Splunk Cloud Platform assessment
October 21, 2025

Splunk Cloud Platform assessment

Anonymous | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with Splunk Cloud Platform

The current use case is using Splunk Cloud Platform to look for cyber security threats. While there are other tools being used to look for cybersecurity threats. Splunk Cloud Platform has proven to be a reliable and trusted source.

It's also used monitor login attempts and watch traffic patterns and trends. Dashboards have long been used in this product and will continue.

Pros

  • Monitoring
  • Dashboards
  • Searching

Cons

  • Cost
  • Configuration
  • Maintenance
  • Reduced MTTR by 25%
  • Preventing breaches justifies investment
  • High licensing costs
  • Need for skilled senior personnel to operate
What it does well:
- Powerful SPL query language for advanced users
- Excellent visualization dashboards
- Comprehensive documentation and community support

Where it needs work:

- Steep learning curve for SPL syntax
- Non-Intuitive UI for beginners
- Complex administration and data model configuration
- Search performance degrades with poor query optimization

Bottom line: Enterprise-grade tool requiring dedicated training investment. Best for teams with experienced analysts.
Vs elastic:
- SPL's statistical functions superior to KQL for complex correlations
- Better enterprise support, less operational overhead
- Splunk Cloud Platform's detection engineering more mature

vs Sentinel:
- SPL more powerful than KQL for custom analytics
- Better cross-platform visibility (non-Azure environments)

vs Datadog
- SPL enables deeper forensic Investigations
- Superior compliance/audit capabilities

Do you think Splunk Cloud Platform delivers good value for the price?

Yes

Are you happy with Splunk Cloud Platform's feature set?

Yes

Did Splunk Cloud Platform live up to sales and marketing promises?

Yes

Did implementation of Splunk Cloud Platform go as expected?

I wasn't involved with the implementation phase

Would you buy Splunk Cloud Platform again?

Yes

What it does well:
- Real-time security incident correlation across distributed infrastructure
- Compliance auditing with retention requirements (SOC2, PCI-DSS)
- Complex query patterns requiring SPL's statistical functions
- Very large log aggregation from legacy systems

Some of the concerns:
- Cost-sensitive environments with high data volumes
- Teams lacking SPL expertise
- Simple log viewing without advanced analytics

Splunk Cloud Platform Feature Ratings

Security Information and Event Management (SIEM)
7.9
Centralized event and log data collection
8
Correlation
8
Event and log normalization/management
9
Deployment flexibility
7
Integration with Identity and Access Management Tools
8
Custom dashboards and workspaces
7
Host and network-based intrusion detection
9
Log retention
9
Data integration/API management
7
Behavioral analytics and baselining
9
Rules-based and algorithmic detection thresholds
8
Response orchestration and automation
6
Reporting and compliance management
9
Incident indexing/searching
7

Comments

More Reviews of Splunk Cloud Platform

  1. Home
  2. Security Information and Event Management (SIEM) Software
  3. Splunk Cloud Platform Reviews
  4. User Review of Splunk Cloud Platform