Try our new research platform with insights from 80,000+ expert users

Alluvio Aternity vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Alluvio Aternity
Average Rating
8.4
Reviews Sentiment
7.9
Number of Reviews
38
Ranking in other categories
Application Performance Monitoring (APM) and Observability (32nd), Mobile APM (4th), Digital Experience Monitoring (DEM) (6th)
Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
369
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. Alluvio Aternity is designed for Digital Experience Monitoring (DEM) and holds a mindshare of 6.1%, down 8.1% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 9.2% mindshare, down 11.2% since last year.
Digital Experience Monitoring (DEM) Market Share Distribution
ProductMarket Share (%)
Alluvio Aternity6.1%
Nexthink22.8%
SysTrack13.0%
Other58.1%
Digital Experience Monitoring (DEM)
Security Information and Event Management (SIEM) Market Share Distribution
ProductMarket Share (%)
Splunk Enterprise Security9.2%
Wazuh10.2%
IBM Security QRadar7.0%
Other73.6%
Security Information and Event Management (SIEM)
 

Featured Reviews

Caillin Peacock - PeerSpot reviewer
Enables us to be a lot more agile and proactive in troubleshooting endpoint issues thanks to accurate UX scoring
There are many valuable features. If I had to single out one, it would be the UXI score. That's a proprietary Aternity score that tells you how good or bad the experience is for a user on that particular machine, for a particular app. It neatly encapsulates the pain of the user in a single score. It's very easy to find issues and then drill down further into those issues, based on that score. A lot of tools will do a similar thing, but they will do it indirectly and it's not always relevant. The Aternity score is on the money pretty much every time. The Digital Experience Index (DXI) feature is also very valuable. We've incorporated it into the KPIs for our endpoint team. We can use that as a benchmark to improve our goals and our environment, and for ongoing life cycle improvement.
Kyle Vernham - PeerSpot reviewer
Built-in searches and unified data access streamline alert investigation and boosts analyst efficiency
The two features I appreciate the most in Splunk Enterprise Security are the built-in searches, which have been very easy for us to get started with right out of the box, and the fact that it accesses all of our other systems. You can access it as a pane of glass rather than having to search individually. We also have the option to compare our analysts from our service to service. Splunk Enterprise Security helps our SOC team prioritize and investigate high-fidelity alerts more effectively by providing a more in-depth look and the ability to access a lot more of our data. Instead of jumping from several segmented systems, it allows us to have everything brought together in one place. For example, you have to move from our purview to our build system and to Splunk Enterprise Security, and it enables us to streamline that process. The built-in features of Splunk Enterprise Security, which we recently procured, have given us a good starting point and demonstrated the value of the product, providing an easy way to sell it to our company. The ease of getting everything into our purview helps us, and it serves as a good start for the investigation part in one location rather than what we usually have, which is jumping from system to system to system. Splunk Enterprise Security plays a role in our company's strategy to combat insider threats and advanced persistent threats by currently being in its technical test phase. We are still rolling it out, and it should help us find any insider threats based on information that our policy states should not be present in our system. Splunk Enterprise Security's risk-based alerting (RBA) has impacted our alert volume and analyst productivity because we've got many different systems feeding into it. However, it has helped to make it easier for our analysts to go through a set of events rather than 100 alerts. RBA allows us to streamline the process and customize it for our analysts. When it comes to leveraging Splunk Enterprise Security's dashboards and visualizations to communicate security posture to executives, it's pretty straightforward for any type of information. The visualization is easy to understand, but I haven't had any direct conversations with our executives.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"All of it, but it depends on who the end user is. The folks that support the applications, like the signatures that we've developed, it gives them feedback on their application performance."
"We could resolve issues that they had been facing for months or years. They had been having the same issues, the same performance problems, whether it was Excel taking a long time to load, or network instability, or voice call problems, and we would fix it in minutes, in front of them in a meeting, with absolute confidence. It would just blow their minds."
"Other features we use heavily are the WiFi analyzer, the Skype for Business analyzer, and the troubleshooting functionalities. We also use the Device Health quite religiously here for troubleshooting devices that are unhealthy, when we're talking about things like high CPU or memory consumption, or file system problems within the users' workstations."
"The item we use the most and what upper management wants is the SLA reports. It's a good summary of how the applications are performing over time from month to month."
"DEM-Q (Digital Experience Management Quadrant) is very useful. This is where they stand out with their dashboard, because it gives us a picture of how our company is doing compared to the other businesses out there."
"It is a tool that helps me check users' computers really quickly without having a help desk administrator logging in and doing analysis. Anyone who has access to Aternity, including our support team, can log onto Aternity and do a quick, basic analysis."
"Aternity easily provides visibility of all the endpoint machines to my clients."
"The most valuable features for us are the Incident Management dashboard, Application Status dashboard, and Activity Analysis UI."
"I can create dashboards to collect and view information in a tabular, graphical format. This feature is important because it helps me understand time-series data over one or two hours."
"Great platform with user-friendly interface and GUI."
"The most valuable features for us include its robust log management capabilities, which allow us to efficiently handle and retain logs for extended periods as needed."
"If you want to understand how it can analyze or find out incidents, the visibility is good."
"It has been really good at consolidating a lot of data from different sources. It's really good at generating summaries."
"From the class that I took this week, being able to create notable events from whatever you find in the data set is pretty useful."
"The search engine and indexes are fast and optimized, and the report generation dashboard is user-friendly."
"The client site login is pretty extensible and probably cost-effective."
 

