Splunk- The Spunky Compliance Tool
December 01, 2015

Splunk- The Spunky Compliance Tool

Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Overall Satisfaction with Splunk

I currently use Splunk to extract user activity on both the front and back end of information systems.

Pros

  • The querying speed is relatively fast. Of course the complexity of your query can affect how quickly it returns results, however, mine are fairly complex and I haven't had any issues.
  • The query language allows for the ability to extract exactly what you are looking for.
  • The ability to set up alerts is great for increased visibility and monitoring of your data.

Cons

  • Splunk provides to the ability to create nice looking dashboards but the dashboards lack dynamic filtering. It would be nice if all the charts within a single dashboard filtered bases on selections within each chart.
  • Better ability to identify, investigate, and produce reports regarding compliance incidents.
  • Adobe Workbench (i.e. Insight)
Adobe Workbench has better dymanic selection allowing non technical users to quickly query the data. However, Splunk can table the data more effectively.
Who will be using the tool? The tool is best utilized by technial analysts who are able to comprehend the splunk query language.

Splunk Enterprise Feature Ratings

Security Information and Event Management (SIEM)
9.6
Centralized event and log data collection
10
Correlation
10
Event and log normalization/management
10
Deployment flexibility
10
Integration with Identity and Access Management Tools
10
Custom dashboards and workspaces
7
Host and network-based intrusion detection
10

Comments

More Reviews of Splunk Enterprise

  1. Home
  2. Security Information and Event Management (SIEM) Software
  3. Splunk Enterprise Reviews
  4. User Review of Splunk Enterprise