Securing Your Environment with Splunk Enterprise Security.
May 22, 2023
Securing Your Environment with Splunk Enterprise Security.
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Splunk Enterprise Security (ES)
Our scope is actually quite large as my team is responsible for the protection of tens of thousands of devices. This is accomplished with the use of Enterprise Security, which we have used for the past several years to great effect. Enterprise Security enables us to detect and respond to threats in real time, monitor our environment's overall security compliance, and provide timely and insightful reports and metrics to management.
Pros
- Security incident investigation.
- Insider threat detection.
- Reporting and metrics.
Cons
- Learning curve - requires subject matter expertise and Splunk administration knowledge.
- Automated response limitations - requires SOAR to unlock its full potential.
- Greatly reduced time to respond to incidents.
- Improved visibility into the SOC operations makes for easier decision-making for management.
Splunk Enterprise Security has absolutely helped our organizational goals. Many companies work on a reactive model - incidents happen and are detected only after the fact. Triage then begins, and it can be hours or days before things are figured out and resolved. With Enterprise Security, we can be proactive by setting up advanced analytics and thresholds which catch things before they even happen in cases.
Do you think Splunk Enterprise Security delivers good value for the price?
Yes
Are you happy with Splunk Enterprise Security's feature set?
Yes
Did Splunk Enterprise Security live up to sales and marketing promises?
Yes
Did implementation of Splunk Enterprise Security go as expected?
Yes
Would you buy Splunk Enterprise Security again?
Yes
Comments
Please log in to join the conversation