Keeps the Security teams on toes and the company on top.
June 29, 2022

Keeps the Security teams on toes and the company on top.

Ezekiel Mathew | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with Splunk SOAR

Our company supports geospatial organizations, and intelligence and defense communities in the state and beyond. We aim to deliver secure software services and that's why we engage Splunk SOAR to not only automate repetitive tasks but also improve the incident response capabilities. We use Splunk SOAR extensively while building log analytics to help turn data into outcomes with its top-notch automation.
  • All incident investigations can be automated
  • Generates reports easily and quickly after submitting the file to a malware sandbox
  • Provides detailed analysis of suspicious activity.
  • Some inaccuracies from their predictive models.
  • Saves our teams plenty of hours each week.
  • Is a great homegrown approach to addressing manual workflows and repetitive tasks, keeping teams on our toes and us on top?
  • Turns data into outcomes in log analytics
I have been able to automate plenty of events with Splunk SOAR from carrying out site optimizations all the way to migration services, all through with a consistent uptime. We have created a specific Splunk SOAR playbook; when Splunk receives an alert, the playbook triggers an automatic endpoint detection and response.
Before acquiring Splunk SOAR, we encountered plenty of false alerts many times a day, each of which demanded the teams' valuable time and attention. Now with Splunk's intense automation and powerful alert triage tools, no time is wasted on the cumbersome manual tasks

Do you think Splunk SOAR delivers good value for the price?

Yes

Are you happy with Splunk SOAR's feature set?

Yes

Did Splunk SOAR live up to sales and marketing promises?

Yes

Did implementation of Splunk SOAR go as expected?

Yes

Would you buy Splunk SOAR again?

Yes

Splunk SOAR is absolutely incredible when it comes to automating actions saving our team plenty of hours per week. The deployment is quite flexible, supporting both on-premises and hybrid deployments. I'm intrigued by Splunk's capabilities in case management. I am the assistant team lead in our cybersecurity department and I constantly review and deploy solutions for these incident cases. With Splunk, this task is much easier as I create codified reusable templates for these repetitive procedures.