Security/Data Analytics Solution That Comes with SIEM Capabilities
April 29, 2021

Security/Data Analytics Solution That Comes with SIEM Capabilities

Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Overall Satisfaction with Splunk Enterprise

Splunk Enterprise is being used by mostly IT Department. [It's] being used to monitor security monitoring purpose[s] along with [business-relevant] use case monitoring.
  • Data Normalization
  • Correlation
  • Data Analytics
  • Use Case Development Capability
  • Cost
  • Use Case Development
  • Log Integration Easiness
  • Room for Customization
  • Helped to detect fraudulent activities
  • Centralized repository for all kind of data
LogRhythm is a great SIEM Tool. But Splunk Enterprise is so much more than that. [It's] a Security Analytics Tool with no limitation. It depends on [organization's] size, budget[,] and also what exactly they are looking for.

Do you think Splunk Enterprise delivers good value for the price?

Yes

Are you happy with Splunk Enterprise's feature set?

Yes

Did Splunk Enterprise live up to sales and marketing promises?

Yes

Did implementation of Splunk Enterprise go as expected?

Yes

Would you buy Splunk Enterprise again?

Yes

Tenable.sc (formerly SecurityCenter), Rapid7 InsightVM (Nexpose), Metasploit
Splunk Enterprise is mostly suited for organizations where enough budget is available to maintain along with having dedicated resource[s] for it. While [it's] a great tool, you need to skilled resource[s] to get the best out of it.

Splunk Enterprise Feature Ratings

Centralized event and log data collection
10
Correlation
10
Event and log normalization/management
10
Deployment flexibility
10
Integration with Identity and Access Management Tools
10
Custom dashboards and workspaces
10
Host and network-based intrusion detection
10