Try our new research platform with insights from 80,000+ expert users

Alluvio Aternity vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Alluvio Aternity
Average Rating
8.4
Reviews Sentiment
7.9
Number of Reviews
38
Ranking in other categories
Application Performance Monitoring (APM) and Observability (33rd), Mobile APM (4th), Digital Experience Monitoring (DEM) (6th)
Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.6
Number of Reviews
306
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. Alluvio Aternity is designed for Digital Experience Monitoring (DEM) and holds a mindshare of 7.1%, down 9.0% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 9.5% mindshare, down 12.6% since last year.
Digital Experience Monitoring (DEM)
Security Information and Event Management (SIEM)
 

Featured Reviews

Caillin Peacock - PeerSpot reviewer
Enables us to be a lot more agile and proactive in troubleshooting endpoint issues thanks to accurate UX scoring
There are many valuable features. If I had to single out one, it would be the UXI score. That's a proprietary Aternity score that tells you how good or bad the experience is for a user on that particular machine, for a particular app. It neatly encapsulates the pain of the user in a single score. It's very easy to find issues and then drill down further into those issues, based on that score. A lot of tools will do a similar thing, but they will do it indirectly and it's not always relevant. The Aternity score is on the money pretty much every time. The Digital Experience Index (DXI) feature is also very valuable. We've incorporated it into the KPIs for our endpoint team. We can use that as a benchmark to improve our goals and our environment, and for ongoing life cycle improvement.
ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The ability to quickly utilize the dashboard to gather information is valuable from a DXI perspective."
"There are also built-in activities that let you measure things like preview mail, open address book, and send mail. Those are the activities that we are able to get measurements on, and those are things we have not seen in other software monitoring tools."
"Aternity easily provides visibility of all the endpoint machines to my clients."
"There are many valuable features. If I had to single out one, it would be the UXI score. That's a proprietary Aternity score that tells you how good or bad the experience is for a user on that particular machine, for a particular app. It neatly encapsulates the pain of the user in a single score. It's very easy to find issues and then drill down further into those issues, based on that score."
"The detailed level of information you are able to get on the complete environment all of the way down to a specific machine."
"Being able to proactively identify issues on user systems."
"The ability to monitor crash and health event issues at a user level"
"Desktop monitoring, and being able to understand the performance of applications that runs on the desktop."
"We did not encounter any issues with scalability. It is almost seamless to add new index (storage) or search (used to analyze the data) nodes to the cluster."
"It follows MITRE ATT&CK and Cyber Kill Chain frameworks. There are certain notable events for which we can configure our security posture."
"The most valuable feature is that it's very good for log aggregation."
"Splunk Enterprise Security's value lies in its ability to collect and analyze security logs, providing insightful dashboards."
"The ability to manage large amounts of generated data and to protect all devices from unauthorized use are the most valuable features."
"We have a one stop dashboard for health of some of our services where you can click in and it takes you to other dashboards that have custom near real-time metrics that show the application's health."
"It is the best tool if you have a complex environment or if data ingestion is too huge."
"What I really like is that even if you have already collected the data, you can extract fields and can build searches."
 

