A perfect solution to detect threats
March 15, 2022
A perfect solution to detect threats

Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Splunk Enterprise Security (ES)
To overcome common security challenges, threat detection. There are various use cases like Security monitoring, compliance, incident investigation, incident response, insider threat. There are around 600+ use cases available. There are different data sources like AWS, GCP, Azure, Audit trail, DNS, Email, Malware Analysis, etc. We are using this to monitor Splunk Logs. It is quite helpful.
Pros
- Security Posture to get a count of Authenticated users.
- Incident review to notify you of the kind of incident is there i.e. critical, moderate, etc. with a risk score, status.
- User behavior analytics and ES integrate seamlessly to enhance insight, strengthen security and streamline investigations.
Cons
- A bit complicated for new users
- it is difficult to create dashboards for multiple projects
- More detailed documentation is needed
- Regarding the rate of return on investment, not sure on that.
- The use of artificial intelligence and behavioral analytics helps detect anomalies and threats and act before they happen thus saving lots for organizations.
Above mentioned tools are environment-specific and provide insights into what is happening in the environment. We were looking for a product that is environment agnostic & able to work with many environments. Hence Splunk Enterprise security stands out for us. Also, we were looking for something which can withstand the scale which we working on.
Do you think Splunk Enterprise Security (ES) delivers good value for the price?
Yes
Are you happy with Splunk Enterprise Security (ES)'s feature set?
Yes
Did Splunk Enterprise Security (ES) live up to sales and marketing promises?
Yes
Did implementation of Splunk Enterprise Security (ES) go as expected?
Yes
Would you buy Splunk Enterprise Security (ES) again?
Yes
Comments
Please log in to join the conversation