data in real-time to detect and prevent issues before they…
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
13 people also want pricing
Alternatives Pricing
What is Trellix Helix?
Trellix Helix (formerly FireEye Helix) is a SIEM solution providing a non-malware threat detection solution.
Product Demos
UiPath Robotic Process Monitoring for Splunk - Demo Walkthrough
YouTube
Splunk Risk-Based Alerting Demo: Using MITRE ATT&CK + Enterprise Security (ES)—@Splunkofficial Cloud SecOps
YouTube
Features
Return to navigation
Product Details
- About
- Competitors
- Tech Details
- FAQs
What is Splunk Cloud?
A data platform service thats help users search, analyze, visualize and act on data. The service can go live in as little as two days, and with an IT backend managed by Splunk experts, users can focus on acting on data. Search any kind of data in real-time to detect and prevent issues before they happen with access to streaming and machine learning capabilities. Search any kind of data in real-time to detect and prevent issues before they happen with access to the latest streaming and machine learning capabilities.
Splunk Cloud Competitors
Splunk Cloud Technical Details
| Operating Systems | Unspecified |
|---|---|
| Mobile Application | No |
Frequently Asked Questions
IBM Security QRadar SIEM, LogRhythm NextGen SIEM Platform, and Trellix Enterprise Security Manager are common alternatives for Splunk Cloud.
Reviewers rate Correlation and Event and log normalization/management and Custom dashboards and workspaces highest, with a score of 9.7.
The most common users of Splunk Cloud are from Enterprises (1,001+ employees).
Comparisons
Compare with
Reviews and Ratings
(123)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Business Problems Solved
- Pros
- Cons
Splunk Cloud is highly regarded for its efficient customer support and comprehensive services. Users appreciate its ability to perform security information and event management, providing real-time analysis. One of the standout features of Splunk Cloud is its user-friendly interface that allows users to create easily customizable dashboards and conveniently share them with others. The product has gained a reputation for being fast, reliable, and easy to navigate.
The versatility of Splunk Cloud makes it an invaluable tool across various departments within organizations. For the IT department, it helps monitor devices that generate logs, enabling them to address log retention and conduct security investigations. Moreover, Splunk Cloud is widely used throughout businesses to solve a range of problems, such as monitoring Active Directory Events, identifying misconfigurations, excessive usage, improper procedures, and security events. Additionally, teams including DevOps, Security, sales, support, and operations benefit from Splunk Cloud's capabilities as it centralizes server logs and provides insights into interruptions in service, anomalous activities, and security-related events.
Splunk Cloud eliminates the need to host infrastructure and pay upfront licensing costs by delivering Splunk-as-a-Service securely on the public cloud. It supports all Splunkbase apps, including premium applications with pre-packaged searches, dashboards, and reports. This makes it easier for businesses to log user events in mobile applications and backend services while gaining visibility into key metrics through comprehensive reports and dashboards.
A significant use case of Splunk Cloud lies in its role as a SIEM solution for aggregating log data and generating alerts when necessary. It replaces less robust solutions for enhanced security measures. Moreover, Splunk Cloud proves valuable in providing visibility into cloud infrastructure and various providers. It aids in identifying anomalies, events of interest, and indicators of compromise.
Overall, Splunk Cloud presents itself as an indispensable tool that offers a wide range of use cases across different departments within an organization. Its powerful features, efficient support, and user-friendly interface make it a popular choice for businesses seeking effective log management, security analysis, and real-time monitoring.
Effective SIEM Solution: Users have found Splunk Cloud to be a simple and effective solution for consolidating multiple data points and managing alert workflows. Several reviewers have mentioned that it has helped them streamline their security operations and improve incident response.
User-Friendly Interface: The user-friendly interface of Splunk Cloud has been praised by many users, with some describing it as intuitive and easy to navigate. This allows users to easily create custom dashboards for everyday monitoring of multiple parameters without the need for extensive training or technical expertise.
Powerful Search Capabilities: Many reviewers have highlighted Splunk Cloud's powerful query language and fast search indexing capabilities. This enables quick and accurate searching through large volumes of information, such as Windows Server Logs, making it easier for users to find the insights they need in a timely manner.
Cons:
- Lagging behind competitors: Some users have expressed that Splunk Cloud lags behind its competitors in terms of features and functionality. They feel that the enterprise versions are always one version behind the consumer versions, which hinders their ability to take advantage of the latest enhancements and improvements.
- Expensive cost: The cost of Splunk Cloud is considered expensive compared to its competitors. Users would like to see more cost-effective pricing options that align with their budget constraints and provide better value for money.
- Complex query language: The SPL programming language used for queries in Splunk Cloud is not intuitive, according to users. They find it challenging to write complex queries efficiently and would appreciate a better repository of pre-built queries for common usage monitoring, making it easier for them to analyze data without extensive knowledge of coding.
