a good tool for threat hunting and response
August 31, 2023
a good tool for threat hunting and response
Score 7 out of 10
Vetted Review
Verified User
Overall Satisfaction with Splunk Enterprise Security (ES)
we use ES to analyse the risk of the organization and do actions to mitigate them to enhance our security Level in the environment faced variety of attacks from the world wide. we take much affort to imporve our rules to reduce the false positive and flase negative
Pros
- incident review show up all the risk case so that we can review it in a convenience way
- security posture combine very useful information and do analysis and trend in overall
- security intelligence give a score to judge which is true risk
Cons
- may be join search
- more depend on log if log not received in time
- need professional train to use
- reduce alert volume
- fast risk dectection
- SLA
it really help us, but there is a room to achieve our company objective
Do you think Splunk Enterprise Security delivers good value for the price?
Not sure
Are you happy with Splunk Enterprise Security's feature set?
Yes
Did Splunk Enterprise Security live up to sales and marketing promises?
Yes
Did implementation of Splunk Enterprise Security go as expected?
Yes
Would you buy Splunk Enterprise Security again?
Yes
Comments
Please log in to join the conversation