We are working with AppDynamics, Splunk Enterprise Platform, and other Splunk products. However, the main use case here is with Splunk Enterprise Platform.
Splunk Enterprise
SplunkExternal reviews
444 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Great Platform for incident correlation and management
What do you like best about the product?
Great tool for enrichment, alert correlation, automations before an analyst looks at it
What do you dislike about the product?
Price, steep learning curve for full features
What problems is the product solving and how is that benefiting you?
Protecting the assets, users and crown jewels of the company
Real-time data analysis benefits but automation in role creation needs improvement
What is our primary use case?
What is most valuable?
Splunk Enterprise Platform is a good tool to have, but it is expensive. The features that have proven most effective for real-time data analysis include parts of the platform and its automation capabilities. However, I want them to enhance their automation to cover every aspect, particularly the automation of roles creation.
What needs improvement?
While Splunk Enterprise Platform is a good product, it is expensive. Additionally, it is complex for inexperienced cybersecurity engineers and requires experienced personnel to handle it effectively.
For how long have I used the solution?
We have been providing Splunk Enterprise Platform for ten months.
How are customer service and support?
Splunk's technical support is at the same level for all products, although we have not opened many tickets.
How would you rate customer service and support?
Neutral
What's my experience with pricing, setup cost, and licensing?
Splunk Enterprise Platform is expensive.
Which other solutions did I evaluate?
What other advice do I have?
For smaller companies, I recommend Stellar Cyber as an alternative to Splunk Enterprise Platform. Stellar Cyber is easier to implement and integrate, and it has solid AI capabilities, especially for automation. It is also willing to adapt to customer requirements. I would rate Splunk Enterprise Platform overall somewhere between six and eight, depending on the size of the company.
Best Analytic tool for dashboard, reporting and observability
What do you like best about the product?
Splunk Enterprise tool has out of the box applications available to integrate with public cloud/DC (VMWARE) to collect varioud cloud insights & metric data. It's easy to develop a customized dashboard using the data stored.
What do you dislike about the product?
Currently Splunk doesnt support Application performance monitoring and license cost is very high.
What problems is the product solving and how is that benefiting you?
We integrated with public to collect both metric data, cloud insights data to develop a customized dashboard like Executive Dashboard, Service management dashboard, cloud resources insights and cost analysis dashboard.
Splunk has changed like this?
What do you like best about the product?
Splunk has traditionally shown strong performance in APM. Especially compared to other competing products, it has an advantage.
It is still a strong and good solution.
It is still a strong and good solution.
What do you dislike about the product?
Since Cisco acquired it, the pricing policy and other features are still unclear.
Of course, I expect that a good company will acquire it and create good synergy to further expand the business, but I have a strong feeling that they are not ready yet.
Of course, I expect that a good company will acquire it and create good synergy to further expand the business, but I have a strong feeling that they are not ready yet.
What problems is the product solving and how is that benefiting you?
The best feature of Splunk is APM.
You can see everything you want. (Of course, except for the things you can't see..)
If you ask the developer, more than 95% of all functions can be implemented.
You can extract only the data you want and see it, you can see the entire system at a glance, and you can see a variety of functions according to your purpose.
You can see everything you want. (Of course, except for the things you can't see..)
If you ask the developer, more than 95% of all functions can be implemented.
You can extract only the data you want and see it, you can see the entire system at a glance, and you can see a variety of functions according to your purpose.
Splunk enterprise is powerful and reliable
What do you like best about the product?
Real-time data insights and customizable dashboards
What do you dislike about the product?
Steep learning curve for beginners to master
What problems is the product solving and how is that benefiting you?
Splunk enterprise helps centralized logs, detect security threats and monitor system performance, making troubleshooting.
Splunk Enterprise is a powerful and versatile tool for data analysis and security.
What do you like best about the product?
Robust Data Ingestion: Handles massive volumes of data from diverse sources, including logs, metrics, and security events.
What do you dislike about the product?
Complex Configuration: Requires careful configuration to optimize performance and security.
What problems is the product solving and how is that benefiting you?
Extensive App Ecosystem: Benefits from a rich ecosystem of apps for specific use cases, such as security, IT operations, and business analytics.
Seamless integration streamlines fraud detection
What is our primary use case?
The main use case is to analyze the data log coming from other systems. We use Splunk to identify anomalies in transaction patterns, which may indicate irregular activity from certain customers. Our goal is to create alerts for stakeholders when such anomalies are detected.
How has it helped my organization?
Splunk has made our job easier by streamlining data searching and decision-making processes. By using it for fraud detection, we have potentially saved billions of Indonesian rupiah.
What is most valuable?
Splunk is very flexible in handling various formats of data as long as basic rules are adhered to. Its integration with other systems is seamless and can be done overnight. This ease of integration is its best advantage. Additionally, Splunk is adequate for real-time data processing.
What needs improvement?
The Splunk Processing Language (SPL) poses a steep learning curve for new users. The software could benefit from additional processing power, such as GPU support, for handling large volumes of data faster. The language could also be more user-friendly, similar to platforms where actions are easier through button clicks.
For how long have I used the solution?
I have used the solution for approximately three years.
What do I think about the stability of the solution?
I rarely encounter bugs or glitches during daily use. However, there was one instance where an issue required solutions from the headquarter's next upgrade session.
What do I think about the scalability of the solution?
Splunk is scalable, provided the supporting infrastructure, such as CPU and GPU processing, is also scalable.
How are customer service and support?
I rarely communicate with the Splunk headquarters, usually interacting with the local implementer.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We are not using anything else that functions like Splunk. However, for fraud detection, we also use GVD Instinct and FICO, along with Elasticsearch.
What about the implementation team?
I have not been involved in implementing it, except in integration, where I've found it easy.
