Powerful tool for Security
February 11, 2022
Powerful tool for Security
Score 10 out of 10
Vetted Review
Verified User
Overall Satisfaction with Splunk Enterprise Security (ES)
It offers a powerful analytics query writing capability to triage incidents, spikes in the data, and network and incident reporting. In addition, Splunk Enterprise Security also provides a lot of logs, events, and metrics as part of network telemetry data. This is then used in conjunction with development work in the cloud-like billing center to identify defects with applications. Also, how to remediate incidents and working on data examination and advanced analytics within Splunk Enterprise Security is key.
- Analytics
- Network telemetry
- Automated response
- Pricing of the tool, but the tool is worth it
- More labs and test environments would help
- More support for languages apart from JAVA, Python, etc.
- Granularity of reporting
- More development and use of APIs
- Dashboards for faster analysis
Splunk Enterprise Security has been able to allow us to meet our security goals without too much dependency on development. Splunk Enterprise Security also has a great way of bringing in an import of a file and then being able to go through and utilize machine learning techniques that can be easily deployed. Being able to find metrics daily in Splunk Enterprise Security is helpful.
Do you think Splunk Enterprise Security (ES) delivers good value for the price?
Yes
Are you happy with Splunk Enterprise Security (ES)'s feature set?
Yes
Did Splunk Enterprise Security (ES) live up to sales and marketing promises?
Yes
Did implementation of Splunk Enterprise Security (ES) go as expected?
Yes
Would you buy Splunk Enterprise Security (ES) again?
Yes