Cons

"Reliability: Issues interfering with the deployment and use of the product has made its use reduced in scope."
"We are waiting for the GA release of their agent. I hope they can do better when they release their endpoint agents. Right now, we are not able to measure some applications, core applications, because it's relying on a specific version of the agent and that agent has not come out yet and there's no ETA. I would like to see them speed up time to market when they release agents."
"I want more reporting around asset management, with greater flexibility and customization ability."
"Right now, the user information being displayed by Aternity is received from AD. Ideally, we would like to see integration with other sources for user information, like other databases, so we are not limited to AD."
"In terms of a new feature, it would be good if we could restrict a user to a specific application or server. We have several customers, and we have to set up one or two servers for each customer. We have to set up one server for production and one for the test environment. Each user at the customer level can see all applications and the data of all applications, which is not really useful and good. We should be able to restrict user access at the application level or server level."
"Aternity doesn't currently provide metrics about actual employee experience of all business-critical apps. It's something you have to build out. It's not 'canned' that way and there is a lot of configuration that you have to do to the environment to collect the data you want to collect and that is important to you."
"Some of the dashboarding and reporting on the analytics side could be improved. I think they realize it. Obviously, some of the desktop monitoring metrics always can be improved."
"Its user interface and features should be improved. They don't support new versions of certain Linux editions. That is one of the reasons why we have to move to another solution."
"The product must improve insider threat detection."
"Spam has different plugins but by default, the logs are not organized, it shows that there are roll-ups that are out of the box. I saw many plugins that can help improve or extend Splunk's functionality but I haven't tried any of them."
"I would like some additional AI capabilities to provide additional information about things going wrong and things going well."
"I'd like a dashboard that allows me to connect elements through drag-and-drop functionality."
"Customizing our commands should be simpler. Creating custom commands in Splunk requires a long, complex process. For example, we have a command to add all the column data, but we don't have a command to get the average of the column data at the end. It would be useful to have a blank at the end to create our commands and leave the rest to others."
"Search head clustering is often temperamental in its current state and should be improved, replaced by something better, or be reverted to search head pooling."
"Splunk Enterprise Security can be improved by bringing back some of the operational use cases."
"The UI can be improved. Dashboards and reports can be better in terms of graphics."
 

Pricing and Cost Advice

"Its licensing cost is very low. That's one of the reasons why we have kept it for so long. We get more than a 70% discount on the maintenance licenses. Its cost is very low for us, but if you buy it new, it would be much more expensive at the retail price."
"The solution's price is pretty comparable to the industry."
"If the scale of your monitoring will be to go everywhere in an organization, a site license is key."
"Pricing is a bit high. Don't take that as the "be all, end all"."
"You have to purchase it for 12 months, which is an issue because a lot of our customers are on a per-user-per-month type billing. There are a few additional costs. A lot of customers only get the essential licenses, and then they get what they call the application add-ons on top. They have to pay depending on how many customers and applications they want to monitor."
"Our management squeezed Aternity pretty hard on the pricing, in my opinion a little too much. I advise negotiating for sure, but I do think it left kind of a sour taste in Aternity’s mouth that we were being so pushy despite the fact that we were only purchasing a small number of licenses."
"In my opinion they are asking a lot for their SaaS solution, but I also know that that's the direction they're going... The current, on-prem solution is probably a fair price."
"I thought the price for Alluvio Aternity was reasonable, but we had difficulty selling it in our market due to the minimum number of agents required for deployment, which I believe was around 500."
"While Splunk is more expensive than other solutions, we would still choose it because of its capabilities."
"While licensing can be a concern, there are ways to reduce the licensing costs including filtering some events."
"You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive."
"Pricing and licensing are quite high compared to other tools or SIEM tools, but the features justify it."
"It is possible to use a developer's license, which is up to 10GB per day of volume traffic, which is usually enough for most use cases."
"Luckily, we come under a large federal agency, and before the pandemic, they signed a large enterprise license agreement. It worked out great and to our advantage because we are a small organization. We got a 300 gig license, and we just did not have the buying power to be able to get products cheaply. Because we all partnered together under the agency umbrella, we were able to get Splunk Enterprise Security, UBA, and ITSI for cheap. This was good considering the fact that some of these premium apps require a minimum number of users, and we do not have the number of people needed to even justify buying it."
"Free Splunk license for PoCs on personal machines and the ability to scale the PoC to an enterprise level app."
"The pricing can be better. We are already considering Elastic because Splunk is too expensive. You have to pay based on per-day ingestion. There should be a more flexible model for the use cases where one day you have a huge amount, and on other days, it is quite less."
report
Use our free recommendation engine to learn which Digital Experience Monitoring (DEM) solutions are best for your needs.
870,623 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
24%
Government
10%
Manufacturing Company
10%
Computer Software Company
7%
Computer Software Company
14%
Financial Services Firm
14%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business1
Midsize Enterprise4
Large Enterprise32
By reviewers
Company SizeCount
Small Business110
Midsize Enterprise50
Large Enterprise257
 

Questions from the Community

What is your experience regarding pricing and costs for Aternity?
The solution's price is pretty comparable to the industry.
What needs improvement with Aternity?
Technology changes every six months, and improvements are necessary. The integration of AI agents could enhance these tools further, replacing traditional agents and plugins.
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Also Known As

Aternity, Workforce APM, Aternity Frontline, Riverbed SteelCenter Aternity
No data available
 

Overview

 

Sample Customers

Maersk, SwissRe, Travis Perkins, Michelin, National Instruments, Simmons & Simmons, Lighthouse Guild
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about Alluvio Aternity vs. Splunk Enterprise Security and other solutions. Updated: May 2023.
870,623 professionals have used our research since 2012.