Overview
What is Splunk Cloud?
A data platform service thats help users search, analyze, visualize and act on data. The service can go live in as little as two days, and with an IT backend managed by Splunk experts, users can focus on acting on…
Security Excellence and IT Ops Insights at your fingertips in a single place
Splunk Cloud - king of log ingest
TrustRadius Insights
Splunk Cloud - Excellent product with steep learning curve
It is an effective tool that enables us to detect, analyze, and respond to threats more effectively
Good app monitoring data platform
Splunk Cloud, good for cloud-first companies.
Splunk Cloud provides quick and easy access to important metrics and logs!
Splunk Cloud: Find the needle in your haystack of data
A solid security and monitoring tool
Splunk Cloud is a great solution for SIEM
Powerful and versatile
Heavy Hitter SIEM!
Splunk Cloud -- A tool that helps monitor and solve problems.
Popular Features
- Event and log normalization/management (15)9.797%
- Correlation (15)9.797%
- Centralized event and log data collection (15)9.090%
- Deployment flexibility (15)9.090%
Reviewer Pros & Cons
Pricing
What is Splunk Cloud?
A data platform service thats help users search, analyze, visualize and act on data. The service can go live in as little as two days, and with an IT backend managed by Splunk experts, users can focus on acting on data. Search any kind of data in real-time to detect and prevent issues before they…
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
13 people also want pricing
Alternatives Pricing
What is Trellix Helix?
Trellix Helix (formerly FireEye Helix) is a SIEM solution providing a non-malware threat detection solution.
Product Demos
UiPath Robotic Process Monitoring for Splunk - Demo Walkthrough
Splunk Risk-Based Alerting Demo: Using MITRE ATT&CK + Enterprise Security (ES)—@Splunkofficial Cloud SecOps
Features
Security Information and Event Management (SIEM)
Security Information and Event Management is a category of security software that allows security analysts to look at a more comprehensive view of security logs and events than would be possible by looking at the log files of individual, point security tools
- 9Centralized event and log data collection(15) Ratings
Effectiveness of real-time centralized event and log data collection
- 9.7Correlation(15) Ratings
Correlation of logs and events to pinpoint significant threats
- 9.7Event and log normalization/management(15) Ratings
Ability to normalize event syntax so that logs can be compared and are machine-understandable
- 9Deployment flexibility(15) Ratings
Ability to tune system to maximize threat detection and minimize false positives
- 9.3Integration with Identity and Access Management Tools(13) Ratings
Integration with access control tools like Active Directory and LDAP
- 9.7Custom dashboards and workspaces(15) Ratings
dashboards that can be customized to meet the needs of specific groups
- 8.7Host and network-based intrusion detection(13) Ratings
Ability to detect both endpoint intrusion and network ingress detection
- 8.7Data integration/API management(5) Ratings
Ease and quality of data integrations between SIEM and other systems
- 9Behavioral analytics and baselining(4) Ratings
How effectively activity and behavior baselines are established and maintained
- 8.3Rules-based and algorithmic detection thresholds(6) Ratings
Effectiveness of manually-established rules and algorithmically-determined detection thresholds
- 8Response orchestration and automation(4) Ratings
Quality of built-in response orchestration and automation in Next-Gen SIEM
- 8.7Reporting and compliance management(6) Ratings
Ease and quality of reporting and compliance functions
- 9.3Incident indexing/searching(6) Ratings
Effectiveness of searching across structured and unstructured events and incidents within SIEM
Product Details
- About
- Competitors
- Tech Details
- FAQs
What is Splunk Cloud?
Splunk Cloud Competitors
Splunk Cloud Technical Details
Operating Systems | Unspecified |
---|---|
Mobile Application | No |
Frequently Asked Questions
Comparisons
Compare with
Reviews and Ratings
(124)Community Insights
- Business Problems Solved
- Pros
- Cons
Splunk Cloud is highly regarded for its efficient customer support and comprehensive services. Users appreciate its ability to perform security information and event management, providing real-time analysis. One of the standout features of Splunk Cloud is its user-friendly interface that allows users to create easily customizable dashboards and conveniently share them with others. The product has gained a reputation for being fast, reliable, and easy to navigate.
The versatility of Splunk Cloud makes it an invaluable tool across various departments within organizations. For the IT department, it helps monitor devices that generate logs, enabling them to address log retention and conduct security investigations. Moreover, Splunk Cloud is widely used throughout businesses to solve a range of problems, such as monitoring Active Directory Events, identifying misconfigurations, excessive usage, improper procedures, and security events. Additionally, teams including DevOps, Security, sales, support, and operations benefit from Splunk Cloud's capabilities as it centralizes server logs and provides insights into interruptions in service, anomalous activities, and security-related events.
Splunk Cloud eliminates the need to host infrastructure and pay upfront licensing costs by delivering Splunk-as-a-Service securely on the public cloud. It supports all Splunkbase apps, including premium applications with pre-packaged searches, dashboards, and reports. This makes it easier for businesses to log user events in mobile applications and backend services while gaining visibility into key metrics through comprehensive reports and dashboards.
