Try our new research platform with insights from 80,000+ expert users

Alluvio Aternity vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

Alluvio Aternity
Average Rating
8.4
Reviews Sentiment
7.9
Number of Reviews
37
Ranking in other categories
Application Performance Monitoring (APM) and Observability (35th), Mobile APM (4th), Digital Experience Monitoring (DEM) (5th)
Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
301
Ranking in other categories
Log Management (1st), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. Alluvio Aternity is designed for Digital Experience Monitoring (DEM) and holds a mindshare of 10.2%, down 12.2% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 11.2% mindshare, down 15.0% since last year.
Digital Experience Monitoring (DEM)
Security Information and Event Management (SIEM)
 

Featured Reviews

Caillin Peacock - PeerSpot reviewer
Enables us to be a lot more agile and proactive in troubleshooting endpoint issues thanks to accurate UX scoring
There are many valuable features. If I had to single out one, it would be the UXI score. That's a proprietary Aternity score that tells you how good or bad the experience is for a user on that particular machine, for a particular app. It neatly encapsulates the pain of the user in a single score. It's very easy to find issues and then drill down further into those issues, based on that score. A lot of tools will do a similar thing, but they will do it indirectly and it's not always relevant. The Aternity score is on the money pretty much every time. The Digital Experience Index (DXI) feature is also very valuable. We've incorporated it into the KPIs for our endpoint team. We can use that as a benchmark to improve our goals and our environment, and for ongoing life cycle improvement.
Avinash Gopu. - PeerSpot reviewer
Offers good visibility into multiple environments, significantly reduces our alert volume, and speeds up our security investigations
There are limitations with Splunk not detecting all user activity, especially on mainframes and network devices. This is because Splunk relies on agents, which cannot access certain workstations. In these cases, we have to rely on application data. For example, with mainframes, manual reports are generated and sent to Splunk, limiting visibility to what's manually reported. This lack of automation for specific platforms needs improvement from Splunk. Additionally, API access is limited for other applications that rely on API calls and requests. This requires heavy customization on Splunk's end. These are the main challenges we've encountered. Monitoring multiple cloud platforms, like Azure, GCP, and AWS, with Splunk Enterprise Security presents some challenges. While Splunk provides different connectors for each provider, consolidating data from two domains across distinct cloud environments can be complex. However, leveraging pre-built templates and Splunk's data collation capabilities can help overcome these hurdles. Despite initial difficulties, I believe Splunk can effectively address this task, earning it an eight out of ten rating for its multi-cloud monitoring capabilities. While Splunk Enterprise Security offers insider threat detection capabilities, its effectiveness could be enhanced by integrating with additional tools, such as endpoint security solutions. This integrated approach is particularly crucial for financial institutions, which often require dedicated endpoint security teams. While using multiple tools is valuable, further improvements within Splunk itself are also necessary. Considering both external integration and internal development, I would rate its current insider threat detection capabilities as three out of ten. Threat detection is where Splunk falls behind. While it offers tools, other use cases require additional work. PAM is an enterprise tool that centralizes information about users, servers, and everything else. It needs real-time monitoring, which I haven't seen in any of the companies I've worked for. They only rely on Splunk for alerting, but real-time monitoring should be handled by the endpoint security team's tools. This means there's no detection or analysis at the machine or endpoint level. Additionally, threat analysis reporting is also absent.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"There are many valuable features. If I had to single out one, it would be the UXI score. That's a proprietary Aternity score that tells you how good or bad the experience is for a user on that particular machine, for a particular app. It neatly encapsulates the pain of the user in a single score. It's very easy to find issues and then drill down further into those issues, based on that score."
"The application response time. That's what our business has been having a problem with."
"The infrastructure data, especially the CPU and memory data, is per second, which makes it outstanding as compared to other solutions. Its licensing cost is very low for us."
"There are also built-in activities that let you measure things like preview mail, open address book, and send mail. Those are the activities that we are able to get measurements on, and those are things we have not seen in other software monitoring tools."
"Alluvio Aternity is stable."
"The most valuable feature for us is trend analysis, particularly with device-help type of events and computer help events, such as blue screens, application errors, and application crashes."
"As a financial institution, we have a lot of applications that are either written internally or bought from a vendor and customized for us. Having a tool that lets us monitor specific transactions in those applications allows us to focus on the transactions that are important to the business."
"The dashboards of this platform are the most valuable, especially the Desktop Health dashboard."
"Great platform with user-friendly interface and GUI."
"From my experience, the visual aid that it provides is most valuable. There are charts and other means to provide information."
"The most valuable feature is the incident dashboard, and the extensive use of correlation searches, which isn't available with a standard Splunk search package. This feature is important to me because it enables SOC analysts to do their job more efficiently and be able to investigate or mediate incidents at a faster pace."
"The level of robustness on offer is very good."
"Integration with the cloud is pretty important and good for us. We found the integration with a lot of tools, not all tools yet, valuable. It does make the transfer of data, log files, and other things easier for us."
"The security part is useful as it helps secure the entire environment."
"The ability to quickly search logs, performance data, and other inputs has helped tremendously with troubleshooting."
"The reporting aspect is good and it does what I need it to do."
 