Attribute Ratings
Reviews
(1-15 of 15)Companies can't remove reviews or game the system. Here's why
January 08, 2024
Splunking Great.
With so many disparate systems finding a single fault point within all the interconnected applications is very difficult. Splunk enables us to centrally locate all logs and metrics from the full stack of systems - including network, identity, cyber, application, database, etc etc. AND THEN correlate all this information into meaningful dashboards that tell stories about the data and state of our environments.
- Dashboarding
- Data Selection and Processing.
- Ingestion Techniques.
- Easier Plugin Creation.
- Free Tier Cloud.
- Query Language Builder.
We use Splunk Cloud to aggregate logs from various Cloud and on-premise applications and services into a single place for Security and IT Operations monitoring. This allows us to focus on a single platform and remove duplication of costs, training, data onboarding etc. We have alerts that are sent directly to operations teams and dashboards available for wallboards and aggregate data.
- Easy to get data in
- Rich user experience
- Wide range of Splunk & Community add-ons
- Unable to download configuration changes easily
December 29, 2023
Splunk Cloud - king of log ingest
Log aggregation, enterprise security - alerts and detections off of log events for corporate infrastructure. Correlation searches off of specific events, application troubleshooting, and any other details that you can find in our log sources.
Using Splunk Cloud simplifies the solution as we do not have to maintain and manage infrastructure.
Using Splunk Cloud simplifies the solution as we do not have to maintain and manage infrastructure.
- Log ingest / parsing
- role based access to specific logs
- log event searching
- alerts and dashboards
- Filter of incoming logs from cloud sources - needs drastically improved UI
- Mission Control - nice concept, not there in implementation
Splunk Cloud is used by the IT department for the majority of the devices that can produce logs. It was initially purchased as a syslog aggregate but has evolved into much more than that now. It addresses the question of log retention and security investigation. It will eventually be expanded to be used across the wider business.
- Searching through logs/data
- Data ingestion
- Documentation for add-ons and apps
- Support for Splunk Cloud
September 27, 2021
It is an effective tool that enables us to detect, analyze, and respond to threats more effectively
Splunk Cloud is one of the advanced and reliable platforms. It has efficient customer support which is playing an important role in giving great services. It is being used by me for the last year in our organization. It has helped me a lot in security information and event management. It provides me the real-time analysis. Using it, I create easy-to-follow dashboards that I can easily share with your users. The usability of the product is
another amazing reason why I am using the product. It is very fast and reliable to use. It is very easy to create
customizable dashboards for scheduling your events, and also you do not have to
learn a lot for using them.
- This SIEM consolidates multiple data points and offers several features and benefits, creating custom dashboards and managing alert workflows.
- Splunk Cloud provides a simple way to have a central monitoring and security solution. Though it does not have a huge learning curve, you should spend some time learning the basics.
- Splunk Cloud enables me to create and schedule statistical reports on network use for Management.
- Splunk Cloud generally lags behind its competitors. Enterprise versions are always one version behind those available to consumers.
- It is expensive as compared to its competitors. They should come up with cost-effective prices.
July 22, 2021
Good app monitoring data platform
Splunk Cloud is being used by our own department. We use it mainly to aggregate logs and metrics. We also create different dashboards to display our service running status.
Since we have multiple environments, it's very convenient to stream all logs/metrics into Splunk Cloud, and see them from one centralized place.
Since we have multiple environments, it's very convenient to stream all logs/metrics into Splunk Cloud, and see them from one centralized place.
- Display log events in a very nice way for humans to read
- Very easy and powerful to create dashboards
- Very fast and reliable
- Since it's a managed cloud service, it doesn't offer the capability to edit the config files directly. So if the web UI doesn't support something, we can't change it.
July 19, 2021
Splunk Cloud, good for cloud-first companies.
We recently implemented it in our organization, mainly for security monitoring and to provide visibility into our cloud infrastructure and various providers. We are bringing in data to better identify anomalies, events of interest, and indicators of compromise.
- Integration with Okta for IAM-related security events and monitoring.
- Integration with AWS for CloudTrail and CloudWatch logs
- Integration with Mimecast for email monitoring and integration
- Deploying apps require a support ticket and can have a long turnaround time.
- Making changes to conf files requires a ticket and if it's not through an approved process, then Puppet will reset it to what it was previously
- Custom apps have to be very well written to make it through the approval process.
Splunk Cloud is used to provide quick and easy access to important data. This includes metrics about their business, the use of our services, revenue, and errors. Several departments throughout the organization use the data and dashboards available in Splunk.
- Excellent dashboards that provide a quick view of important data.
- Easy to create dashboards.
- Filtering within the dashboards provides updated dashboards quickly.
- Exporting is easy.
- While the dashboards are intuitive, setting them up isn't always as easy. A more intuitive interface would help ensure all users can easily set up dashboards to get the information they need.
