Splunk Enterprise Security for life
June 15, 2022
Splunk Enterprise Security for life
Score 10 out of 10
Vetted Review
Verified User
Overall Satisfaction with Splunk Enterprise Security (ES)
We are using Splunk Enterprise Security for a long time but we are quite new to Splunk Enterprise Security. We were using Qradar before and I can easily say building a rule is quite easy with Qradar but flexibility is everything. If you are an advanced SIEM user you can deploy every rule with Splunk Enterprise Security but you cannot do this with Qradar. Anomaly detection and ML capabilities are big plusses as well. Right tech is important these days and Splunk is more comfortable than the competitors.
- Flexibility
- Machine learning
- Ease to use
- Fast
- Rule development ease of use
- Pricing
- Licensing
- Automation
Qradar is easy for first-timers. Easy to deploy and manage but if you need an advanced solution for ML, Anomaly Detection you need to use Splunk. Qradar is solid, too. But Splunk has advanced functionality for detection and automation.
Do you think Splunk Enterprise Security (ES) delivers good value for the price?
Not sure
Are you happy with Splunk Enterprise Security (ES)'s feature set?
Yes
Did Splunk Enterprise Security (ES) live up to sales and marketing promises?
No
Did implementation of Splunk Enterprise Security (ES) go as expected?
Yes
Would you buy Splunk Enterprise Security (ES) again?
Yes