Try our new research platform with insights from 80,000+ expert users

Alluvio Aternity vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Alluvio Aternity
Average Rating
8.4
Reviews Sentiment
7.9
Number of Reviews
38
Ranking in other categories
Application Performance Monitoring (APM) and Observability (32nd), Mobile APM (4th), Digital Experience Monitoring (DEM) (6th)
Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
369
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. Alluvio Aternity is designed for Digital Experience Monitoring (DEM) and holds a mindshare of 6.1%, down 8.1% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 9.2% mindshare, down 11.2% since last year.
Digital Experience Monitoring (DEM) Market Share Distribution
ProductMarket Share (%)
Alluvio Aternity6.1%
Nexthink22.8%
SysTrack13.0%
Other58.1%
Digital Experience Monitoring (DEM)
Security Information and Event Management (SIEM) Market Share Distribution
ProductMarket Share (%)
Splunk Enterprise Security9.2%
Wazuh10.2%
IBM Security QRadar7.0%
Other73.6%
Security Information and Event Management (SIEM)
 

Featured Reviews

Caillin Peacock - PeerSpot reviewer
Enables us to be a lot more agile and proactive in troubleshooting endpoint issues thanks to accurate UX scoring
There are many valuable features. If I had to single out one, it would be the UXI score. That's a proprietary Aternity score that tells you how good or bad the experience is for a user on that particular machine, for a particular app. It neatly encapsulates the pain of the user in a single score. It's very easy to find issues and then drill down further into those issues, based on that score. A lot of tools will do a similar thing, but they will do it indirectly and it's not always relevant. The Aternity score is on the money pretty much every time. The Digital Experience Index (DXI) feature is also very valuable. We've incorporated it into the KPIs for our endpoint team. We can use that as a benchmark to improve our goals and our environment, and for ongoing life cycle improvement.
Kyle Vernham - PeerSpot reviewer
Built-in searches and unified data access streamline alert investigation and boosts analyst efficiency
The two features I appreciate the most in Splunk Enterprise Security are the built-in searches, which have been very easy for us to get started with right out of the box, and the fact that it accesses all of our other systems. You can access it as a pane of glass rather than having to search individually. We also have the option to compare our analysts from our service to service. Splunk Enterprise Security helps our SOC team prioritize and investigate high-fidelity alerts more effectively by providing a more in-depth look and the ability to access a lot more of our data. Instead of jumping from several segmented systems, it allows us to have everything brought together in one place. For example, you have to move from our purview to our build system and to Splunk Enterprise Security, and it enables us to streamline that process. The built-in features of Splunk Enterprise Security, which we recently procured, have given us a good starting point and demonstrated the value of the product, providing an easy way to sell it to our company. The ease of getting everything into our purview helps us, and it serves as a good start for the investigation part in one location rather than what we usually have, which is jumping from system to system to system. Splunk Enterprise Security plays a role in our company's strategy to combat insider threats and advanced persistent threats by currently being in its technical test phase. We are still rolling it out, and it should help us find any insider threats based on information that our policy states should not be present in our system. Splunk Enterprise Security's risk-based alerting (RBA) has impacted our alert volume and analyst productivity because we've got many different systems feeding into it. However, it has helped to make it easier for our analysts to go through a set of events rather than 100 alerts. RBA allows us to streamline the process and customize it for our analysts. When it comes to leveraging Splunk Enterprise Security's dashboards and visualizations to communicate security posture to executives, it's pretty straightforward for any type of information. The visualization is easy to understand, but I haven't had any direct conversations with our executives.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The two most valuable features for us are its abilities to validate the customer experience and to measure performance before and after upgrades."
"There are many valuable features. If I had to single out one, it would be the UXI score. That's a proprietary Aternity score that tells you how good or bad the experience is for a user on that particular machine, for a particular app. It neatly encapsulates the pain of the user in a single score. It's very easy to find issues and then drill down further into those issues, based on that score."
"We could resolve issues that they had been facing for months or years. They had been having the same issues, the same performance problems, whether it was Excel taking a long time to load, or network instability, or voice call problems, and we would fix it in minutes, in front of them in a meeting, with absolute confidence. It would just blow their minds."
"The most valuable feature is the alerting. As soon as we click on an incident, it takes us directly to the problematic PC. It's a direct solution. We click on an alert and it takes us to the incident details. The details show in different colors, in a graphical representation, and I like that the most."
"Alluvio Aternity is stable."
"Desktop monitoring, and being able to understand the performance of applications that runs on the desktop."
"The most valuable feature of Alluvio Aternity is the compiling and displaying of end-user data so that we can utilize it to troubleshoot proactively."
"Aternity provides metrics about actual employee experience of all business-critical apps, rather than just a few. It does some out-of-the-box monitoring for the Office suite, but you can create custom monitoring for any of your applications, whether a web client or a desktop application."
"The most valuable function is the notable events. When I joined the team, I asked them what they could currently see, and they said nothing. I was pretty shocked. I know for a fact that they're using Enterprise Security or at least they had purchased it. I told them that there are several dashboards within Splunk that we can leverage. There is also notable events where we can see potential incidents or potential alerts about the infrastructure and the network itself."
"There are lots of free learning materials on their website."
"Splunk's schema on demand is incredibly useful. I do not have to worry about what my users will need when we onboard their data."
"It's extremely scalable. It's a very robust solution and certainly has the capability of handling far bigger data requirements than a lot of the other tools. Generally what ends up happening with me is that my clients tend, for the most part, to be mid-tier organizations where the cost of that solutions would be accompanying requirements for people just becomes way too prohibitive. Especially considering the model that they use for costing, which is based on the volume of data. Of course, they're going to put everything including the Coke machine as the ability to collect data off of it, because of course the more they can put through the tool the more money they make."
"Splunk's visualizations make it easy for users to understand the data."
"Splunk would be my choice for the presentation layer because it comes with inbuilt reports and a dashboard that you can customize."
"Splunk Enterprise Security offers two valuable features: the Common Information Model and arrangement modules."
"I like the ease of setting up dashboards on Splunk. They're easy to create, manage, alter, and share. You can fine-tune them any way you see fit."
 