A significant use case of Splunk Cloud lies in its role as a SIEM solution for aggregating log data and generating alerts when necessary. It replaces less robust solutions for enhanced security measures. Moreover, Splunk Cloud proves valuable in providing visibility into cloud infrastructure and various providers. It aids in identifying anomalies, events of interest, and indicators of compromise.
Overall, Splunk Cloud presents itself as an indispensable tool that offers a wide range of use cases across different departments within an organization. Its powerful features, efficient support, and user-friendly interface make it a popular choice for businesses seeking effective log management, security analysis, and real-time monitoring.
Effective SIEM Solution: Users have found Splunk Cloud to be a simple and effective solution for consolidating multiple data points and managing alert workflows. Several reviewers have mentioned that it has helped them streamline their security operations and improve incident response.
User-Friendly Interface: The user-friendly interface of Splunk Cloud has been praised by many users, with some describing it as intuitive and easy to navigate. This allows users to easily create custom dashboards for everyday monitoring of multiple parameters without the need for extensive training or technical expertise.
Powerful Search Capabilities: Many reviewers have highlighted Splunk Cloud's powerful query language and fast search indexing capabilities. This enables quick and accurate searching through large volumes of information, such as Windows Server Logs, making it easier for users to find the insights they need in a timely manner.
Cons:
- Lagging behind competitors: Some users have expressed that Splunk Cloud lags behind its competitors in terms of features and functionality. They feel that the enterprise versions are always one version behind the consumer versions, which hinders their ability to take advantage of the latest enhancements and improvements.
- Expensive cost: The cost of Splunk Cloud is considered expensive compared to its competitors. Users would like to see more cost-effective pricing options that align with their budget constraints and provide better value for money.
- Complex query language: The SPL programming language used for queries in Splunk Cloud is not intuitive, according to users. They find it challenging to write complex queries efficiently and would appreciate a better repository of pre-built queries for common usage monitoring, making it easier for them to analyze data without extensive knowledge of coding.
Attribute Ratings
Reviews
(1-15 of 15)Splunking Great.
- Helps us meet Government Regulations.
- Allows us to simplify data for Upper Management.
- Allows us to collect data from all systems.
- Splunk Cloud has reduced the need for in-house Infrastructure Engineers due to the service being maintained by Splunk instead of ourselves.
- We no longer need to pivot between multiple cloud provider tools to monitor multiple services.
Splunk Cloud - king of log ingest
- It saves user hours on ingesting new feeds, parsing, and searcing
- Cost is high as you pull in more log sources
- Helped us identify potential security breaches
- Able to investigate issues thoroughly
It is an effective tool that enables us to detect, analyze, and respond to threats more effectively
- Reduced the amount of time spent by internal security resources.
- We gained insights into our network that we did not have before
- Efficient support.
Good app monitoring data platform
- Reliable app monitoring platform for our digital services
- Ensuring our data is secure by integration with corporate SSO
- Quickly identify the root cause
Splunk Cloud, good for cloud-first companies.
- We're already seeing benefits of better visibility. We're creating alerts and integrating with Slack for better DevSecOps
- The biggest impact is the time saved by having access to all data in one place.
- We have found out interesting questions relating to our data that has dramatically improved the way our devs write their code.
- The amount of insight we have into our applications and infrastructure allows us to find problems before they cause issues with our clients.
- We have the ability to stay ahead of a train wreck while the train is still 20 minutes away. Splunk has allowed us to see things coming before they are problems.
A solid security and monitoring tool
- It did give use insight in our network which we had not had before.
Splunk Cloud is a great solution for SIEM
- Reduced the amount of time needed from internal security resources (freed up at least 3 FTEs).
- Reduced the cost per daily GB ingests of our SIEM by 33%.
- Allowed us to migrate to a lower cost SOC model.
Data is the new Oil!!
- End-end visibility across your departmental silos
- Strengthen the overall global monitoring posture
- Move from Reactive to Proactive Monitoring
- Highly secure environment at your finger-tips
- Takes you away from managing infrastructure/administration, allows saving time & money. Reduce the overall TCO (Total Cost of Ownership)
Powerful and versatile
- It has allowed my team to find answers to support issues quickly.
- It has given us insight into how our app is doing through custom dashboards.
- It has simplified logging setup with their easy-to-use API.
Heavy Hitter SIEM!
- The biggest return on investment is how quickly logs are now consumed, and how quickly we can follow events that occur in logs.
- The number of logs that can be consumed by Splunk is much higher than previous solutions.
- We have much better visibility into our logs, and are able to spot patterns in events with the built-in graphs and reports.
- Splunk Cloud has had a positive ROI in helping more efficiently track the cause of Help Desk Tickets.
- The billing model which is based on the amount of data from logs uploaded doesn't alert if a threshold is approaching. This can have a negative ROI.
- The training that I have taken while in-depth and focused is pretty expensive.