What was our ROI?
We have been saving significant amounts through fraud detection. I cannot say precisely how much. Overall, Splunk has simplified our data management and decision-making processes.
What's my experience with pricing, setup cost, and licensing?
The official license operates like a subscription with an annual fee. Our local implementer offers pricing based on reserved quota, such as 80 gigabytes per day, costing under one billion Indonesian rupiah, or around $70,000 USD. It is affordable and flexible.
Which other solutions did I evaluate?
Elasticsearch, Kibana, Check Point, and other solutions like Microsoft Teams, OneDrive, and SharePoint are used.
What other advice do I have?
Keep my identity anonymous; publishing my title is sufficient. It's important to master the SPL for efficient use. Seek solutions that better support GPU for real-time processing.
I'd rate the solution eight out of ten.
Enhanced efficiency with exceptional monitoring features
What is our primary use case?
Our use case for Splunk Enterprise Platform involved deploying the solution for a client requirement, focusing on their data monitoring and management needs.
How has it helped my organization?
Splunk Enterprise Platform has significantly improved operational efficiency by making it easier to monitor infrastructure, detect errors, and read logs. It has reduced troubleshooting efforts from one hundred percent to about twenty percent, thereby increasing productivity significantly. The platform's ability to monitor Docker containers directly has also been beneficial for us.
What is most valuable?
The most valuable features of Splunk Enterprise Platform include its performance, ease of implementation, and user interface, which are superior compared to other on-premises products.
What needs improvement?
Pricing is an area that needs improvement, as it is considered high. Additionally, the addition of AI capabilities would be beneficial for analyzing IP activity patterns and providing alerts. During the integration with Docker, we noticed that Splunk only shows container IDs and not their names, which is a drawback.
For how long have I used the solution?
I have used Splunk Enterprise Platform for one to two years for the projects I have mentioned.
What do I think about the stability of the solution?
Splunk Enterprise Platform is a stable solution, and I would rate its stability as nine out of ten.
What do I think about the scalability of the solution?
Splunk Enterprise Platform is scalable, though the implementation can be challenging. I would rate scalability as eight out of ten.
How are customer service and support?
We have not opted for paid support but have utilized community support, which is good but could benefit from more contributions. I rate the support a seven out of ten.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
We have tried multiple products before, but they were difficult to implement. Splunk Enterprise Platform is much easier to implement and execute quickly, which is why we chose it.
How was the initial setup?
The initial setup was not considered easy and required learning and implementation by ourselves. It was an average difficulty process, not too difficult but not very easy either.
What about the implementation team?
The deployment and implementation were done by myself and one of my teammates, totaling two people involved in the process.
What was our ROI?
Monetary ROI was not directly measured, but using Splunk Enterprise Platform has reduced time spent on troubleshooting, therefore enhancing productivity.
What's my experience with pricing, setup cost, and licensing?
I would rate the pricing around three out of ten, considering the tool's cost. We haven't used any extra features, so I'm not sure about additional offerings.
Which other solutions did I evaluate?
We evaluated several other products, but they were found difficult to implement. Splunk was the easier solution.
What other advice do I have?
I highly recommend Splunk Enterprise Platform for organizations with large volumes of logs and multiple servers, as it provides good ROI for big companies. However, due to its cost, it may not be suitable for small organizations.
Splunk is great tool for the Security Incident monitoring and Investigation
What do you like best about the product?
It provides real-time insights and monitoring, which is crucial for identifying and addressing issues promptly. The search processing language (SPL) is powerful and flexible, allowing users to perform complex queries and analyses. Splunk is very user friendly, easy to implement and integrate.
What do you dislike about the product?
Cost is the one thing that i will keep under dislike but they have mow come up with diffrent licensing model that is competing with others.
What problems is the product solving and how is that benefiting you?
Splunk is effectively helping you monitor data from various log sources and conduct security incident investigations.
Helps with monitoring and incident management
What is our primary use case?
I use the solution in my company to capture the events to deal with threat detection, incident response, and compliance reporting. For IT operation management, it gets complex to track the health and performance of IT infrastructure, including our network devices and applications, so Splunk Enterprise Platform can be used for centralized log management.
What is most valuable?
The most valuable feature of the tool for DevOps and from a continuous delivery perspective is that the tool is useful in areas like deployment, monitoring, and incident management.
What needs improvement?
If I compare Splunk Enterprise Platform with the other tools, the dashboard and the user interface need to be built at a console level and in a user-friendly mode. Sometimes, the tool looks a bit complex, and we can't find out the exact area where we need to make the changes in the configuration and changes for the log events monitoring. The dashboard and the console-level areas need to be made friendly.
The product's initial setup phase needs to be made easy since it looks like it is very complex compared to the other tools in the market.
For how long have I used the solution?
I have been using Splunk Enterprise Platform for three years.
What do I think about the stability of the solution?
From a stability perspective, the tool is good. If any breakdowns exist, remediation and support are provided, so it is not a problem.
What do I think about the scalability of the solution?
The tool is used by around 5,000 employees and servers in my company.
How are customer service and support?
I have interacted with the solution's technical support. I rate the technical support a seven and a half out of ten.
How would you rate customer service and support?
Neutral
How was the initial setup?
The solution is deployed in an on-premises version.
What's my experience with pricing, setup cost, and licensing?
The tool is expensive.
What other advice do I have?
To first-time users, I can say that proper analysis and bandwidth utilization, cloud resource monitoring, and cost optimization are the things I would ask one to check in the tool.
It is not easy for beginners to use, and for freshers, it will take time to understand the tool.
From a security perspective, I rate the tool a nine out of ten. From a user and the console perspective, I rate the tool a seven out of ten.
In general, I rate the tool an eight out of ten.
showing 11 - 20