No more typing reviews! Try our Samantha, our new voice AI agent.

Cofense Platform vs Splunk SOAR comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cloudflare One
Sponsored
Average Rating
8.6
Reviews Sentiment
6.5
Number of Reviews
23
Ranking in other categories
Email Security (20th), Secure Web Gateways (SWG) (13th), Data Loss Prevention (DLP) (22nd), Cloud Access Security Brokers (CASB) (13th), Distributed Denial-of-Service (DDoS) Protection (9th), Software Defined WAN (SD-WAN) Solutions (12th), Access Management (11th), Bot Management (3rd), ZTNA as a Service (9th), ZTNA (4th), Secure Access Service Edge (SASE) (9th), Remote Browser Isolation (RBI) (3rd)
Cofense Platform
Average Rating
0.0
Reviews Sentiment
7.1
Number of Reviews
1
Ranking in other categories
Email Security (34th), Security Incident Response (12th), Threat Intelligence Platforms (TIP) (43rd), Security Awareness Training (11th)
Splunk SOAR
Average Rating
8.2
Reviews Sentiment
6.5
Number of Reviews
62
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (1st)
 

Mindshare comparison

Email Security Mindshare Distribution
ProductMindshare (%)
Cofense Platform1.2%
Proofpoint Email Protection6.7%
Microsoft Defender for Office 3656.1%
Other86.0%
Email Security
Security Orchestration Automation and Response (SOAR) Mindshare Distribution
ProductMindshare (%)
Splunk SOAR7.1%
Microsoft Sentinel9.7%
Palo Alto Networks Cortex XSOAR8.6%
Other74.6%
Security Orchestration Automation and Response (SOAR)
 

Featured Reviews

CV
Network Architect at IP Dimension
Cloud security has improved remote access and has reduced costs for smaller client sites
I have used Cloudflare One's Identity-Aware Proxy, and it is quite straightforward from what I have seen so far. The app registration on the Azure side integrates fully into Cloudflare, and I am very satisfied with that part because it is easy to set up. The integration of Cloudflare One's Secure Web Gateway and Zero Trust Network Access works without any issues. That part is pretty automatic, and if you complete the rest of the setup, it comes together by itself with no issues from my side. What makes it nice is that we can actually start replacing on-site firewalls at this stage for the smaller clients because it does not matter if they go to a coffee shop or work from home; they are still secured by the same connection. The hops get shorter and you get better latency. We have done testing to see if it is better. One thing that we did notice with our proof of concept with our current client is that they have people connecting from the UK. When they used their previous VPN solution, uploading CAD drawings and other files to the server took a long time. They mentioned that it is much quicker on Cloudflare One's solution. I definitely believe that is part of the improved performance, and I am satisfied with that as well. What is nice about Cloudflare One is that it makes the setup easier and also easier to train technicians to maintain it. Compared to legacy systems, we do not need to get fancy firewalls in place that are costly. That is definitely also a cost-saver with Cloudflare One.
MohamedShaker - PeerSpot reviewer
Sales Team Leader at ITVikings
Secures the business for customers quickly and accurately
It secures the business for the customers. For instance, if any phishing emails come into the environment and employees see it, we direct the email to Triage. The Triage system will investigate it through AI technology to see if it's a phishing email or not. If it is a phishing email, it will quarantine it and erase it from the environment.
SS
Manager cybersecurity at Hexion Inc.
Automates threat response and reduces investigation time but needs better threat intelligence integration
One thing that we would like to see with Splunk SOAR is the expandability to the threat intelligence feed. Currently, we have limited ingestion to the threat intelligence feed for the correlation purpose. We would like to see it being integrated, with license cost or without license cost, to leading threat intelligence sources such as Recorded Future, Feedly, or Flare. That is something we would appreciate having integrated. The second thing on the improvement side is about exposed credential-related information. If we start ingesting those data to Splunk SOAR or SIEM with some sort of integration with threat intelligence feed, that will also improve our detection and prediction method or help us with the investigation.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Cloudflare One has assisted in securing my remote workforce through a SASE solution with Cloudflare One and the Workers part, although I am not currently using the Workers component."
"The best feature is rate limiting. If I'm expecting 500 visits per hour, Cloudflare will limit the requests if I suddenly get 50,000."
"Cloudflare Access is a stable solution."
"It's a perfect solution from my perspective; it's easy to understand and easy to configure."
"Enables me to work from two locations."
"We mostly use Cloudflare WAF, and gets basic Cloudflaire DDoS, caching as extra bonus . We like the factor these features are all integrated into 1 console, simple to manage."
"For Cloudflare Access, I am using the free plan...The most valuable feature is their protection."
"I'm very satisfied with the environment and the dashboard."
"For instance, if any phishing emails come into the environment and employees see it, we direct the email to Triage. The Triage system will investigate it through AI technology to see if it's a phishing email or not. If it is a phishing email, it will quarantine it and erase it from the environment."
"It secures the business for the customers."
"The most valuable feature of Splunk SOAR that stands out is it has a great SOAR, the automation and orchestration module is highly mature, and a lot of use cases are on user entity and behavioral analytics (UEBA), which is artificial intelligence and machine learning-based (AIML)."
"Since deploying Splunk SOAR, there has been a notable reduction in time spent on monotonous security tasks, which I estimate to be around 95%, enabling my team to focus on more strategic initiatives."
"The solution allows us to customize playbooks and incorporate custom code, allowing us to drag and drop elements while still writing code to build the integrations we need."
"Scalability is the best feature of the solution."
"Fortunately, the system helps to parse through these alerts and determine which ones are important and need further investigation."
"Splunk SOAR has saved us a lot; monthly, around 300 hours of effort, it is saving with Splunk SOAR, and it has helped us where we were able to run the SOC operation with the less number of headcount versus what we used to do earlier."
"I have saved much time thanks to Splunk SOAR's impact, where earlier, without autonomous monitoring, users took almost one day or two days; now, a twenty-four hour job is done in almost thirty minutes."
"I like the integration capabilities of Phantom. It has a lot of integrations with other products. Its searching methodologies are also good. It is also easy to understand and easy to create playbooks."
 

