Splunk ITSI and Elastic Observability compete in IT monitoring and analytics. Elastic Observability seems to have the upper hand due to its comprehensive features and open-source flexibility.
Features: Splunk ITSI offers machine learning-powered anomaly detection, service monitoring, and customizable dashboards. Elastic Observability provides open-source flexibility, comprehensive logging, and seamless integration.
Room for Improvement: Splunk ITSI could improve its scalability and reduce resource consumption. Users suggest enhancements in Splunk ITSI's user interface. Elastic Observability needs enhancements in data visualization and more user training resources. Users mention Elastic Observability's complex initial setup as an area for improvement.
Ease of Deployment and Customer Service: Deploying Splunk ITSI is straightforward but time-consuming, with strong customer support. Elastic Observability's deployment is quicker, but its initial setup can be complex. Elastic's customer service receives mixed feedback compared to Splunk ITSI.
Pricing and ROI: Splunk ITSI has high setup costs, with justified ROI due to its functionality and support. Elastic Observability, despite higher initial costs, delivers better ROI due to its features and open-source nature.
The technical support is excellent, and I would rate it at ten.
Elastic Observability seems to have a good scale-out capability.
What is not scalable for us is not on Elastic's side.
Splunk is highly scalable, with the ability to expand efficiently.
It is very stable, and I would rate it ten out of ten based on my interaction with it.
Elastic Observability is really stable.
The setup, however, must be done correctly as incorrect deployment can lead to issues.
For instance, if you have many error logs and want to create a rule with a custom query, such as triggering an alert for five errors in the last hour, all you need to do is open the AI bot, type this question, and it generates an Elastic query for you to use in your alert rules.
It lacked some capabilities when handling on-prem devices, like network observability, package flow analysis, and device performance data on the infrastructure side.
Elastic Observability could improve asset discovery as the current requirement to push the agent is not ideal.
Splunk ITSI could benefit from including more features that other solutions support, such as vulnerability management modules.
Elastic Observability is cost-efficient and provides all features in the enterprise license without asset-based licensing.
Observability is actually cheaper compared to logs because you're not indexing huge blobs of text and trying to parse those.
The license is reasonably priced, however, the VMs where we host the solution are extremely expensive, making the overall cost in the public cloud high.
Splunk ITSI tends to be more expensive compared to some open-source solutions.
The most valuable feature is the integrated platform that allows customers to start from observability and expand into other areas like security, EDR solutions, etc.
the most valued feature of Elastic is its log analytics capabilities.
All the features that we use, such as monitoring, dashboarding, reporting, the possibility of alerting, and the way we index the data, are important.
Splunk ITSI allows for integration with threat intelligence, enabling my organization to correlate more than two events for generating alerts.
Elastic Observability is primarily used for monitoring login events, application performance, and infrastructure, supporting significant data volumes through features like log aggregation, centralized logging, and system metric analysis.
Elastic Observability employs Elastic APM for performance and latency analysis, significantly aiding business KPIs and technical stability. It is popular among users for system and server monitoring, capacity planning, cyber security, and managing data pipelines. With the integration of Kibana, it offers robust visualization, reporting, and incident response capabilities through rapid log searches while supporting machine learning and hybrid cloud environments.
What are Elastic Observability's key features?Companies in technology, finance, healthcare, and other industries implement Elastic Observability for tailored monitoring solutions. They find its integration with existing systems useful for maintaining operation efficiency and security, particularly valuing the visualization capabilities through Kibana to monitor KPIs and improve incident response times.
Splunk IT Service Intelligence (ITSI) is a powerful analytics-driven monitoring and analytics solution that provides real-time insights into the health and performance of IT services.
It enables organizations to proactively identify and resolve issues, optimize service delivery, and improve overall IT operations. With its advanced machine learning capabilities, ITSI automatically detects anomalies, predicts future events, and prioritizes alerts based on business impact.
The solution offers a centralized view of IT services, allowing users to visualize and analyze data from multiple sources in a single dashboard. ITSI also provides customizable KPIs, service-level agreements (SLAs), and key performance indicators (KPIs) to measure and track service performance.
With its intuitive interface and powerful analytics capabilities, Splunk ITSI empowers IT teams to deliver reliable and efficient services, ensuring maximum uptime and customer satisfaction.
We monitor all Application Performance Monitoring (APM) and Observability reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
