No more typing reviews! Try our Samantha, our new voice AI agent.

Cofense Platform vs Splunk SOAR comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cloudflare One
Sponsored
Average Rating
8.6
Reviews Sentiment
6.5
Number of Reviews
23
Ranking in other categories
Email Security (20th), Secure Web Gateways (SWG) (13th), Data Loss Prevention (DLP) (22nd), Cloud Access Security Brokers (CASB) (13th), Distributed Denial-of-Service (DDoS) Protection (9th), Software Defined WAN (SD-WAN) Solutions (12th), Access Management (11th), Bot Management (3rd), ZTNA as a Service (9th), ZTNA (4th), Secure Access Service Edge (SASE) (9th), Remote Browser Isolation (RBI) (3rd)
Cofense Platform
Average Rating
0.0
Reviews Sentiment
7.1
Number of Reviews
1
Ranking in other categories
Email Security (34th), Security Incident Response (12th), Threat Intelligence Platforms (TIP) (43rd), Security Awareness Training (11th)
Splunk SOAR
Average Rating
8.2
Reviews Sentiment
6.5
Number of Reviews
62
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (1st)
 

Mindshare comparison

Email Security Mindshare Distribution
ProductMindshare (%)
Cofense Platform1.2%
Proofpoint Email Protection6.7%
Microsoft Defender for Office 3656.1%
Other86.0%
Email Security
Security Orchestration Automation and Response (SOAR) Mindshare Distribution
ProductMindshare (%)
Splunk SOAR7.1%
Microsoft Sentinel9.7%
Palo Alto Networks Cortex XSOAR8.6%
Other74.6%
Security Orchestration Automation and Response (SOAR)
 

Featured Reviews

CV
Network Architect at IP Dimension
Cloud security has improved remote access and has reduced costs for smaller client sites
I have used Cloudflare One's Identity-Aware Proxy, and it is quite straightforward from what I have seen so far. The app registration on the Azure side integrates fully into Cloudflare, and I am very satisfied with that part because it is easy to set up. The integration of Cloudflare One's Secure Web Gateway and Zero Trust Network Access works without any issues. That part is pretty automatic, and if you complete the rest of the setup, it comes together by itself with no issues from my side. What makes it nice is that we can actually start replacing on-site firewalls at this stage for the smaller clients because it does not matter if they go to a coffee shop or work from home; they are still secured by the same connection. The hops get shorter and you get better latency. We have done testing to see if it is better. One thing that we did notice with our proof of concept with our current client is that they have people connecting from the UK. When they used their previous VPN solution, uploading CAD drawings and other files to the server took a long time. They mentioned that it is much quicker on Cloudflare One's solution. I definitely believe that is part of the improved performance, and I am satisfied with that as well. What is nice about Cloudflare One is that it makes the setup easier and also easier to train technicians to maintain it. Compared to legacy systems, we do not need to get fancy firewalls in place that are costly. That is definitely also a cost-saver with Cloudflare One.
MohamedShaker - PeerSpot reviewer
Sales Team Leader at ITVikings
Secures the business for customers quickly and accurately
It secures the business for the customers. For instance, if any phishing emails come into the environment and employees see it, we direct the email to Triage. The Triage system will investigate it through AI technology to see if it's a phishing email or not. If it is a phishing email, it will quarantine it and erase it from the environment.
SS
Manager cybersecurity at Hexion Inc.
Automates threat response and reduces investigation time but needs better threat intelligence integration
One thing that we would like to see with Splunk SOAR is the expandability to the threat intelligence feed. Currently, we have limited ingestion to the threat intelligence feed for the correlation purpose. We would like to see it being integrated, with license cost or without license cost, to leading threat intelligence sources such as Recorded Future, Feedly, or Flare. That is something we would appreciate having integrated. The second thing on the improvement side is about exposed credential-related information. If we start ingesting those data to Splunk SOAR or SIEM with some sort of integration with threat intelligence feed, that will also improve our detection and prediction method or help us with the investigation.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The simplicity of the solution is its valuable features as almost no effort was needed to learn the configurations. It is also one of the cheapest firewalls available in this category."
"The tool also offers good scalability, and the dashboard, along with real-time analytics, is very good."
"It's the endpoint exposition. We don't need to expose our VPN server to the internet and need a zero-test solution. I can apply some conditional access to the endpoint that's connecting to our network to check their security policies or the security condition of their workstation. Once the workstation is trying to connect to my internal network, then I would like to check the discrete condition of these endpoints that are trying to access my internal network. We created some conditional access. We have CrowdStrike, to check if the CrowdStrike is installed, to check if it's updated, and to check for Windows updates. We created some conditional policies to check it."
"Cloudflare DDoS is better than its competitors for its security, deployment, and scalability."
"It will take the blow rather than our applications should an attack occur."
"Cloudflare One has assisted in securing my remote workforce through a SASE solution with Cloudflare One and the Workers part, although I am not currently using the Workers component."
"Cloudflare Zero Trust Platform removes the risk of exposing the applications to the public."
"Cloudflare is simple to use."
"It secures the business for the customers."
"For instance, if any phishing emails come into the environment and employees see it, we direct the email to Triage. The Triage system will investigate it through AI technology to see if it's a phishing email or not. If it is a phishing email, it will quarantine it and erase it from the environment."
"Splunk has many features that make work easier, and it's simple to implement in a large production environment. Splunk collects a massive amount of data from cloud servers and handles it perfectly."
"It helps increase efficiency and productivity."
"We decided to use Splunk SOAR because it's a powerful, reliable engine that has significantly improved our SOC operations, especially in terms of incident response time and scaling features."
"If a company wants to automate redundant work, this solution is perfect for that."
"Splunk SOAR's extensive library of pre-built integrations allows it to connect with a vast array of popular security and IT applications, streamlining workflows across our existing security stack."
"In Splunk SOAR, I find the playbooks valuable. We get to create multiple playbooks, and within each playbook, there is a different type of investigation attached to it, which helps out an analyst or new analysts coming on board."
"The product’s integration with other Splunk products is valuable."
"Its ability to integrate with other systems and applications in our environment is pretty easy. Sometimes if we see any complexity we try to involve a consultant to help us. Everything is through the built-in app. Splunk can connect to any assets through the built-in app. It could be in a platform, firewalls, or endpoints. It's easy if it's an app integration."
 

