• Home
  • BigPanda vs. Splunk Enterprise Security

BigPanda vs Splunk Enterprise Security comparison

Cancel
You must select at least 2 products to compare!
BigPanda Logo

BigPanda

Read 12 BigPanda reviews
2,522 views|1,358 comparisons
75% willing to recommend
Splunk Logo

Splunk Enterprise Security

Read 228 Splunk Enterprise Security reviews
25,711 views|20,955 comparisons
92% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
IT Infrastructure Monitoring
April 2024
Executive Summary

We performed a comparison between BigPanda and Splunk Enterprise Security based on real PeerSpot user reviews.

Find out what your peers are saying about Zabbix, Datadog, Auvik and others in IT Infrastructure Monitoring.
To learn more, read our detailed IT Infrastructure Monitoring Report (Updated: April 2024).
Download the complete report
768,886 professionals have used our research since 2012.
Featured Review
Anonymous User
Bad AI with primitive visualization and not configurable
The solution has a hard install, poor customer support, primitive and non-configurable visualizations. The best of a bad lot was the error message... Read more →
RajKumar25
We can take predictive action to identify and block threats so that nothing harmful gets into the system
Splunk helps us be more proactive. We can take predictive action to identify and block threats so that nothing harmful gets into the system. With... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The event correlation is really good and it is able to reduce the noise. It is a good tool for anomaly detection.""The most valuable features of BigPanda are the API integration was good. It enables us to do faster onboarding.""The program is very stable.""One of the most valuable features of BigPanda is its user-friendly interface.""The main thing that we like about BigPanda is the user interface.""We have also made extensive use of the outbound integrations to ticketing systems (JIRA) and collaboration tools (Slack). The main driver for us has been getting all alerting into a single UI and enabling us to streamline our incident management process.""A user-friendly solution.""BigPanda integrates well with other solutions, such as WatchGuard,"

More BigPanda Pros →

"There are lots of free learning materials on their website.""It has helped us look at modern technology, as well as penetrate our legacy systems, to see where the bottlenecks are.""There are a lot of third-party applications that can be installed.""The initial setup is really straightforward. It's one of the easiest installations.""I like the ease with which dashboards can be created.""The reporting aspect is good and it does what I need it to do.""Splunk is quite flexible for our customers. Splunk does not filter from a specific lock, you can define it later.""It definitely does help with both auditing and as well as regular monitoring. SOC does more monitoring, but ES also gives you other features that are auditing-related. The dashboards are also beneficial."

More Splunk Enterprise Security Pros →

Cons
"BigPanda could improve by syncing its threshold settings with Dynatrace to align with users' familiarity.""Analytics is an area for improvement, being able to break down the actions that are being taken by users of BigPanda, as well as the auto-magical work that is being done by BigPanda.""The cost of this product is too high compared to New Relic.""Lacks sufficient dashboard features.""We had to use a partner for the deployment.""Our infrastructure is quite large - tens of thousands of servers, often with 30-plus checks running on each host with one minute intervals. This generates a lot of data often in bursts (when we have a large scale failure). This has caused some delay in the ingestion pipeline.""BigPanda can improve the correlations. We didn't see any big value. It is still good at the same event deduplication, event processing, and ticket creation, but I was more looking at event analysis and event correlation. In that area, it is still no big difference between the other solutions on the market. All of them, are in the same immature stage.""The usability needs to improve, because it is a pure code environment."

More BigPanda Cons →

"When we do a rollout from the server or host or anything, we'd like to see more automation. It would save us time.""Given the ever-increasing number of threats, I would like Splunk to update its threat signatures more frequently.""The solution could improve by increasing the performance. We have run into problems when large amounts of data are processed.""​On the technical side, it would be nice to see aspects of the recent acquisition of Phantom make it into the core Splunk Enterprise, not just become a part of the premium Enterprise Security.​""It requires a significant amount of relatively complex architecture once you push past the single server instance.""We will receive alerts only for the administrators and deployment servers, but not for all servers.""There is improvement needed when importing from some types of data sources.""Free-floating panels in the dashboards are like a glass table."

More Splunk Enterprise Security Cons →

Pricing and Cost Advice
  • "They were great to work with on pricing/licensing. Given we are a high-growth company, we needed a flexible site license."
  • "We pay $200,000 USD per year."
  • "The price of BigPanda is in the middle compared to other solutions."
  • "BigPanda is cheaper than the competitors."

