SIEM is a word not even used when you realize what Splunk Enterprise Security can do for your Security Teams!
July 18, 2021
SIEM is a word not even used when you realize what Splunk Enterprise Security can do for your Security Teams!
Score 10 out of 10
Vetted Review
Verified User
Overall Satisfaction with Splunk Enterprise Security (ES)
We use Splunk Enterprise Security as our main log management solution, but it also is being used as a correlation engine and use cases developer. The main scope for the solution is to provide a single pane of glass for the Incident Response Team so they will be able to see correlated events from different sources and will be able to catch and respond to threat events faster!
Pros
- Correlation searches
- Notable events
- Security use cases
Cons
- Console administration
- Log management
- Integration with more security vendors
- Less time to remediate for security incidents
- Reduction of noisy alerts for security teams
- Integration with many sources to gain visibility
Do you think Splunk Enterprise Security (ES) delivers good value for the price?
Yes
Are you happy with Splunk Enterprise Security (ES)'s feature set?
Yes
Did Splunk Enterprise Security (ES) live up to sales and marketing promises?
Yes
Did implementation of Splunk Enterprise Security (ES) go as expected?
Yes
Would you buy Splunk Enterprise Security (ES) again?
Yes
Comments
Please log in to join the conversation