Splunk is used by just about every person in our company, from sales, to support, and from dev to operations. It has been adopted at all levels of our organization. We use Splunk to monitor build deployments, support tickets but most especially for operations and finding problems with servers and systems. We have many TVs setup in our Network Operations Center showing various aspects of our infrastructure. Splunk cloud is simply where our data is stored and searched.
- Excellent tool for correlating logs from hundreds of servers and digging into events for a specific time period.
- Based on issues found Splunk allows for simple and complex monitoring to alert when the same event or problem is seen again.
- Advanced dashboard tools allow for unique and creative perspectives on how to display data in ways relevant to each department in our organization.
- Some of their more advanced features, like ITSI, Machine Learning, or Security Analytics, can be very challenging to setup and configure.
- Splunk Cloud support has been a challenge in the past. They are getting better, but they have had problems responding in a timely manner to issues.
- These are only some minor observations of things I have had to deal with. In general, Splunk is a solid product that is fantastic to use.
January 17, 2020
A solid security and monitoring tool
We use Splunk for a part of the business. More specifically, for the less critical machines. For the critical ones, we have a big SIEM with limited licenses. Having Splunk for the rest of the environment does save some money, and they do not need the same management as the critical ones.
- Ease of use.
- There is not a big learning curve.
- It could be cheaper.
October 13, 2019
Splunk Cloud is a great solution for SIEM
Splunk Cloud is being used by our IT security operation and our DevOps team. It is being used similarly to a SIEM for aggregating log data and running analysis on it for generating alerts. It replaced Sumo Logic which was producing too many poor alerts and was not as robust of a solution. It supports our SOC well, and it makes our security team's job much easier. We are also using it in DevOps as a pilot for APM.
August 16, 2019
Data is the new Oil!!
Splunk Cloud is being used by our department. It solved many business problem as it delivers Splunk-as-a-Service hosted securely on the public cloud. With this cloud-ready service, one can enjoy all of Splunk Enterprise features without worrying about hosting the infrastructure and without paying the upfront Splunk licensing cost. Splunk Cloud supports all Splunkbase apps including Premium applications (e.g. Enterprise Security, ITSI, etc.) with pre-packaged searches, dashboards, and reports to create the right story from the data with the power of self-serviceability.
- With Splunk Cloud you get the advantage of moving from POC to Production in a matter of days rather than in months allowing the Business to gain a lot.
- Takes you away from managing infrastructure/administration, allows saving time & money. Reduce the overall TCO (Total Cost of Ownership)
- Move from Reactive to Proactive Monitoring
- Highly secure environment at your finger-tips
- I can see that Splunk Cloud can still improve in the form of SLA.
August 16, 2019
Powerful and versatile
Splunk is available to all our teams, and usage is spreading. My team uses it for all the applications we manage, and it lets us log all user events in our mobile application and backend services. The reports it enables also really help with visibility and monitoring. For example, we were able to create a dashboard showing the average amount of time it takes to get through a particular flow in the app, the number of units processed per day in our app, error rates, and a lot more.
- Powerful query language.
- Very fast search indexing.
- Intuitive UI.
- The query language is well-documented but has a bit of a learning curve.
- I wish copy/pasting JSON from the logs were easier without going to the completely raw (condensed) form.
June 22, 2019
Heavy Hitter SIEM!
We use Splunk to centralize and consume all of our server logs, and various other logs, to monitor for interruptions in service, anomalous activity, and other security-related events. Splunk is primarily used by our DevOps and Security teams. Splunk solved an issue of being able to easily and effectively search hundreds of thousands of log entries in an easy to consume format.
- Splunk is extremely versatile and can consume just about any kind of log out there.
- Splunk's search function is very powerful, and allows for some very complex search criteria. Narrowing and/or expanding search results is as simple as a click of the mouse.
- There are many different apps/plugins that can be added to Splunk that provide built-in reporting and alerting on certain kinds of events, meaning you don't have to be an expert to use Splunk.
- There is a bit of a learning curve to figure out how to initially use it.
- When SAML is set up, there is no apparent way to log out.
Here at CCMSI, we use Splunk Cloud to monitor Active Directory Events. It is primarily used by the IT Systems Team. It has proven to be invaluable to find misconfiguration, excessive usage, improper procedures, and security events. The tool allows me to give Management the information they ask for in a graphical way that shows trends, spikes, and overall usage.
- Splunk Cloud allows me to search the volumes of information help in Windows Server Logs quickly and accurately.
- Splunk Cloud allows me to create Dashboards for everyday monitoring of multiple parameters.
- Splunk Cloud allows me to create and schedule reports for Management on network usage and statistics.
- The SPL programming language that the queries are built in is not very intuitive.
- There should be a better repository of pre-built queries for what I would think of as common Active Directory usage monitoring.
- I would like to see more free training/familiarization information made available.