1. Home
  2. Security Orchestration, Automation and Response (SOAR) Tools
  3. Splunk SOAR Reviews
  4. User Review of Splunk SOAR
Best Automation Tool
April 25, 2022

Best Automation Tool

Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Overall Satisfaction with Splunk SOAR (Security Orchestration, Automation and Response) (formerly Phantom)

Splunk SOAR is used in our project to automate alert triage. It does the manual repetitive tasks in a few seconds, which if performed manually would take hours if the task is performed manually. It connects with other threat intel apps and provides enriched data using the payload. Used by IT security departments to monitor security issues and the health of devices.
  • User friendly user interface.
  • Integration with other threat intel websites.
  • Need other association rules based on behavioral analysis.
  • The ROI is positive because it saves a lot of time and increases productivity.
  • Respond immediately to threat.
  • Learning takes time, later it is easy to use.
SOAR is built on the Python programming language which helps in customizing automation according to the need. which gives us the ability to develop code. Playbooks and processes run quickly. A large about of tasks are automated. The API is very nice and you can manage a lot of services/resources from there. Alerts are always prompt and help you prepare for possible threats.

Do you think Splunk SOAR delivers good value for the price?

Yes

Are you happy with Splunk SOAR's feature set?

Yes

Did Splunk SOAR live up to sales and marketing promises?

Yes

Did implementation of Splunk SOAR go as expected?

Yes

Would you buy Splunk SOAR again?

Yes

AWS CloudTrail, Microsoft Defender for Endpoint (formerly Microsoft Defender ATP), VMware Carbon Black EDR
It does real-time analysis and informs about recent threats in the environment. It detects phishing threats and sends alerts instantly about them. Other than providing security encryption, users don't need to code anything into the terminal to run its patches. It is a great tool that provides great results and easy-to-use programming features like PlayBooks.