We mostly use Splunk Cloud Platform for monitoring performance and looking for performance events.
Splunk Cloud
SplunkExternal reviews
63 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Works very well and helps to find outages and performance impacts faster
What is our primary use case?
How has it helped my organization?
We have seen many benefits of Splunk Cloud Platform, which is why we are still using it. With the alerting, we can find outages faster, and we can find performance impacts faster. We are then able to use them to diagnose and dig through our logs to find out what possibly caused it or look for a time when it happened to find a correlating deployment or something else that caused the problem.
We monitor multiple cloud environments. Splunk Cloud Platform is pretty good for monitoring multiple cloud environments. We have it all come into the same index irrespective of the system. Even though we have multiple data centers, everything comes into the same Splunk index, so we monitor it all in the same place.
Splunk Cloud Platform has end-to-end visibility into our cloud-native environment, which is very important for us because otherwise, we would not be able to have the data or be able to diagnose and find issues.
We have been using Splunk Cloud Platform for a very long time. I do not even know a time without it, so it is hard to say how much it has reduced our mean time to resolve (MTTR).
Splunk Cloud Platform has improved our organization’s business resilience. We use it very heavily to look for issues that may arise. In terms of Splunk’s ability to predict, identify, and solve problems in real-time, we mostly rely on our own searches. We do not rely on a lot of advanced observability features. We are mostly using our own alerts that we have written and our own dashboards.
What is most valuable?
Dashboards and alerting are the most valuable features. The dashboards let us see how the system looks in terms of anomalies, and the alerts trigger us to go and look at what possible problems are happening.
What needs improvement?
Its performance can be better. The searches sometimes take a long time. There could be better searches, but mainly, it needs to improve the performance with a vast amount of data. That will make it better and easier to use.
Their support can also be better.
For how long have I used the solution?
I have been using this platform for 12 years.
What do I think about the stability of the solution?
Its stability has been very good. We have only had a few outages that I can remember where Splunk has been down.
What do I think about the scalability of the solution?
Its scalability seems okay. Most of our issues come with our data storage. We are storing mass amounts of data, and it seems to handle that right now.
How are customer service and support?
Their support has been lacking a little bit. We have several outstanding bugs that have not been fixed yet, and we are still waiting for Splunk to fix them. For example, we cannot use Splunk Mobile because of an issue with the authentication and what permissions are available. We have not been able to use Splunk Mobile since the new app. I have used the old apps, and I was quite disappointed when they were broken. I have never been able to use the new app.
I would rate them a seven out of ten. For emergency issues, they are good. For lower-priority issues, we are still waiting.
How would you rate customer service and support?
Neutral
How was the initial setup?
I was not involved in its deployment.
Which other solutions did I evaluate?
I know that the company evaluated a few other solutions, but I have not been as involved in those. We are still using Splunk.
What other advice do I have?
I would rate Splunk Cloud Platform a nine out of ten because it does a good job at what it does. I wish I could use the mobile app, but the rest of it works very well.
The best value that I have received by attending Splunk conferences is finding out new things that I can do with my own job. Most of the time, it is disappointing because a lot of the new features have new applications that we have to buy, and I have no say in the purchase of new applications. However, there have been some new improvements in the applications that we already have, and I come for those updates. I am able to see if the new features in the existing applications are more useful to me.
Makes searching for issues very easy
What is our primary use case?
My primary use cases are for troubleshooting, monitoring, and anomaly detection.
How has it helped my organization?
Splunk helped reduce our mean time to resolve by around 60%. We have realized these savings through it solving problems and the proactive monitoring. But it comes with a huge cost. We have to evaluate other products that are comparable to Splunk in the market and see if they offer the same value.
It improved our business resilience.
Splunk has improved my organization by troubleshooting issues. When we have an issue, if we didn't have Splunk, it could take hours or days to figure out where the problem is. With Splunk, it only takes hours or minutes sometimes.
It saves us money by changing our product or process to work in a better way. Splunk is great. It has a lot of value ads and features. But overall, Splunk Cloud is expensive compared to other products in the market.
What is most valuable?
The most valuable feature is the search options. Our infrastructure is huge so if an issue happens, it's hard to find where it is. That's where Splunk comes in handy. You just go to their user interface and do a Google-type search. Just put in a keyword, search it, and you'll figure out where it is. If you have thousands of servers, it's very hard to see where the issue is and where the transaction is logged. Splunk makes it very easy. That's the best part of Splunk.
I would rate Splunk's ability to provide business resilience by empowering oneself a seven out of ten. Whenever we have an issue, Splunk is handy. We have a lot of monitoring in place so if an issue happens, our monitoring helps proactively figure out the issue, and in that way, we can make sure that our environment and infrastructure are up and running, and our customers don't have any issues.
What needs improvement?
It's improved a lot since we began using it. We have been seeing issues, but they get resolved by working with the support. It's just getting expensive with time.