Cons

"I would say the reporting capabilities of this product could use room for improvement."
"The thing that I think most companies like ourselves would want would be an easier way to customize custom scripts."
"I would like Alluvio Aternity to be certified by the IRAP for petrol companies in Australia."
"I can see the location and computer model and I can see a bunch of different attributes. But one thing I can't see is the Internet Explorer version."
"When it comes to a lot of the features that I would want, they will tell you they are in their SaaS version, which we don't use... They put all the new features on the SaaS solution and that's where you get the latest and greatest stuff... Why not have those features available for on-prem users?"
"The solution's downloadable reports could be improved."
"When they moved from Version 8 to Version 9, the customers lost so much control of what they could do with the product."
"For me, the biggest problem is the price. It is not so much about how much it costs. It is about Aternity only giving you 12 months upfront. So, you got to purchase it for 12 months. A lot of our customers are on a per-user-per-month type billing. They are all OPEX rather than CAPEX. It would be a lot better for our customers if there was an option available for OPEX so that it is billed on a monthly basis than a yearly basis. They've got only Windows agents. They don't actually have mobile agents. It would be a lot better if they could also integrate Android and iOS because then we can start pulling steps and performance management out of users' mobile devices. That's the biggest addition I would suggest at the moment. A lot of our customers have desktops as well as tablets or mobile devices. We should be able to monitor that stuff as well."
"The support that is included with the standard licensing fee is very bad."
"The implementation and the scanning of the logs can be difficult."
"The documentation and training resources available for knowledge and training can be expanded. We need to learn more about Splunk Enterprise Security and new security attacks."
"Configuring a few apps is complex, not straightforward."
"The UI can be improved. Dashboards and reports can be better in terms of graphics."
"I think the machine learning should be emphasized. Now, it's really important to analyze Big Data, data mining. A SIEM solution, like Splunk, needs an improved data mining solution, artificial intelligence."
"It will be helpful for customers if they can create some real-world cases, and we can find a case study to align with. I know that Splunk has tremendous potential. We only include a tiny piece of it. There is a lot of stuff that we need to learn. If Splunk can provide more real-time examples, that will be helpful for customers."
"Splunk is query-based, which is not the case with most cybersecurity tools. It is based on search queries and can be difficult to use. It would be good if they can make it easier to understand how to create search queries. They can improve the knowledge base for better understanding. To create your dashboard, you need to have a search query. We have multiple firewalls in our company, and we need a dashboard for them. It would be helpful if a default firewall dashboard is included in Splunk to make monitoring easier. If a dashboard is available for a security device, the operation part will be more efficient. We won't have to follow a manual process for this."
 

