Skip to main content
TrustRadius
Splunk Enterprise

Splunk Enterprise

Overview

What is Splunk Enterprise?

Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.

Read more
Recent Reviews

Great if you have the money

7 out of 10
October 24, 2023
We use Splunk Enterprise as a SIEM and a separate pool to use for medical record auditing. The SIEM catalogues information from multiple …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 13 features
  • Custom dashboards and workspaces (53)
    8.2
    82%
  • Centralized event and log data collection (52)
    7.2
    72%
  • Event and log normalization/management (52)
    4.4
    44%
  • Correlation (51)
    4.3
    43%

Reviewer Pros & Cons

View all pros & cons
Verified User
Analyst in Information Technology
Hospital & Health Care Company, 1001-5000 employees
Return to navigation

Pricing

View all pricing
Splunk Enterprise

Splunk Enterprise

N/A
Unavailable

What is Splunk Enterprise?

Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

39 people also want pricing

Alternatives Pricing

Blumira

Blumira

$12
per month per user
What is Blumira?

Blumira’s cloud SIEM platform offers both automated threat detection and response, enabling organizations of any size to more defend against cybersecurity threats in near real-time. It's goal is to ease the burden of alert fatigue, complexity of log management and lack of IT visibility.

Return to navigation

Product Demos

Splunk Incident Review Demo

YouTube

Splunk Threat Intelligence Demo

YouTube

Splunk Enterprise Security | Splunk Enterprise Installation | Splunk Training | Edureka

YouTube
Return to navigation

Features

Security Information and Event Management (SIEM)

Security Information and Event Management is a category of security software that allows security analysts to look at a more comprehensive view of security logs and events than would be possible by looking at the log files of individual, point security tools

7.3
Avg 7.8
Return to navigation

Product Details

What is Splunk Enterprise?

Splunk Enterprise enables users to find out what is happening in a business and take meaningful action. It automates the collection, indexing and alerting of machine data that's critical to operations, so that users can uncover the actionable insights from data — no matter the source or format. Leverage artificial intelligence and machine learning for predictive and proactive business decisions.

Splunk Enterprise Integrations

Splunk Enterprise Competitors

Splunk Enterprise Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.

SolarWinds Loggly and LogRhythm NextGen SIEM Platform are common alternatives for Splunk Enterprise.

Reviewers rate Incident indexing/searching highest, with a score of 9.4.

The most common users of Splunk Enterprise are from Enterprises (1,001+ employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(449)

Attribute Ratings

Reviews

(1-25 of 68)
Companies can't remove reviews or game the system. Here's why
October 24, 2023

Great if you have the money

Verified User
Analyst in Information Technology
Hospital & Health Care Company, 1001-5000 employees
Score 7 out of 10
Vetted Review
Verified User
Likelihood to Recommend
Primary issue with Splunk Enterprise is cost. The licenses can get extremely expensive very quickly in my opinion. If the organization can afford to have all of their data in it then the program is amazing. We have been able to solve multiple problems or find things that would normally take hours within seconds with the tool
August 09, 2021

Splunk Enterprise in the Cloud empowers me as an analyst

AE
Allan Crittenden Edwards
Security Analyst
Eastern Michigan University (Higher Education, 1001-5000 employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk is well suited almost anywhere an Enterprise can afford it. It does require some technical chops to support an on-prem installation, but less so with a Cloud subscription. If it involves data there is a good chance that is possible with Splunk. In particular, it is a great base for Security use cases, especially for disparate and non-standard data sources.
July 20, 2021

Robust IT Operations and SIEM Management Solution

Verified User
Consultant in Information Technology
Transportation/Trucking/Railroad Company, 1001-5000 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Good for event correlation from multiple data sources, web monitoring, systems and application monitoring. Good as security information and event management tool. It collects data from logs and custom applications helping the business make informed decisions across the organization. Gain insights to drive operational performance and business results. Splunk's rich visualizations make results easy to understand and take necessary actions.
July 19, 2021

