Splunk Cloud is a great solution for SIEM
October 13, 2019
Splunk Cloud is a great solution for SIEM
Score 10 out of 10
Vetted Review
Verified User
Overall Satisfaction with Splunk Cloud
Splunk Cloud is being used by our IT security operation and our DevOps team. It is being used similarly to a SIEM for aggregating log data and running analysis on it for generating alerts. It replaced Sumo Logic which was producing too many poor alerts and was not as robust of a solution. It supports our SOC well, and it makes our security team's job much easier. We are also using it in DevOps as a pilot for APM.
- Reduced the amount of time needed from internal security resources (freed up at least 3 FTEs).
- Reduced the cost per daily GB ingests of our SIEM by 33%.
- Allowed us to migrate to a lower cost SOC model.
Splunk Cloud blows Sumo Logic out of the water. The experience is night and day. We went from several highly stressed IT security professionals who were unsure if the data they were getting was valuable, to very happy IT security professionals who can now be more proactive and get all the information they need.
Do you think Splunk Cloud delivers good value for the price?
Yes
Are you happy with Splunk Cloud's feature set?
Yes
Did Splunk Cloud live up to sales and marketing promises?
Yes
Did implementation of Splunk Cloud go as expected?
Yes
Would you buy Splunk Cloud again?
Yes