    • More BigPanda Pricing and Cost Advice →

  • "Pricing and licensing is quite expensive. But for the value the product provides, it seems at par in the market."
  • "Although Splunk is an expensive product, it is designed to be utilized across your organization in order to maximize your ROI and lower your TCO."
  • "It is not cheap."
  • "Splunk Enterprise becomes extremely expensive after the 20GB/month license."
  • "You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive."
  • "Splunk licensing model might seem expensive but with all the gain in functionalities you will have compared to traditional SIEM solutions I think it’s worth the price."
  • "Pricing is pretty fair."
  • "While licensing can be a concern, there are ways to reduce the licensing costs including filtering some events."

    • More Splunk Enterprise Security Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which IT Infrastructure Monitoring solutions are best for your needs.
    See Recommendations
    768,886 professionals have used our research since 2012.
    Comparison Review
    Vinod Shankar
    HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
    We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are based on Gartner Magic Q which is what Organizations typically use to select SIEM vendors. The Vendors mentioned here in the deck are : 1. HP ArcSight 2. McAfee Nitro 3. IBM QRadar 4. Splunk SIEM 5. RSA Security Analytic 6. LogRhythm. SIEM Technology Space SIEM market analysis of the last 3 years suggest: Market consolidation of SIEM players (25 vendors in 2011 to 16 vendors in 2013)Only products with technology maturity and a strong road map have featured in leaders quadrant.HP ArcSight & IBM Q1 Labs have maintained leadership in SIEM industry with continued technology upgradeMcAfee Nitro has strong product features & road map to challenge HP & IBM for leadershipHPArcSight The ArcSight Enterprise Threat and Risk Management (ETRM) Platform is an integrated set of products for collecting, analysing, and managing enterprise Security Event information ArcSight Enterprise Security Manager (ESM): Correlation and analysis engine used to identify security threat in real-time& virtual environments ArcSight Logger: Log storage and Search solution ArcSight IdentityView: User Identity tracking/User activity monitoring ArcSight Connectors: For data collection from a variety of data… Read more →
    Questions from the Community
    Any advice about APM solutions?
    Top Answer:There are many factors and we know little about your requirements (size of org, technology stack, management systems, the scope of implementation). Our goal was to consolidate APM and infra… more »
    Read all 5 answers   →
    What do you like most about BigPanda?
    Top Answer:One of the most valuable features of BigPanda is its user-friendly interface.
    Read all 11 answers   →
    What is your experience regarding pricing and costs for BigPanda?
    Top Answer:BigPanda is cheaper than the competitors.
    Read all 7 answers   →
    What SOC product do you recommend?
    Top Answer:For tools I’d recommend:  -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also,… more »
    Read all 12 answers   →
    What is a better choice, Splunk or Azure Sentinel?
    Top Answer:It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log… more »
    How does Splunk compare with Azure Monitor?
    Top Answer:Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we… more »
    Read all 2 answers   →
    Ranking
    40th
    out of 108 in IT Infrastructure Monitoring
    Views
    2,522
    Comparisons
    1,358
    Reviews
    6
    Average Words per Review
    336
    Rating
    6.5
    2nd
    out of 80 in Security Information and Event Management (SIEM)
    Views
    25,711
    Comparisons
    20,955
    Reviews
    63
    Average Words per Review
    958
    Rating
    8.4
    Comparisons
    Learn More
    BigPanda
    Splunk
    Overview

    BigPanda Autonomous Operations platform is a cutting-edge solution that helps IT Ops, NOC and DevOps teams detect, investigate, and resolve IT incidents faster and more easily than ever before. Powered by Open Box Machine Learning, BigPanda correlates IT noise into insights, automates incident management, and unifies fragmented IT operations.

    BigPanda’s Autonomous Operations platform increases the ease with which IT administrators are able to both manage their systems and respond to issues that arise. It combines machine learning and automation, which not only provide administrators with reliable suggestions concerning future issues that may arise, but also allows for certain tasks to be assigned to the system itself. These allow organizations to save both time and resources that can be dedicated to more critical tasks.

    BigPanda’s Autonomous Operations platform possesses a simplified and unified user interface, enabling users to manage the solution from one place. The UI allows users to view and manage all of the information and controls that IT teams need to be able to easily access, providing a level of visibility that ensures users will be able to view all of their system’s most up-to-date and critical information at any time that they wish.