Great for almost anything

Verified User
Engineer in Information Technology
Non-Profit Organization Management Company, 501-1000 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Overall security monitoring: It can take data in and correlate it across very different datasets. Some tools require you to ingest and format it their way, but being able to do ad-hoc searching during an incident has proven to be very valuable.
April 29, 2021

Security/Data Analytics Solution That Comes with SIEM Capabilities

Verified User
Engineer in Information Technology
Computer & Network Security Company, 11-50 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk Enterprise is mostly suited for organizations where enough budget is available to maintain along with having dedicated resource[s] for it. While [it's] a great tool, you need to skilled resource[s] to get the best out of it.
April 14, 2020

Splunk leads the pack

Verified User
Engineer in Information Technology
Information Technology & Services Company, 201-500 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk is a great fit for organizations that need to consolidate log data. It's also a great fit for organizations that need to provide access to data to different teams of engineers. We send all of our log data to Splunk, index and report on it then provide access to different teams based on need.
March 12, 2020

One Splunk to rule them all!

Ahmet Fatih IRKLI | TrustRadius Reviewer
Ahmet Fatih IRKLI
Cyber Security Specialist
TUBITAK (Information Technology & Services, 10,001+ employees)
Score 10 out of 10
Vetted Review
Verified User
Likelihood to Recommend
I definitely recommend Splunk Enterprise to security and network teams as it is perfectly scalable for any size environment.
  • Network teams can easily see if there is a problem with the network device.
  • The security team can easily be notified about anomalies that may due to an intrusion.
  • The support team can follow the situation of assets and tools.
  • It can be integrated with most of the tools available on the market.
March 06, 2020

Splunk Enterprise review

Verified User
Technician in Information Technology
Banking Company, 10,001+ employees
Score 7 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk is good for log analyzing from enterprise level of applications on different logs and consolidating results as reports. We can use such data to make forecasts for future trends if issues would occur more or less frequently.

Setup and maintenance would not be easy, so always plan ahead. Also always do health check for stability on some of the Splunk components such as indexers and HFs.
February 29, 2020

Splunk Enterprise - Log collection & aggregation

Fraser Clark | TrustRadius Reviewer
Fraser Clark
Network Engineer
People's Postcode Lottery (Gambling & Casinos, 201-500 employees)
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk is excellent in most situations where log collection and aggregation is needed. It can work as a small scale syslog server and be built on from that.
The obvious wall is the cost of the product and for that reason I would say smaller businesses would not be suited to this as there are free solutions that could bridge this gap.
February 29, 2020

Won't you take me to Splunkytown

Verified User
C-Level Executive in Information Technology
Financial Services Company, 51-200 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk Enterprise is well-suited for any requirement to aggregate vast sums of data, no matter how structured or unstructured, and search across it all at speed, or report on it with visualizations, etc.

It's not suited for scenarios where you want to report on a single set of data, say, in a traditional way, for example, a typical scheduled report out of a finance system.
February 27, 2020

Excellent product for our cybersecurity team

Verified User
Vice-President in Other
Banking Company, 5001-10,000 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk Enterprise is very well suited for correlating all the logs that need to be monitored and to be analyzed. It has performed very well with a vast amount of logs data. Furthermore, Splunk Enterprise can be pumped in and do parsing for numerous security device logs.
However, it needs certain technical skills to be able to correlate the logs and do the query in the Splunk Enterprise.
February 26, 2020

Splunk Enterprise: A powerful, but expensive tool

Verified User
Technician in Information Technology
Construction Company, 1001-5000 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
If the organization is looking for a powerful SIEM solution and has the budget, then I would recommend Splunk Enterprise. Using the tool can be as simple or as complicated as you want it. My only hesitation will be the complexity of implementation. For smaller organizations, it shouldn't be an issue, but larger ones may find it challenging to follow Splunk Enterprise's best practices for implementation.
February 23, 2020