Support is the bigger issue when we have a problem. When we need their help, it takes weeks or months to actually get resolved. To date, we have cases open for two or three months without a resolution. Support is the worst part.
For how long have I used the solution?
I have been using Splunk Cloud Platform for four years.
What do I think about the stability of the solution?
It's stable and highly available. We had issues, but all of these types of platforms have.
What do I think about the scalability of the solution?
Scalability depends on what kind of license you have. If you have ingest-based licenses and you hit your cap, I think they still let you ingest more, but then you have to work with your account team and buy more licenses so you don't lose data. It's scalable, but not automated because it has its own license limitations.
How are customer service and support?
I would rate support a four out of ten. The reason is that they are not proactive, they are reactive. If we notify them about an issue, they are supposed to monitor their infrastructure and tell us that there is an issue and that they are working on it. But rather than doing that, we have to do that, and after doing that, it takes time for them to work on it and solve the problem.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
My company previously used a custom, on-premises solution. Splunk was already implemented when I started at my company.
We're asking ourselves now why we use Splunk. Our next step is to go out and evaluate other products in the market that may be not as costly and offer the same feature set.
How was the initial setup?
It's a cloud, it's all managed service. The only thing we had to do is onboard our applications, which is something I do every day.
It's very straightforward and very easy. You only need to configure and get data and you can be onboarded within minutes. We don't have to go through a lot of configurations, manual steps, or training.
What other advice do I have?
Its ability to predict, identify and solve problems in real time is looking promising. We're looking into it now.
I would rate Splunk an eight out of ten. It has a lot of features and enables us to focus only on our applications and logs. I don't need to worry about the infrastructure behind it.
The best value I get from attending Splunk conferences is getting experts' help for specific use cases.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
A fantastic product that helps to monitor
What do you like best about the product?
I like its features and ability to search through logs or data. And the way it ingests all the data logs to provide better insight.
What do you dislike about the product?
Splunk IT cloud has steep learning curve, and there's not much solid documentation available for add-ons and application.
What problems is the product solving and how is that benefiting you?
It is helping us to investigate all the issues thoroughly and also helping us to identify the potential security breahces.
Best app for managing all servers data
What do you like best about the product?
Helps to manage all servers very quickly; with this software, we can save a lot of time getting into servers and then checking it's specifications.
What do you dislike about the product?
Splunk IT Cloud doesn't have anything to dislike
What problems is the product solving and how is that benefiting you?
Splunk IT Cloud helps with the following points -
1. helps to manage all servers in a single place
2. Reduces time
3. Gives notification of services if down
1. helps to manage all servers in a single place
2. Reduces time
3. Gives notification of services if down
most useful app for management of servers
What do you like best about the product?
It gives all alerts and information about server activity. Without going to that server, we can get information about it.
What do you dislike about the product?
It is fully loaded with many specifications. I am very much satisfied with this product.
What problems is the product solving and how is that benefiting you?
Splunk helps get all data in front of you within seconds, saving a lot of time.
Has improved uptime and helped us improve performance in areas where our network or servers were not performing well
What is our primary use case?
We use Splunk Cloud Platform for IT operations, IT security, and business value.
How has it helped my organization?
We implemented Splunk Cloud Platform to resolve our IT security issues.
The federated search feature is a valuable tool that can be used effectively in the right architecture. However, the extent it is utilized will vary depending on the customer's needs. In my experience, more advanced customers tend to use this feature more heavily.
Splunk Cloud Platform provides good visibility into multiple environments, including cloud, on-premises, and hybrid.
Splunk Cloud Platform is the best tool for a reason. It is a high-functioning solution with high integration for getting data in and out, and it is customizable.
The most significant benefit of using Splunk Cloud Platform is the freedom of data. The security team can see the data that's relevant to them, IT Ops can see the data that's relevant to them, and the business can see the data that's relevant to them. Sometimes, the same data is applicable to all three groups. Sometimes, it's not. But everyone has access to the data, and it's immutable. It can't be changed or deleted. The ability of all of these departments to leverage the same data is how Splunk Cloud Platform has benefited our company the most.
Splunk Cloud Platform has helped us make key decisions, such as cost-saving decisions related to licensing. It has also improved uptime and helped us improve performance in areas where our network or servers were not performing well. Additionally, it has helped us make better business and IT decisions and has supported our planned growth.
Splunk Cloud Platform helps us access data for compliance and privacy regulations. It currently has the features to mask data, perform the least privileged access, and provide only certain commands and functions within the platform.
We are the best in the industry because of Splunk Cloud Platform. Splunk Cloud Platform fills the SIEM role for our organization, and without the best SIEM, we would be no better than our competitors.
Splunk's extensibility is one of its best features. It offers a wide variety of ways to ingest data, generate reports, and create dashboards. Its integrations with other systems are also very impressive.
What is most valuable?
Splunk Cloud Platform's most valuable features are enterprise security and ticketing integration.
What needs improvement?
