Excellent log analysis and monitoring tool for software and hardware
March 15, 2022

Excellent log analysis and monitoring tool for software and hardware

Anonymous | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User

Overall Satisfaction with Splunk Enterprise Security (ES)

In terms of log analysis and monitoring, it is one of the best tools available. It uses charts and graphs to present data in a way that is highly interactive. It also has a simple integration process. In terms of ease of use, the UI is excellent.

Pros

  • A variety of threats can be more easily understood and managed.
  • Provide assistance to departments responsible for ensuring company compliance
  • The co-relation searches make it easier to complete the task.

Cons

  • Customizing an investigation is more difficult than you might think.
  • A more user-friendly user interface
  • Incorporate some of the classic dashboard features into the Glass table's functionality.
  • When moving from the homepage to another page, we notice a larger delay in response time.
  • All of our customers are happy with ES.
  • Because we're a Splunk Partner, many of our customers have used our ES infrastructures.
  • Keeping track of all things SIEM-related in one place.
The Splunk Enterprise Security (ES) security portfolio is often used by me when I work on projects. With the help of ES, I was able to use both standard Use Cases and custom Correlation Searches to make projects that used both. As long as I have access to new and updated Correlation Searches, I will be able to meet the needs of my clients.
I think I have shown that this rating is correct in the previous question. Everyone should use Splunk Enterprise Security because it is the best in the market that anyone can find. Also, the support the Splunk team gives is top-notch. I really like how Splunk is running and supporting the Splunk cloud, as well as the new tools that Splunk keeps releasing.

Do you think Splunk Enterprise Security delivers good value for the price?

Yes

Are you happy with Splunk Enterprise Security's feature set?

Yes

Did Splunk Enterprise Security live up to sales and marketing promises?

Yes

Did implementation of Splunk Enterprise Security go as expected?

Yes

Would you buy Splunk Enterprise Security again?

Yes

As a hardware engineer, I use ES on a daily basis to protect our clients' hardware, and I recommend it to all security analysts because it combines threat detection features with exceptional security incident management. All structured and/or large companies should be able to benefit from it, in my opinion. Small businesses find it difficult to implement because of the high costs. System flaws, industrial espionage through networks of computer devices, or models that we believe to be safe thanks to Splunk have occurred repeatedly in our cases.

Splunk Enterprise Security Feature Ratings

Security Information and Event Management (SIEM)
7.4
Centralized event and log data collection
7
Correlation
9
Event and log normalization/management
8
Deployment flexibility
9
Integration with Identity and Access Management Tools
6
Custom dashboards and workspaces
8
Host and network-based intrusion detection
8
Log retention
5
Data integration/API management
8
Behavioral analytics and baselining
9
Rules-based and algorithmic detection thresholds
5
Response orchestration and automation
8
Reporting and compliance management
8
Incident indexing/searching
6

Comments

More Reviews of Splunk Enterprise Security

  1. Home
  2. Security Information and Event Management (SIEM) Software
  3. Splunk Enterprise Security Reviews
  4. User Review of Splunk Enterprise Security