Cons

"Signature development process requires deep technical expertise in the application and in the use of their studio tools that help you create it."
"Being able to add custom monitoring to dashboards would be nice. Right now, if you want to monitor the value of a registry key on your systems, to get that added into the dashboard you have to reach out to Aternity so they can start looking for that value. It would be interesting if that were more of a self-serve function."
"We are waiting for the GA release of their agent. I hope they can do better when they release their endpoint agents. Right now, we are not able to measure some applications, core applications, because it's relying on a specific version of the agent and that agent has not come out yet and there's no ETA. I would like to see them speed up time to market when they release agents."
"I would improve the dashboard, the presentation player."
"I would like Alluvio Aternity to be certified by the IRAP for petrol companies in Australia."
"The dashboards and navigatability of the platform could use improvement. It often takes five or six clicks to drill down to exactly what you want to see."
"Aternity doesn't currently provide metrics about actual employee experience of all business-critical apps. It's something you have to build out. It's not 'canned' that way and there is a lot of configuration that you have to do to the environment to collect the data you want to collect and that is important to you."
"The solution's downloadable reports could be improved."
"I would like to have fraud detection features. Fraud is within the same turf as with security operations. Fraud and cybersecurity work hand in hand. I would like to have detection capabilities, or at least dashboards in Enterprise Security for fraud."
"The Enterprise Security app could be improved. We have had trouble with it working from the first day."
"It is important to make sure that everything is built off of the threat models and all the underlying items within Splunk."
"There are limitations with Splunk not detecting all user activity, especially on mainframes and network devices."
"From the commercial point of view, they have to bring down their costs."
"It'd be really nice if Splunk Enterprise Security had a better and solid configuration guide."
"It would be nice if Splunk reduced the cost of training. Their training sessions are way too costly."
"Splunk ES could have more pre-built integrations and rules. The detection is fairly accurate, but it depends on the rules you create. Splunk's out-of-the-box configuration isn't that useful."
 

Pricing and Cost Advice

"Its licensing cost is very low. That's one of the reasons why we have kept it for so long. We get more than a 70% discount on the maintenance licenses. Its cost is very low for us, but if you buy it new, it would be much more expensive at the retail price."
"If the scale of your monitoring will be to go everywhere in an organization, a site license is key."
"The pricing for the users and agents is reasonable compared to other solutions and vendors."
"We always try to reduce costs and purchase the Alluvio Aternity Essentials license."
"It is definitely a premium solution; it is not an inexpensive product. We have to ensure that we are getting the most out of it in order to justify the cost. However, it is not cheap, especially when you want to install it on all your endpoints."
"Pricing is a bit high. Don't take that as the "be all, end all"."
"I thought the price for Alluvio Aternity was reasonable, but we had difficulty selling it in our market due to the minimum number of agents required for deployment, which I believe was around 500."
"The pricing is fair."
"The price of this solution is expensive. However, it has great features. If you want a great solution you need to pay a price matching the features."
"I believe that Splunk Enterprise Security is worth the price, but it is expensive."
"The licensing is good, but the pricing absolutely needs some work. It is very high."
"I believe there is room for improvement in reducing costs, particularly in the financial aspect, as Splunk tends to be pricier compared to other options."
"It is expensive. I work for multiple clients. I am working for more than five clients, but most of the clients are switching from Splunk to Sentinel because of the cost. Even though Sentinel is very limited, clients are moving to Sentinel."
"It's definitely worth it."
"The Splunk Enterprise Security license is expensive."
"The subscription is monthly."
report
Use our free recommendation engine to learn which Digital Experience Monitoring (DEM) solutions are best for your needs.
850,747 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
24%
Government
11%
Manufacturing Company
11%
Computer Software Company
8%
Financial Services Firm
15%
Computer Software Company
14%
Manufacturing Company
8%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

APM tools for a Managed Service Provider - Dynatrace vs. AppDynamics vs. Aternity vs. Ruxit
Hi Avi! It's great to see your thorough approach to selecting an APM package for your MSP company. Considering your focus on SMBs and enterprises in Israel, Dynatrace seems like a solid choice with...
What is your experience regarding pricing and costs for Aternity?
The solution's price is pretty comparable to the industry.
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Also Known As

Aternity, Workforce APM, Aternity Frontline, Riverbed SteelCenter Aternity
No data available
 

Overview

 

Sample Customers

Maersk, SwissRe, Travis Perkins, Michelin, National Instruments, Simmons & Simmons, Lighthouse Guild
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about Alluvio Aternity vs. Splunk Enterprise Security and other solutions. Updated: May 2023.
850,747 professionals have used our research since 2012.