Splunk Enterprise Review !!1
December 11, 2024

Splunk Enterprise Review !!1

Anonymous | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User

Software Version

Splunk Light (legacy)

Overall Satisfaction with Splunk Enterprise

Splunk Enterprise is used as log management tool in our organization.
Varius automations are also in place using Splunk Enterprise as golden source of data.
Few of the examples of automation using Splunk Enterprise is integration of Splunk Enterprise with Service now.
Recently Service Now was integrated with Splunk Enterprise.
Service now picks up the data from Splunk Enterprise and create the INC accordingly

Pros

  • Log Management tool
  • Helps the ticketing tool to provide data
  • Collects the logs using Splunk Enterprise agent
  • Build dashboard

Cons

  • Filters need to be improved
  • Search engine to be more enhanced
  • Integration of more graphs
  • Cost efficent
  • Better mgt of logs
  • Support is good
This tool is really helpful to us in log retention which is our major audit requirement.
Logs stored in Splunk Enterprise are helping us create tickets through service now as well.
We were able to replace few tools in our bank using Splunk Enterprise which really saved a lot of money for us
Cost was major factor which made us choose Splunk Enterprisek.
Splunk Enterprise is versatile tool which further helped us to make our decision.
Apart from that Managment wish to use something robust hence Splunk Enterprise became there first choice.

We supported their decision and moved our respective automation to Splunk Enterprise from other tools

Do you think Splunk Enterprise delivers good value for the price?

Yes

Are you happy with Splunk Enterprise's feature set?

Yes

Did Splunk Enterprise live up to sales and marketing promises?

I wasn't involved with the selection/purchase process

Did implementation of Splunk Enterprise go as expected?

Yes

Would you buy Splunk Enterprise again?

Yes

We recently used it as golden source for ticketing tool where our ITSM tool i.e. Service Now picks up all the data from Splunk Enterprise and create the tickets accordingly.

All the data like queue name where ticket need to be assigned is also picked up from Splunk Enterprise itself which really helped us a lot

Splunk Enterprise Feature Ratings

Security Information and Event Management (SIEM)
6.6
Centralized event and log data collection
10
Correlation
10
Event and log normalization/management
10
Integration with Identity and Access Management Tools
5
Custom dashboards and workspaces
3
Host and network-based intrusion detection
3
Log retention
10
Behavioral analytics and baselining
4
Rules-based and algorithmic detection thresholds
7
Reporting and compliance management
5
Incident indexing/searching
6

Comments

More Reviews of Splunk Enterprise

  1. Home
  2. Security Information and Event Management (SIEM) Software
  3. Splunk Enterprise Reviews
  4. User Review of Splunk Enterprise