    Benefits of BigPanda Autonomous Operations Platform

    Some the benefits of using BigPanda’s Autonomous Operations platform include:

    • The ability to autonomously detect and respond to IT issues. BigPanda’s Autonomous Operations software autonomously searches for and detects issues. When found, its level-zero feature can then handle elementary tasks such as threat prioritization, which would otherwise require a dedicated team to handle. The solution can be adapted to meet your organization’s specific requirements.
    • The ability to receive new threat suggestions based on historical data. Armed with this knowledge, BigPanda’s Autonomous Operations’s machine learning algorithm makes reliable predictions of issues that might come up in the future.
    • The ability to manage BigPanda’s Autonomous Operations platform and view both real-time and historical data from a single interface. BigPanda’s Autonomous Operations platform UI is a centralized location where all levels of your organization’s IT teams can view system data and manage situations that may arise. The data displayed on this interface is always up-to-date. IT teams have the latest relevant information available to them at all times without having to conduct a search.

    Reviews from Real Users

    BigPanda’s Autonomous Operations platform stands out among its competitors for a number of reasons. Two major ones are its centralized user interface and its ability to easily integrate with other security solutions. The centralized UI gives users the ability to clearly see all their alert data in a single location without having to search for it. Its easy integration allows administrators to augment their IT security capabilities when they find it necessary to do so.

    PeerSpot user Larry C., the principal engineer in charge of site operations for a tech vendor, notes this benefit when he writes, "Alert aggregation was the primary requirement. BigPanda pulls all this together into a single UI for us, allowing us to see related alerts grouped together into an incident, and enables us to easily create a JIRA ticket and Slack channel to manage an issue."

    Another PeerSpot user, who is an independent entrepreneur in the IT environment at a tech services company, notes the flexibility of this platform when they write “BigPanda integrates well with other solutions, such as WatchGuard.”


    Splunk Enterprise Security is a SIEM, log management, and IT operations analytics tool. The solution provides users with the ability to secure their information and manage their data in the cloud, data centers, or other applications. Splunk Enterprise Security also offers visibility from different areas, levels, and devices, rather than from a single system, thus, providing its users with flexibility. Splunk Enterprise Security can monitor data and analyze, detect, and prevent intrusions. This benefits users as it provides alerts to possible intrusions, helps users to be proactive, and reduces risk factors. 

    Full visibility across your environment

    Break down data silos and gain actionable intelligence by ingesting data from multicloud and on-premises deployments. Get full visibility to quickly detect malicious threats in your environment.

    Fast threat detection

    Defend against threats with advanced security analytics, machine learning and threat intelligence that focus detection and provide high-fidelity alerts to shorten triage times and raise true positive rates.

    Efficient investigations

    Gather all the context you need and initiate flexible investigations with security analytics at your fingertips. The built-in open and extensible data platform boosts productivity and drives down fatigue.

    Open and scalable

    Built on an open and scalable data platform, you can stay agile in the face of evolving threats and business needs. Splunk meets you where you are on your cloud journey, and integrates across your data, tools and content.

    Sample Customers
    Nagios, ServiceNow, ITSM, NOC, CMDB Evolved, RemedyIncident Management Process
    Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
    Top Industries
    VISITORS READING REVIEWS
    Financial Services Firm25%
    Computer Software Company16%
    Manufacturing Company9%
    Insurance Company6%
    REVIEWERS
    Computer Software Company19%
    Financial Services Firm15%
    Government10%
    Energy/Utilities Company7%
    VISITORS READING REVIEWS
    Financial Services Firm15%
    Computer Software Company14%
    Government9%
    Manufacturing Company7%
    Company Size
    REVIEWERS
    Small Business42%
    Large Enterprise58%
    VISITORS READING REVIEWS
    Small Business15%
    Midsize Enterprise9%
    Large Enterprise77%
    REVIEWERS
    Small Business31%
    Midsize Enterprise12%
    Large Enterprise57%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise13%
    Large Enterprise68%
    Buyer's Guide
    IT Infrastructure Monitoring
    April 2024
    Download Free Report
    Find out what your peers are saying about Zabbix, Datadog, Auvik and others in IT Infrastructure Monitoring. Updated: April 2024.
    DOWNLOAD NOW
    768,886 professionals have used our research since 2012.

    BigPanda is ranked 40th in IT Infrastructure Monitoring with 12 reviews while Splunk Enterprise Security is ranked 2nd in Security Information and Event Management (SIEM) with 228 reviews. BigPanda is rated 7.2, while Splunk Enterprise Security is rated 8.4. The top reviewer of BigPanda writes "Offers comprehensive alert monitoring and a user-friendly interface but requires manual validation to provide accurate alerts". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". BigPanda is most compared with ServiceNow, Moogsoft, PagerDuty Operations Cloud, IBM Tivoli NetCool OMNIbus and Datadog, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Microsoft Sentinel and Elastic Security.

    We monitor all IT Infrastructure Monitoring reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.