Cons

"Aternity doesn't currently provide metrics about actual employee experience of all business-critical apps. It's something you have to build out. It's not 'canned' that way and there is a lot of configuration that you have to do to the environment to collect the data you want to collect and that is important to you."
"Aternity does provide performance numbers, the data. However, it doesn't tell you what you can do about it. It just presents the facts. How to interpret the data, and how to draw conclusions from a lot of the data, requires knowledge and experience. That's the part that I would hope Aternity can continue to explore and give us that kind of capability."
"Their technical support should be improved in terms of response time. Its stability should also be better. We are currently using version 10, and its stability is not so high. The server crashes from time to time and needs to be restarted. Sometimes, you also have problems with applications."
"The only thing I can say which has been frustrating are the Tableau workspace/dashboard options out-of-the-box, at least prior to version 8."
"I think the workflow needs improvement"
"I want more reporting around asset management, with greater flexibility and customization ability."
"Reports were a lot easier in the older versions"
"I would say the reporting capabilities of this product could use room for improvement."
"We would like more integrations with other cloud products, not just AWS, e.g., Azure."
"Previously, they developed custom connectors or add-ons for a lot of applications. But that number can be upgraded still. There are a lot of applications in the world that are not supported."
"I do not have any pain points for Splunk Enterprise Security. I am still trying to learn it, but there can be more information on the education side for Splunk Enterprise Security. It would be nice if the certification path was more specific to what I use instead of being so broad."
"The first thing that comes to mind is a little bit of UI improvement. It sometimes can be a little bit buggy or it can be a little bit slow, but that varies from customer to customer."
"Most of my interaction is with the user community, which is how Splunk wants it. When I need help, that community is very hit or miss."
"Our two main complaints are about the difficulty of the initial setup and the licensing model."
"Splunk Enterprise Security should provide a better and richer integration."
"Splunk should have more regional data centers in the Middle East."
 

Pricing and Cost Advice

"Regarding cost, compared to other solutions, Aternity is pretty low. It's definitely lower-cost than others that we looked at, like Nexthink."
"It is definitely a premium solution; it is not an inexpensive product. We have to ensure that we are getting the most out of it in order to justify the cost. However, it is not cheap, especially when you want to install it on all your endpoints."
"Pricing is a bit high. Don't take that as the "be all, end all"."
"The price for Alluvio Aternity is favorable."
"The pricing is fair."
"If the scale of your monitoring will be to go everywhere in an organization, a site license is key."
"The pricing is reasonable for the value that it gives because it does allow you to measure the cost ramifications of direct productivity loss for spends in both your infrastructure and on endpoints."
"It’s a little on the costly side, but if you license intelligently, accounting for your various hosts connecting in through VDI or terminal servers, you can make it well worth your money."
"I assume that the pricing is reasonable, because if it was too costly, there are other alternatives."
"Splunk can be an expensive solution. It all depends on how we configure the alerts and the events from the endpoints. You can save some money if you do that correctly. If not, it becomes an expensive solution."
"Most people share the same thought that the ingestion rates can get pretty pricey. There is a lot of work we do to curate the data that we send to Splunk so that it is not too noisy or too expensive."
"Its price is fair. Like with anything else, if you go into the cloud, different providers cost more, and you are able to throttle back or throttle up. The cost is comparable with anything else."
"We have seen ROI and improvements as we have continued to use the product, but they are more reactive."
"As a team, we prefer the old pricing model with a perpetual license. We are still evaluating the whole subscription-based model."
"Pricing and licensing is quite expensive. But for the value the product provides, it seems at par in the market."
"My customers have found the price of the solution to be high."
report
Use our free recommendation engine to learn which Digital Experience Monitoring (DEM) solutions are best for your needs.
817,234 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
25%
Government
12%
Manufacturing Company
11%
Computer Software Company
9%
Financial Services Firm
15%
Computer Software Company
14%
Government
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

APM tools for a Managed Service Provider - Dynatrace vs. AppDynamics vs. Aternity vs. Ruxit
Hi Avi! It's great to see your thorough approach to selecting an APM package for your MSP company. Considering your focus on SMBs and enterprises in Israel, Dynatrace seems like a solid choice with...
What is your experience regarding pricing and costs for Aternity?
The solution's price is pretty comparable to the industry.
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Also Known As

Aternity, Workforce APM, Aternity Frontline, Riverbed SteelCenter Aternity
No data available
 

Learn More

 

Overview

 

Sample Customers

Maersk, SwissRe, Travis Perkins, Michelin, National Instruments, Simmons & Simmons, Lighthouse Guild
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about Alluvio Aternity vs. Splunk Enterprise Security and other solutions. Updated: May 2023.
817,234 professionals have used our research since 2012.