Overall Satisfaction with Splunk Enterprise Security (ES)
Splunk has acted as a one-stop solution for all our cyber security requirements. We have extensively used Splunk for log analysis and monitoring. The best part has been the onboarding time required for the team. The ease of use has amazed the entire team. We developed a workflow for monitoring and identifying key issues from the logs that are generated. We initially set up Splunk on our premises which were easy thanks to the Splunk customer service team. Later our team set up an index to store the data, We also designed a listener to receive the data systematically. Later we installed Splunk universal forwarder. This specific tool has single-handedly acted as a backbone for the architecture. We set up a forward server to monitor and connected it with the forwarder. Later we developed a program to search and view the generated reports. Finally, the metrics were collected and could be viewed in the dashboard. Windows OS generates logs during its lifecycle. They will be collected; also we can monitor the event log channels and files which are forwarded by the in-Splunk cloud. Creating Dashboards and the use of panels in the Splunk applications gives a no-code experience. This architecture ensures high compliance, efficiency and also improves sales/ Marketing.
- This allowed us to comply with the organizational and Global security policies and regulations. This also helps the companies auditing easier and the response to data breaches a lot easier. The filtering ability for the logs and the latency for search responses are amazing indeed.
- The ability for third-party adapters support is phenomenal. There are plenty of configurable options for data and reporting. This also allows the integration of external endpoints.
- As a company that generates TBs of data, Splunk's ability to handle large datasets surprises me.
- The product is pretty much on the expensive side.
- The User interface and experience could improve as these things matter a lot nowadays. The number of clicks required could be minimized.
- The RAM consumption is very huge. Could optimize and improve.
- Better compliance and ease of audits
- Reduced training costs
- Faster response time to security threats
- Black Duck Software Composition Analysis (SCA)
We are actually both applications but for different use cases. The mix of both products works well for us. Black duck does certain things better, while Splunk is used for certain other use cases.
Do you think Splunk Enterprise Security (ES) delivers good value for the price?
Yes
Are you happy with Splunk Enterprise Security (ES)'s feature set?
Yes
Did Splunk Enterprise Security (ES) live up to sales and marketing promises?
Yes
Did implementation of Splunk Enterprise Security (ES) go as expected?
Yes
Would you buy Splunk Enterprise Security (ES) again?
Yes