Highly powerful SIEM tool with Endless Capabitlies
Updated July 06, 2022

Highly powerful SIEM tool with Endless Capabitlies

Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Overall Satisfaction with Splunk SOAR

We used Splunk SOAR as a log aggregating platform that connects our Splunk tool and connects all the application that provides ingress and egress connections inside and outside the organization. We use this part of our log onboarding platform, a company-wide program that is used to enable logging on all the applications that are being used with donor security metrics.

Pros

  • Security Orchestraction
  • Custom Playbooks
  • Integration to Cloud Applications

Cons

  • Access Control Issues
  • On-Prem Hosting Capabilities
  • Lesser Workflow
  • Easy Turnaround time for Detection and Preventions
  • Automation capabilities saved times.
  • Better exposure to reports.
Our team was capable enough to identify a lot of automation plants in the existing runbooks that we had. The present Playbooks are very easy and provide multiple integration options which include visual editors and API, people to develop and quick ideas on Sandbox and get it implemented immediately and effectively. To an extent, the processes and PlayBooks do not slow down the process of identifying and rectifying the vulnerabilities, but we were able to identify that this would increase the efficiency of our process and if that man really would create a lot of errors. Thinking into a perspective we believe that security orchestration Would bring only better performance in terms of process
Highly dependent upon the automation capabilities that Splunk provided. Used Alerts, Alarm, Auto Triage to a great extent, friendly on automation scripts that allowed us to add a lot of custom scripts, that allowed us to automate a lot of processes, mostly on the log monitoring project. This is not just involved custom email or generation of reports but highly compressed tasks such as custom workflows that require high manual intervention were also automated.

Do you think Splunk SOAR delivers good value for the price?

Yes

Are you happy with Splunk SOAR's feature set?

Yes

Did Splunk SOAR live up to sales and marketing promises?

Yes

Did implementation of Splunk SOAR go as expected?

Yes

Would you buy Splunk SOAR again?

Yes

The tool has some excellent capability sets the benchmark for log monitoring and orchestration standards. The tool is very easy to onboard, the training to give the security consultants very less and it's very easy to pick up due to its huge amount of documentation training program that provides. The support that team provides cease absolutely brilliant. There is a number of custom PlayBooks that would suit almost all your needs and that would master cloud conference and almost all the requirements and minimal effort to customize it based on your needs.

Comments

More Reviews of Splunk SOAR

  1. Home
  2. Security Orchestration, Automation and Response (SOAR) Tools
  3. Splunk SOAR Reviews
  4. User Review of Splunk SOAR