The reporting provided by Splunk Cloud Platform is often good, but it only provides the data and not the flash, whereas the other platforms provide both. From an enterprise standpoint, we are more limited in terms of what data we can export and how we can present it.
Navigating the solution can be more user-friendly.
The documentation has room for improvement and the price is high and can be improved.
For how long have I used the solution?
I have been using the Splunk Cloud Platform for over five years.
What do I think about the stability of the solution?
When architected properly and maintained to an optimum level, Splunk Cloud Platform is unbelievably stable.
What do I think about the scalability of the solution?
One of Splunk Cloud Platform's key selling points is its ability to scale to petabytes and beyond.
How are customer service and support?
Base-level support is suboptimal. Enterprise customers need the premium support package. Responses are often delayed, and resolution is slow.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
Over the past 25 years, I have used several different solutions. In the past, I preferred using a terminal interface rather than a web interface. Splunk has an API and a mobile app, but ultimately, Splunk users are confined to their browsers. This is one thing I would like to change, as I would prefer to be able to use Splunk outside of a browser. However, this is also one of Splunk's biggest advantages, as it is a universal platform.
We used Splunk Enterprise before migrating to Splunk Cloud Platform.
How was the initial setup?
My knowledge of Splunk has since grown exponentially, but the first time I deployed Splunk Enterprise eight years ago, it was unbelievably hard. There were so many moving parts and things to consider. It was too much for one person to figure out, and I didn't have the budget to get help from the Splunk team.
What's my experience with pricing, setup cost, and licensing?
The cost of using Splunk Cloud Platform is high, but the value it provides is worth the investment.
What other advice do I have?
I give Splunk Cloud Platform a nine out of ten.
Monitoring multiple cloud environments is never easy. We are looking forward to new features from our cloud partners, such as AWS Security Data Lake, Google, and Microsoft. These features will make it easier to integrate our cloud environments. Splunk Cloud Platform is currently the best solution for collecting data from multiple cloud environments. AWS has five million different ways to export data, and we need to use all of them to collect all of the security and IT-related data. Splunk supports all of these data sources.
A year ago, I would have said that Splunk needed automated response, an easy-to-detect, easy-to-run, and manage business analytics platform, a user and entity-based business analytics platform that is integrated within the product, threat intelligence, and a current dashboarding tool. Splunk now has all of these features. A year ago, Splunk's competitors had these features, but Splunk did not. Splunk has since acquired or developed these features in-house. Very little in Splunk's product is not tightly integrated into the current releases. If someone is starting from scratch, meaning they are just rolling out a new security solution, and they do not choose Splunk, they are making a mistake. Splunk provides so much of everything that it is the best choice for most organizations.
We perform daily maintenance on the solution.
I advise new users to find someone who knows Splunk. Even a good technical person will not be able to do this on their own. They are not going to train them on day one. Good technical people who know Splunk are valuable assets, so they should seek them out and get them on the project.
Splunk IT cloud
What do you like best about the product?
The way it integrate the logs of all the deployed services at one place is really awesome feature and visualization of the metrics derived from the integrated logger system is super cool.
What do you dislike about the product?
It mostly handle all the type of logs of our deoloyed service but when it comes to composite microservice metrics, it doesn't work well as a integrated services, but work well when we talk about single service
What problems is the product solving and how is that benefiting you?
Splunk we leveraged as a logger hub and monitoring services for mission critical application
Great SAAS cloud platform
What do you like best about the product?
They focus on SAAS services so if someone is looking solely for SAAS, Splunk Cloud is the way to go.
What do you dislike about the product?
It would have been good if they provided the PAAS and IAAS services to some extent.
What problems is the product solving and how is that benefiting you?
During the evaluation period, we were did implement it and found it to be very helpful for monitoring all the cloud services it was providing and therefore it was easy for us to manage our IT Infra.
Splunk IT Cloud : cloud-based solution
What do you like best about the product?
I like scalability and flexibility and also real-time monitoring capabilities, that allow IT teams to proactively identify and resolve issues before they impact the business.
What do you dislike about the product?
There are 2-3 points on Splunk IT Cloud team needs to improve and that are cost and limited customization for dashboards, when it comes to customizing the visual appearance of dashboards and reports I don't like.
What problems is the product solving and how is that benefiting you?
It is a scalable cloud-based solution that provides real-time monitoring, centralized visibility, and end-to-end observability. So that is benefiting me. Also the automation capabilities.
Splunk IT Cloud
What do you like best about the product?
Centralised management of alerts in the IT environment
Upside of Splunk IT Cloud is that it can integrate with both AWS and Azure cloud tenants
Upside of Splunk IT Cloud is that it can integrate with both AWS and Azure cloud tenants
What do you dislike about the product?
The tool becomes complicated to use when handling large data volumes
What problems is the product solving and how is that benefiting you?
Analysis of logs ingested from AWS logging sources and orchestration against a potential cybersecurity breach
showing 41 - 50