Splunk Enterprise Security tools are Avengers for your software systems.
July 18, 2022

Splunk Enterprise Security tools are Avengers for your software systems.

Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Overall Satisfaction with Splunk Enterprise Security (ES)

We use Splunk Enterprise Security tools as our first line of defense in combating threats on our multicolored on-premises deployments. Splunk provides advanced threat intelligence that utilizes an efficient model to immensely cut down on false alerts. Splunk Enterprise Security delivers an efficient data exfiltration model to identify suspicious activity and isolate threats and user behaviors.
  • I perform risk searches correlation several times a day. Splunk adds annotations to enrich correlation search results.
  • Greatly reduces alert volumes.
  • Demands incorporation of several risk factors to identify unauthorized usage which is quite complex and time-consuming.
  • Finds and solves all kinds of malware
  • Empowers our teams to solve and neutralize all threats posed to our systems and software.
Splunk is helping us meet and exceed our security goals. Just like I have said before, Splunk Enterprise Security is unique because not only does it add annotations for search results enrichment, but it also clearly classifies risk objects based on the annotations.
Splunk has a robust framework that takes scalability to any level. Regardless of the data, Splunk is able to configure automate and correlate notable events with peak performance. It is possible to swiftly run incident reviews and response audits across our multi-environments.

Do you think Splunk Enterprise Security (ES) delivers good value for the price?

Yes

Are you happy with Splunk Enterprise Security (ES)'s feature set?

Yes

Did Splunk Enterprise Security (ES) live up to sales and marketing promises?

Yes

Did implementation of Splunk Enterprise Security (ES) go as expected?

Yes

Would you buy Splunk Enterprise Security (ES) again?

Yes

Working as a security software engineer, Splunk Enterprise Security is like my suite of premium tools to accomplish my work. Everyone who has been behind a monitoring screen for software threats understands how hectic false positives are. Splunk is however able to reduce the alert volumes by triaging notables and saving you from the false alerts nightmare.

Splunk Enterprise Security (ES) Feature Ratings

Centralized event and log data collection
8
Correlation
9
Event and log normalization/management
9
Deployment flexibility
8
Integration with Identity and Access Management Tools
6
Custom dashboards and workspaces
9
Host and network-based intrusion detection
10
Log retention
9
Data integration/API management
8
Behavioral analytics and baselining
9
Rules-based and algorithmic detection thresholds
9
Response orchestration and automation
9
Reporting and compliance management
10
Incident indexing/searching
9