Excellent product for our cybersecurity team
February 27, 2020
Excellent product for our cybersecurity team
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Splunk Enterprise
Splunk Enterprise has been used by our Cybersecurity Department for almost five years to be the single dashboard for our Security Incident and Event Monitoring. On top of that, we are also using the Enterprise Security, and it helps us to focus on the most notable events that need to be followed up asap.
Pros
- Central dashboard for all logs
- Enterprise Security
Cons
- Better dashboard graphics
- The total cost is expensive compared to the upfront benefit that my organization experienced, probably due to the lack of our technical team knowledge.
All the logs from those security devices or systems are pumping to the Splunk Enterprise and being correlated by the Enterprise Security. However, there are some difficulties in tuning the Data Model, which results in a lot of false positive. This could occur due to the lack of technical skills our team has. To compensate that we are planning to engage with the Splunk Professional Service to fix the issue.
Do you think Splunk Enterprise delivers good value for the price?
Not sure
Are you happy with Splunk Enterprise's feature set?
Yes
Did Splunk Enterprise live up to sales and marketing promises?
I wasn't involved with the selection/purchase process
Did implementation of Splunk Enterprise go as expected?
Yes
Would you buy Splunk Enterprise again?
Yes
Comments
Please log in to join the conversation