The Best SOAR Platform for messy enterprise environments
December 09, 2025
The Best SOAR Platform for messy enterprise environments
Score 8 out of 10
Vetted Review
Verified User
Overall Satisfaction with Splunk SOAR
The way we use SOAR varies from client to client and industry to industry. For example, for healthcare clients whose doctors insist on using ancient apps on Ipads. Instead of manually looking up geolocation, correlating user history among other things, Splunk does all of that in seconds
Pros
- Taking chaotic alerts and enriching the heck out of it with structured intelligence from multiple sources
- Playbook debugger
- cross tool incident execution
- rapid integrations with the Splunk SIEM
Cons
- the versioning system occasionally breaks previous working blocks when you publish new versions
- Automating repeated tasks like identity offboarding which has become a gold std substitute for multiple analyst hours
- The auditability capabilities strengthen compliance postures for our clients in regulated industries
I used Sentinel in a previous role but currently I'm majorly focused with Splunk. Reason being Splunk is just way better at handling the messy enterprise reality.
Do you think Splunk SOAR delivers good value for the price?
Yes
Are you happy with Splunk SOAR's feature set?
Yes
Did Splunk SOAR live up to sales and marketing promises?
No
Did implementation of Splunk SOAR go as expected?
I wasn't involved with the implementation phase
Would you buy Splunk SOAR again?
Yes
Comments
Please log in to join the conversation