Cons

"Operating and tuning the product is difficult."
"From a logging perspective, it is still a bit difficult to see exactly what users are being blocked with the current views."
"Cloudflare DDoS has poor technical support."
"For the topic of improvement, providing some training material is one of my suggestions."
"Feedback could be enhanced. While I work efficiently with Clover as a partner in Mexico City, sometimes the information and requests are easier to manage with more concrete solutions."
"Cloudflare One is not very powerful, but for what we require, it is basic and sufficient."
"They don't have a person to provide support for customers using the solution under their free plan."
"Cloudflare Zero Trust Platform needs to improve its documentation. It took time to do the implementation."
"If they continue improving and enhancing this solution, it could be even faster and more accurate."
"They should integrate Splunk Enterprise Security better into Splunk Cloud."
"Overall, this product is fairly good but it's not quite mature yet. It needs some enhancement and some stabilization in some areas."
"Some of the training materials are on a basic level."
"From the improvement point of view regarding Splunk SOAR, I suggest including more types of LLM models such as autonomous AI models including Anthropic and Opus 4.6, as well as creating a playground for new users to work on these, which will significantly help solve complex problems and assist new companies in understanding how Splunk works easily."
"I would rate Splunk Phantom a seven out of 10."
"The scalability could be better."
"Unfortunately, not all of our analysts are iPhone users or iOS users. The mobile app is only supported on iOS. Our analysts who have Android do not have that benefit. That would be a nice thing to have so that we can have it across the board and not just for iOS."
"I think Splunk SOAR is a bit slow to catch up with the AI boom. Everyone is ingesting Copilots or some form of AI in their platforms, and Splunk SOAR doesn't have it yet."
 

Pricing and Cost Advice

"Cloudflare Zero Trust Platform's pricing is good."
"The prices are slightly expensive."
"The price tag is no longer $200,000, but rather $300,000 to $400,000. It's twice."
"My company has to make yearly payments towards the licensing costs attached to the solution. There are no hidden charges apart from the licensing costs of the solution."
"The solution is not that expensive."
"The pricing is somewhere in the middle. I would rate the pricing a seven out of ten."
"The solution's pricing lacks transparency."
"The pricing of the solution is cheap. The licensing cost is also very low. I rate the cost and pricing a three out of ten."
Information not available
"When we first purchased our Splunk SOAR license, it was based on an event-count model. It was based on the number of events. I had strong opinions at the time that automation should not be stifled by the amount of automation you can accomplish, so the previous structure was not as beneficial for us. Later that year, we got told or saw at a conference that they announced user-based pricing. We are now in a renewal period, so we migrated to a user-based license model, which is more appropriate for us so that we no longer have to worry about stifling our automation based on the quantity."
"The cost is high and the licensing is on an annual basis."
"Splunk SOAR is moderately priced, neither cheap nor overly expensive."
"It's very overpriced because it is based on the number of users. There is no bulk licensing."
"In my opinion, the price is high, but if you want good products, you have to be willing to pay for them."
"Splunk SOAR is an expensive solution for an organization of our size."
"Splunk is a fast enterprise tool, but it costs too much. At the same time, it's worth what we pay, in my opinion. We can efficiently perform all the functions and tie together the data. It's the perfect tool for our needs."
"Splunk SOAR is more expensive compared to other options for SOAR."
report
Use our free recommendation engine to learn which Email Security solutions are best for your needs.
903,067 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
19%
Comms Service Provider
10%
Financial Services Firm
9%
Manufacturing Company
8%
Construction Company
15%
Manufacturing Company
9%
Comms Service Provider
8%
Energy/Utilities Company
8%
Financial Services Firm
12%
Manufacturing Company
9%
Construction Company
8%
Media Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise1
Large Enterprise12
No data available
By reviewers
Company SizeCount
Small Business17
Midsize Enterprise10
Large Enterprise41
 

Questions from the Community

What needs improvement with Cloudflare Zero Trust Platform?
In my opinion, Cloudflare One can be improved mainly through compatibility, as the integration should be much simpler...
What is your primary use case for Cloudflare Zero Trust Platform?
Cloudflare One's primary use case for my organization is to protect servers and to provide remote access with the VPN...
Ask a question
Earn 20 points
What is your experience regarding pricing and costs for Splunk Phantom?
The pricing is quite high. Splunk SOAR is high priced, but their product is also a market leader, so that way it is g...
What needs improvement with Splunk Phantom?
Splunk SOAR can use generative AI more extensively in terms of creating the reports which can be presented to the top...
What is your primary use case for Splunk Phantom?
Splunk SOAR has been in use for almost seven or eight years.
 

Also Known As

Cloudflare Area 1 Email Security, Cloudflare Bot Management, Cloudflare Gateway, Cloudflare Zero Trust Platform, Cloudflare DDoS, Cloudflare SASE & SSE Platform
Cofense Intelligence, PhishMe Intelligence, Intelligence ThreatHQ, Cofense Triage, Cofense LMS
Phantom
 

Overview

 

Sample Customers

23andMe
Jackson Health System
Recorded Future, Blackstone
Find out what your peers are saying about Proofpoint, Microsoft, Check Point Software Technologies and others in Email Security. Updated: June 2026.
903,067 professionals have used our research since 2012.