Splunk User Behavior Analytics and ExtremeCloud IQ compete in cybersecurity and cloud management. ExtremeCloud IQ offers advanced features and value, while Splunk is favorable in pricing and support.
Features: Splunk User Behavior Analytics provides security analytics, anomaly detection, and data aggregation. ExtremeCloud IQ offers cloud management, scalable networking, and intelligence-driven insights. Its advanced cloud-centric features facilitate seamless integration and management.
Room for Improvement: Splunk can improve in deployment complexity, user interface customization, and advanced analytics tool integration. ExtremeCloud IQ could enhance its cost model, feature scalability, and data processing speed for large enterprises.
Ease of Deployment and Customer Service: Splunk's deployment is complex, with responsive support aiding integration. ExtremeCloud IQ offers a simplified deployment process and effective support structure, easing quick adoption.
Pricing and ROI: Splunk is reasonably priced with satisfactory ROI from its security analytics. ExtremeCloud IQ may demand higher initial costs, but offers substantial ROI through improved network performance and management efficiency, with features justifying the investment for cloud-focused businesses.
I managed to support and deploy ExtremeCloud IQ and handle network management without requiring external staffing, thus saving on external hiring costs.
The solution can save costs by improving incident resolution times and reducing security incident costs.
GTAC receives a score of ten out of ten.
I experienced effective help mainly remotely, though for some issues, a technical person had to assist on-site.
Mission-critical offering a dedicated team, proactive monitoring, and fast resolution.
From the responsiveness perspective, Splunk is very responsive with SLA-bound support for premium tiers.
I would rate their technical support as 8.5 out of 10.
Splunk User Behavior Analytics is highly scalable, designed for enterprise scalability, allowing expansion of data ingestion, indexing, and search capabilities as log volumes grow.
It requires some time to update, which affects real-time management.
With built-in redundancy across zones and regions, 99.9% uptime is achievable.
Splunk User Behavior Analytics is a one hundred percent stable solution.
Splunk User Behavior Analytics is highly stable and reliable, even in large-scale enterprise environments with high log injection rates.
I needed deep details and more thorough resources.
This integration aids in resolving problems and issues found in the network and enhances support with the GTAC team of Extreme Networks.
Global reach allows deployment of apps and services closer to users worldwide, but data sovereignty concerns exist and region selection must align with compliance requirements.
I encountered several issues while trying to create solutions for this advanced version, which seem unrelated to query or data issues.
High data ingestion costs can be an issue, especially for large enterprises, as Splunk charges based on the amount of data processed.
The licensing was a challenge due to budget constraints, and I used ExtremeCloud IQ without a license for a period.
Reserved instances with one or three-year commitments offer lower rates, providing up to 70% savings.
Compared to all other products in the market, it is the most expensive one in all aspects including professional service and licenses, even the cloud version.
Comparing with the competitors, it's a bit expensive.
For networking and access points, it acts as a controller in a cloud environment, eliminating the need for an appliance controller or wireless LAN controller, thus saving on investment and reducing TCO costs.
The automation and information provided by ExtremeCloud IQ, such as connection status and logs, were very beneficial.
I also utilize it for anomaly detection and behavior analysis, particularly using Splunk's machine learning environment.
The dashboards themselves are nice, very good, and very helpful, but the accuracy of the data or the information that will be presented on the dashboard is something that needs to be questioned.
Features like alerts and auto report generation are valuable.
| Product | Market Share (%) |
|---|---|
| Splunk User Behavior Analytics | 2.1% |
| ExtremeCloud IQ | 0.9% |
| Other | 97.0% |
| Company Size | Count |
|---|---|
| Small Business | 45 |
| Midsize Enterprise | 14 |
| Large Enterprise | 24 |
| Company Size | Count |
|---|---|
| Small Business | 7 |
| Midsize Enterprise | 5 |
| Large Enterprise | 12 |
ExtremeCloud is a resilient and scalable cloud-based network management solution offered by Extreme Networks as a subscription service.
The network is your platform of engagement for clients and staff. We have designed ExtremeCloud to provide superior user experience by empowering you and the applications that drive your business. The combination of Extreme Networks’ smart wired and wireless edges and the elasticity, resilience and scalability provided via state-of-the-art datacenters distributed strategically for worldwide availability allows you to respond to the changing needs of your business, at the speed of cloud, through a simple, multi-site aware user interface.
Splunk User Behavior Analytics is a behavior-based threat detection is based on machine learning methodologies that require no signatures or human analysis, enabling multi-entity behavior profiling and peer group analytics for users, devices, service accounts and applications. It detects insider threats and external attacks using out-of-the-box purpose-built that helps organizations find known, unknown and hidden threats, but extensible unsupervised machine learning (ML) algorithms, provides context around the threat via ML driven anomaly correlation and visual mapping of stitched anomalies over various phases of the attack lifecycle (Kill-Chain View). It uses a data science driven approach that produces actionable results with risk ratings and supporting evidence that increases SOC efficiency and supports bi-directional integration with Splunk Enterprise for data ingestion and correlation and with Splunk Enterprise Security for incident scoping, workflow management and automated response. The result is automated, accurate threat and anomaly detection.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
