Item: Splunk Enterprise Security (ES)
Rating: 7
Author: Shilpi Jain

Use Cases and Deployment Scope

We use Splunk Enterprise Security to manage threat connect and other security-related issues, as security is the backbone of any industry.WE also used to address akamai, malicious email, and other network-related threats. This is really helpful to address PCI content and is easy to include or exclude or monitor particular email IDs or websites that may be suspicious.

Pros and Cons

Threat Connect
PCi compliance
Akamai

may be more in PCI compliance
and more in malicious emails

Return on Investment

MTTR

Scalability

We are able to cover all the cases we have got in the past but still, there is a lot of scope for improvement as day by day cybercrime is increasing and going to the next level.

Alternatives Considered

Splunk Cloud

We have both of these instances in our organization.

Key Insights

Do you think Splunk Enterprise Security (ES) delivers good value for the price?

Yes

Are you happy with Splunk Enterprise Security (ES)'s feature set?

Yes

Did Splunk Enterprise Security (ES) live up to sales and marketing promises?

Yes

Did implementation of Splunk Enterprise Security (ES) go as expected?

Yes

Would you buy Splunk Enterprise Security (ES) again?

Yes

Other Software Used

Foglight, SolarWinds Pingdom

Likelihood to Recommend

Splunk Enterprise Security search head works so well for threat connect and Paul alto networks along with monitoring incidents and dashboards are working great. We would like to see more AI for help in the detection of suspicious mail activity as day by day these kinds of activities are increasing so if there will be more scanning with the help of AI that would be more helpful.

Splunk Enterprise Security is one of best solution Splunk has provided.

Overall Satisfaction with Splunk Enterprise Security (ES)