Monitor log and alert quickly with the speed of Splunk Light

Johanes Siregar | TrustRadius Reviewer
Johanes Siregar
Risk Insight Product
Telkomsel (Telecommunications, 1001-5000 employees)
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk Light is perfect to be used by a small organization or a team within a large organization with internal IT policy which required any solution must be deployed within the organization's premise. It performs very well for event log monitoring and alerting purpose. It is also relatively quick to deploy and easy to manage.
February 20, 2020

Splunk is a single tool that does everything

ShuYun Du | TrustRadius Reviewer
ShuYun Du
Technical Specialist
Scotiabank (Banking, 10,001+ employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk is the best tool to use for log mining. It is also good at combining multiple sources of logs together and creates a single pane of glass. It can do lots of APM monitoring however at the end of the day it is more of a log mining tool but not an APM tool. It is best to use for business analyzing, debugging and fraud investigation. When it comes to monitoring part, get a proper APM tool will be a better idea.
November 20, 2019

Splunk: The log expert

Kuntal Das | TrustRadius Reviewer
Kuntal Das
Security Analyst
University of Colorado Denver (Higher Education, 5001-10,000 employees)
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Pros: Splunk is very well suited if you have multiple log sources of related data. All of them can be correlated and tasks can be automated based on the requirement. Other than alerts, Splunk can also run a specific script of your choice, based on some defined conditions.
Cons: If you have a few logs but a large number of log sources, Splunk can be very expensive.
November 16, 2019

A real-time monitoring system

Johann Davila | TrustRadius Reviewer
Johann Davila
System Administrator
Happy Money (Financial Services, 201-500 employees)
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
It is well suited with real-time monitoring and notifications sent when issues occur. It has been very helpful to monitor issues that applications are having so that we can get the right team to address these issues to get the company back up and running to continue business as normal.
November 05, 2019

Great tool for digging deep in to the back-end and to monitor the front-end

PB
PAULIUS BUCINSKAS
Analyst Digital Site Health
Western Union (Financial Services, 10,001+ employees)
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
When needed to search for some specific event information triggered by end-user or by any other service, Splunk Enterprise tool can give that information and by reviewing the log of the event you can find a lot of needed information that could help you to find the solution or resolve the issue on the spot.
May 21, 2019

Splunk, a great tool!

Verified User
Analyst in Information Technology
Information Technology and Services Company, 5001-10,000 employees
Score 8 out of 10
Vetted Review
Verified User
Likelihood to Recommend
Splunk is the best tool to work on if there is a need for analyzing the logs and the organization’s inside data. The way employees use search engines and browse for their personal use they can be caught easily. Also, if there are some outside threats within the company you can analyze those by setting up alerts.
March 15, 2019

Splunk Light: A great log management solution for small installations.

Verified User
Engineer in Information Technology
Hospitality Company, 501-1000 employees
Score 6 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk Light is highly useful for smaller companies without regulatory requirements for logging of data. It has all of the main features required for basic troubleshooting and log retention for internal use. Splunk Light is not a good fit for large deployments as it's not capable of high availability, data modeling, SSO, or clustering will cause issues.
March 12, 2019

Splunk Enterprise - all your logging needs under one roof

Verified User
Engineer in Engineering
Financial Services Company, 11-50 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Splunk is an excellent central logging system. For companies concerned about the cost, you can combine Splunk with an open-source logging engine such as rsyslog and only ingest the logs you need to search. Splunk is an excellent tool for handling web and systems logging and can help quickly identify issues in both.
February 28, 2019

Excellent tool for analyzing logs

Verified User
Engineer in Information Technology
Hospitality Company, 501-1000 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Simplifies analyzing of big logs finds and helps in finding issues faster. Splunk Alerts are great to be notified of possible issues so that necessary actions can be taken to avoid it from becoming a problem to our end users. Dashboard reports can be scheduled to be generated and share with key stakeholders.
Return to navigation