Splunk Enterprise Review
October 22, 2025

Splunk Enterprise Review

Nitin Umbardand | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Software Version

Splunk Light (legacy)

Overall Satisfaction with Splunk Enterprise

Splunk technology is used for business and web analytics, application management, compliance, and security. It correlates, captures, and indexes real-time data, from which it creates alerts, dashboards, graphs, reports, and visualizations.

Pros

  • robust log management and aggregation capabilities, efficiently handling and retaining logs for extended periods.
  • It is a power full tool to help tracing calls, using filters and customizable indexes.
  • It enables organizations to build artificial intelligence (AI) into their data strategies and gain operational intelligence from their machine data.

Cons

  • Deploying Splunk can become expensive when managing large volumes of data.
  • The tool’s dashboards are not as reliable as other tools such as Tableau.
  • The cost associated with Splunk Enterprise Security is high, and many users express concerns about the licensing model and overall expenses.
  • it offers flexible and scalable data ingestion, supporting diverse data sources and formats, enhancing the organization's data analysis capabilities.
  • cost associated with Splunk Enterprise Security is high, the licensing model and overall expenses.
  • Platform agnostic tracking and monitoring of systems
  • Developers can quickly get up and running on Splunk without requiring large-scale development or major spending on hardware. This provides a great return on investment (ROI) and a rapid time-to-value return.
Splunk is particularly noted for its high performance and scalability, as well as the innovative way in which it collects and presents data. However, the technology can be quite complex to set up and manage.
Splunk’s software can be used to examine, monitor, and search for machine-generated big data through a browser-like interface. It makes searching for a particular piece of data quick and easy, and more importantly, does not require a database to store data as it uses indexes for storage.
Able to show more than Log data in Splunk views, we tested several plug-ins during a small pilot, and we were able to bring O/S (Win/Unix/Linux) & APM data metrics into the same views as Logged data. I've seen others use it to visualize a wider range of data types, too...better tools for visualization but as an aggregator Splunk has the most plug-in types out there

Do you think Splunk Enterprise delivers good value for the price?

Yes

Are you happy with Splunk Enterprise's feature set?

Yes

Did Splunk Enterprise live up to sales and marketing promises?

Yes

Did implementation of Splunk Enterprise go as expected?

Yes

Would you buy Splunk Enterprise again?

Yes

SentinelOne Singularity, Infoblox DDI (BloxOne)
it offers robust log management and aggregation capabilities, efficiently handling and retaining logs for extended periods.Optimizing searches to improve speed can be tricky and impractical.
Challenges exist in managing data onboarding and integration, especially when dealing with diverse and numerous data sources

Splunk Enterprise Feature Ratings

Security Information and Event Management (SIEM)
8.7
Centralized event and log data collection
9
Correlation
10
Event and log normalization/management
10
Deployment flexibility
7
Integration with Identity and Access Management Tools
7
Custom dashboards and workspaces
7
Host and network-based intrusion detection
9
Log retention
9
Data integration/API management
7
Behavioral analytics and baselining
9
Rules-based and algorithmic detection thresholds
9
Response orchestration and automation
9
Reporting and compliance management
10
Incident indexing/searching
10

Comments

More Reviews of Splunk Enterprise

  1. Home
  2. Security Information and Event Management (SIEM) Software
  3. Splunk Enterprise Reviews
  4. User Review of Splunk Enterprise