We performed a comparison between Splunk Enterprise Security and VMware Aria Operations for Logs based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."You can integrate Splunk with third-party security automation solutions and set rules for automatic response."
"It's basically one of the best SIEM products on the market."
"We have a more secure, robust environment, which keeps the harmful software out of the zone required."
"It allows us to digest the information, the data, the different data streams, so we can make decisions based upon information that we receive, and it is pretty robust."
"The correlation search functions that generate all the notables are valuable. That can get pretty complicated, and it handles that pretty well."
"Exporting is a good feature. It helps me out when I have to do reports. I do a lot of exporting and crunching of the numbers. Dashboards are okay for showing to the leadership, but for doing statistics and updating tickets, the export feature is very beneficial for me."
"The solution is the market leader."
"It is very easy to use and integrate. There are connectors for every technology."
"The root cause analysis feature is very valuable."
"We are using it because we have a VMware product. It has its own built in dashboards for VMware products, and that's a good thing."
"The interface of the solution is good."
"What I like is that you can have different storage locations for different applications."
"It gives the customer a quick overview, so they don't have to dig. There's a clear dashboard with many sensors in a single space. He gets a helicopter view of his environment, but he can investigate further if there are serious issues. It's pretty user-friendly."
"The virtualization solution supports data center virtualization, network and security."
"vRealize Log Insight has been running without any issues."
"The events are notably more descriptive, aiding in security and event analysis. We've also integrated Sky Collector, providing valuable insights and solutions for troubleshooting."
"We were inundated with the amount of alerts and alarms that we could get out of it. It is also a resource hog and we didn't have the resources to support it on-prem so we're taking it offline now."
"Spam has different plugins but by default, the logs are not organized, it shows that there are roll-ups that are out of the box. I saw many plugins that can help improve or extend Splunk's functionality but I haven't tried any of them."
"Make it easier to include roles and user controls, as it is horrible now."
"We had an instance when Splunk failed and it took us a couple of days to recover."
"The ingestion happens quickly, so you can run up the data costs if you use the default settings. It isn't a problem for government agencies in the Saudi market, but many of the corporations in India are small or medium-sized enterprises that cannot afford that kind of ingestion system."
"It needs more thoroughly tested releases. Every new big version (6, 7, etc.) has had so many bugs that it makes me wary of customers upgrading right away."
"Splunk does not provide any default threat intelligence like Microsoft Sentinel, but you can integrate any third-party threat intelligence with Splunk. By default, no threat intelligence suite is there, whereas, with IBM QRadar or Microsoft Sentinel, the default feature of threat intelligence is there. It is free. If Splunk can provide a default threat intelligence suite, it would be better."
"Splunk has a steeper learning curve, making it feel less user-friendly."
"They should improve their web interface to make it more user-friendly."
"Log retention should have more options for user control."
"In vRealize login files, we have limitations regarding log partitions."
"Documentation is lacking, including some guide as to how to use the expressions. It is not clear how to look for a log, for example. Some examples in the documentation might be helpful. I think that VMware had good documentation, but it's no longer hosted. The documentation is not as easy to understand as it was before."
"The product's price falls on the higher end of the spectrum, making it an area of concern."
"The pricing of the solution could be improved."
"Log Insight should be better at dealing with audits and security logs. We use another product called QRadar for that."
"It's great for VMware, but it would be good if they had third-party logins."
More VMware Aria Operations for Logs Pricing and Cost Advice →
Splunk Enterprise Security is ranked 1st in Log Management with 244 reviews while VMware Aria Operations for Logs is ranked 10th in Log Management with 24 reviews. Splunk Enterprise Security is rated 8.4, while VMware Aria Operations for Logs is rated 8.2. The top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". On the other hand, the top reviewer of VMware Aria Operations for Logs writes "Gives a clear forecast about existing machines, and has an automation feature that helps in reducing a lot of ambiguities and managing operational efficiencies". Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Microsoft Sentinel, whereas VMware Aria Operations for Logs is most compared with Elastic Security, LogRhythm SIEM, Graylog, Fortinet FortiAnalyzer and IBM Security QRadar. See our Splunk Enterprise Security vs. VMware Aria Operations for Logs report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.