Splunk SOAR: Your success in automation lies within your python abilities
June 20, 2022
Splunk SOAR: Your success in automation lies within your python abilities
Score 8 out of 10
Vetted Review
Verified User
Overall Satisfaction with Splunk SOAR
We utilize Splunk SOAR to automate mundane and repetitive security tasks to speed remediation and reduce manual effort. In our organization, our use case is centered around security operations and monitoring. Splunk SOAR facilitates our efforts to remediate and respond to threats within our environment at near-machine speed.
Pros
- Automation of end user notification
- Automation of ticket workflow
- Automation of data enrichment
- Automation of analyst alerting
Cons
- Playbooks can be daunting to design
- Playbooks are a compilation of python scripts and API calls with a nice GUI but can break as easily
- Solid understanding of python scripting is required to troubleshoot issues
- Reduced MTTR for phished users
- Reduced MTTR when isolating compromised devices
- Reduction in manual effort to notify users of clicked malicious links
Do you think Splunk SOAR delivers good value for the price?
Yes
Are you happy with Splunk SOAR's feature set?
Yes
Did Splunk SOAR live up to sales and marketing promises?
No
Did implementation of Splunk SOAR go as expected?
No
Would you buy Splunk SOAR again?
Yes
Comments
Please log in to join the conversation