We performed a comparison between Splunk Enterprise Security and vRealize Network Insight based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM)."It helps us uncover bottlenecks in the network."
"In the past we used the different application to collect logs. We used SurfWatch and VMware to do so. But, we found that the Splunk has more capacity to do more in less time. They provide a aster speed to index all the events , and this is a huge asset."
"The ability to ingest different log types from many different products in our environment is most valuable."
"I really like the user interface and how it works."
"Splunk would be my choice for the presentation layer because it comes with inbuilt reports and a dashboard that you can customize."
"It is the best tool if you have a complex environment or if data ingestion is too huge."
"The most valuable feature of Splunk Enterprise Security is the comprehensive logging capabilities it provides."
"We have found all the features useful. However, the dashboarding and logging have been very helpful. Additionally, the log analysis does a great job."
"It has really tightened down the security. That was something that we were lacking. It has also given us deep visibility into our network. We can really get down and see all of the traffic within the data center, between the VMs, between the applications, database servers, other application servers, web servers. We can identify everything that is communicating, and we can see it all on one product."
"The initial setup was straightforward."
"The most valuable feature is the profiling of the applications for micro-segmentation... It has made the migration to NSX much easier. Most of the sys admins within the smaller silos, they have no idea what ports are needed to run their stuff at all. I am pretty sure the micro-segmentation would never, ever have occurred without it."
"The best feature of this application is its ability to capture everything within the same application, as well as capture all the traffic."
"It allows us to see how the network devices function as well as to see network glitches or fluctuations or dropping of packets."
"compare-to-competition; I would recommend the product. I don't think there is any other product like this on the market right now."
"One of the most valuable features is the ability to look at the traffic flows, to look at NetFlow data."
"I like being able to see the flows coming in and out of the product. In terms of monitoring network flows, we use it to verify whether or not different servers/applications should be communicating with each other."
"Adding custom visualization in Splunk has been improved over the years but can still be made better by integrating more and more JavaScript visualization sources."
"Features related to content management must be improved."
"Search head clustering is often temperamental in its current state and should be improved, replaced by something better, or be reverted to search head pooling."
"In the next releases, I would like to see more pricing flexibility."
"The analytics of Splunk could be improved."
"Many of my clients want to get better at Splunk, but they're afraid of using the tool because they feel it's too complex for them."
"The solution could improve by giving more email details."
"Being a SIEM solution with a centralized dashboard, we would like to have more options to customize it."
"I would like to see them expand the capabilities to infrastructure types other than just VMware."
"vRNI needs more remediation where it hooks into NSX."
"The solution can be improved by making it more compatible with other brands, allowing for better integration."
"It just needs to be more reliable and more accurate. At some point, there are some things where it does not match properly."
"The product is slightly complex use, while still being user-friendly. It could use more training modules, as it is not a straightforward product."
"The compatibility with each and every component of the infrastructure is the main thing that I am looking for. I would like them to make sure that it's compatible with different kinds of storage systems, etc. I have seen the compatibility list. I feel it can be more compatible than it is right now."
"I would like to see application identification. That would be cool."
"There are some random glitches in the Web UI, but they are usually pretty cosmetic in nature. I don't really seem to use any browser other than Chrome with it. I also get some weird errors from time to time on the hardware NetFlow Collectors, where it doesn't sync data."
Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 246 reviews while vRealize Network Insight is ranked 24th in IT Infrastructure Monitoring with 44 reviews. Splunk Enterprise Security is rated 8.4, while vRealize Network Insight is rated 8.6. The top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". On the other hand, the top reviewer of vRealize Network Insight writes "Provides deep analytical insights and makes migrations efficient with dependency mapping". Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Microsoft Sentinel, whereas vRealize Network Insight is most compared with ThousandEyes, NETSCOUT vSTREAM, AppNeta by Broadcom, Zabbix and Cisco Secure Network Analytics.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.