Pricing and Cost Advice

"You have to purchase it for 12 months, which is an issue because a lot of our customers are on a per-user-per-month type billing. There are a few additional costs. A lot of customers only get the essential licenses, and then they get what they call the application add-ons on top. They have to pay depending on how many customers and applications they want to monitor."
"If the scale of your monitoring will be to go everywhere in an organization, a site license is key."
"The pricing for the users and agents is reasonable compared to other solutions and vendors."
"It's not a cheap product. There are no two ways about that. If you compare it with a couple of the other solutions operating in the space, it might be on the slightly more expensive side, but it is one of those tools where, once you've got it, you understand the true value. You will get that money back."
"I thought the price for Alluvio Aternity was reasonable, but we had difficulty selling it in our market due to the minimum number of agents required for deployment, which I believe was around 500."
"It is definitely a premium solution; it is not an inexpensive product. We have to ensure that we are getting the most out of it in order to justify the cost. However, it is not cheap, especially when you want to install it on all your endpoints."
"Pricing is a bit high. Don't take that as the "be all, end all"."
"We always try to reduce costs and purchase the Alluvio Aternity Essentials license."
"Splunk is expensive based on our current requirements, but it's obviously worth what we pay."
"The licensing model can be expensive, but the value it provides is significant."
"Splunk Enterprise Security is cheaper than competitors, but I do not know whether it is just our contract."
"The solution is a little expensive."
"It is expensive. That is why many customers have moved to IBM QRadar. The price is definitely a challenge for customers."
"Regarding the product's pricing, I think it has always been difficult to have a conversation with Splunk."
"Free Splunk license for PoCs on personal machines and the ability to scale the PoC to an enterprise level app."
"As a team, we prefer the old pricing model with a perpetual license. We are still evaluating the whole subscription-based model."
report
Use our free recommendation engine to learn which Digital Experience Monitoring (DEM) solutions are best for your needs.
872,778 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
24%
Government
10%
Manufacturing Company
9%
Computer Software Company
8%
Financial Services Firm
14%
Computer Software Company
14%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business1
Midsize Enterprise4
Large Enterprise32
By reviewers
Company SizeCount
Small Business110
Midsize Enterprise50
Large Enterprise257
 

Questions from the Community

What is your experience regarding pricing and costs for Aternity?
The solution's price is pretty comparable to the industry.
What needs improvement with Aternity?
Technology changes every six months, and improvements are necessary. The integration of AI agents could enhance these tools further, replacing traditional agents and plugins.
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Also Known As

Aternity, Workforce APM, Aternity Frontline, Riverbed SteelCenter Aternity
No data available
 

Overview

 

Sample Customers

Maersk, SwissRe, Travis Perkins, Michelin, National Instruments, Simmons & Simmons, Lighthouse Guild
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about Alluvio Aternity vs. Splunk Enterprise Security and other solutions. Updated: May 2023.
872,778 professionals have used our research since 2012.