Cons

"The response time for support must be reduced."
"The onboarding process can be improved a little bit."
"For the topic of improvement, providing some training material is one of my suggestions."
"The initial onboarding was causing us some confusion."
"Our customers no longer use Cloudflare because its service is subpar."
"Cloudflare Zero Trust Platform needs to improve its documentation. It took time to do the implementation."
"From a logging perspective, it is still a bit difficult to see exactly what users are being blocked with the current views."
"They don't have a person to provide support for customers using the solution under their free plan."
"If they continue improving and enhancing this solution, it could be even faster and more accurate."
"I haven't used it fully, but based on my usage, I could not find simulation tools and features. It currently lacks simulation features, which are important for me for creating a playbook. It is also very expensive for my region."
"We've had trouble implementing the solution with Microsoft products. There seems to be an integration gap."
"They should integrate Splunk Enterprise Security better into Splunk Cloud."
"It would be ideal if we could automate processes even more."
"I have found a challenge in my three months with Splunk SOAR in that it is quite a heavy tool to maintain."
"In my opinion, the focus should be on improving its simplicity, specifically the interface, and configuration."
"The number of playbooks on offer should be increased."
"The gap for improvement I see is response time because it takes a lot of time to have a response from them."
 

Pricing and Cost Advice

"The solution's pricing lacks transparency."
"The pricing is somewhere in the middle. I would rate the pricing a seven out of ten."
"The price tag is no longer $200,000, but rather $300,000 to $400,000. It's twice."
"The solution is not that expensive."
"The pricing of the solution is cheap. The licensing cost is also very low. I rate the cost and pricing a three out of ten."
"My company has to make yearly payments towards the licensing costs attached to the solution. There are no hidden charges apart from the licensing costs of the solution."
"The prices are slightly expensive."
"Cloudflare Zero Trust Platform's pricing is good."
Information not available
"I found the price of Splunk SOAR to be good."
"The licensing cost is reasonable."
"The cost is high and the licensing is on an annual basis."
"It's very overpriced because it is based on the number of users. There is no bulk licensing."
"Splunk SOAR is more expensive compared to other options for SOAR."
"I don't know the exact price, but for my region, it is very expensive."
"We renewed it this year. This year was the first time there was a dramatic increase in the price. It was kind of non-negotiable. It was just a high increase. We had internal communications, and it was definitely a surprise to us. In a short time frame, we renewed it this year. Prices are going up everywhere, but they are not always justifiable, at least not to our eyes. The pricing this year was definitely a big shock."
"The tool is not cheap."
report
Use our free recommendation engine to learn which Email Security solutions are best for your needs.
903,996 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
19%
Comms Service Provider
10%
Financial Services Firm
9%
Manufacturing Company
8%
Construction Company
15%
Manufacturing Company
9%
Comms Service Provider
8%
Energy/Utilities Company
8%
Financial Services Firm
12%
Manufacturing Company
9%
Construction Company
8%
Media Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise1
Large Enterprise12
No data available
By reviewers
Company SizeCount
Small Business17
Midsize Enterprise10
Large Enterprise41
 

Questions from the Community

What needs improvement with Cloudflare Zero Trust Platform?
In my opinion, Cloudflare One can be improved mainly through compatibility, as the integration should be much simpler...
What is your primary use case for Cloudflare Zero Trust Platform?
Cloudflare One's primary use case for my organization is to protect servers and to provide remote access with the VPN...
Ask a question
Earn 20 points
What is your experience regarding pricing and costs for Splunk Phantom?
The pricing is quite high. Splunk SOAR is high priced, but their product is also a market leader, so that way it is g...
What needs improvement with Splunk Phantom?
I have found a challenge in my three months with Splunk SOAR in that it is quite a heavy tool to maintain. It's defin...
What is your primary use case for Splunk Phantom?
Splunk SOAR is used for internal company operations. One of the best use cases implemented in the last three months w...
 

Also Known As

Cloudflare Area 1 Email Security, Cloudflare Bot Management, Cloudflare Gateway, Cloudflare Zero Trust Platform, Cloudflare DDoS, Cloudflare SASE & SSE Platform
Cofense Intelligence, PhishMe Intelligence, Intelligence ThreatHQ, Cofense Triage, Cofense LMS
Phantom
 

Overview

 

Sample Customers

23andMe
Jackson Health System
Recorded Future, Blackstone
Find out what your peers are saying about Proofpoint, Microsoft, Check Point Software Technologies and others in Email Security. Updated: June 2026.
903,996 professionals have used our research since 2012.