Try our new research platform with insights from 80,000+ expert users

Google Cloud's operations suite (formerly Stackdriver) vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 6, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Google Cloud's operations s...
Ranking in Log Management
31st
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
10
Ranking in other categories
Application Performance Monitoring (APM) and Observability (26th), Cloud Monitoring Software (21st)
Splunk Enterprise Security
Ranking in Log Management
2nd
Average Rating
8.4
Reviews Sentiment
7.6
Number of Reviews
312
Ranking in other categories
Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

As of June 2025, in the Log Management category, the mindshare of Google Cloud's operations suite (formerly Stackdriver) is 0.6%, down from 0.9% compared to the previous year. The mindshare of Splunk Enterprise Security is 7.3%, down from 10.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Anand_Patel - PeerSpot reviewer
Offers reliable Ops Agent and logging transport feature with easy third-party integrations
As part of our company, we implemented several changes in our log analytics pattern, including the storage and procurement process. Earlier, before implementing the solution, our company was able to procure only one year of data, but later, we came to the three-year mark. Around 15-20% reduction has been witnessed in the total analytic consumption of our company. The aforementioned result was possible because the solution allowed the creation of a dashboard where factors like storage costs, proportion of logs, and logs presence in a storage bucket or BigQuery can all be checked. Earlier all logs were stored in a raw storage, but currently our company is able to move logs in table bucket that contributes towards cost savings.
ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Google's technical support is very good."
"We find the solution to be stable."
"It's easy to use."
"The cloud login enables us to get our logs from the different platforms that we currently use."
"The most valuable feature is the multi-cloud integration, where there is support for both GCP and AWS."
"Provides visibility into the performance uptime."
"I like the monitoring feature."
"Offers a valuable logging transport feature"
"The additional vendors we've brought on board, particularly the elastic, have been quite beneficial."
"The solution's most valuable feature is the aggregation of all the logs in one place, using enterprise securities built-in or ESCU use cases to find them."
"I like the search feature and the indexing. It's very fast and comprehensive."
"The client site login is pretty extensible and probably cost-effective."
"We primarily use it to correlate logs throughout the enterprise for both searching and use in investigations."
"Support is quick and competent."
"The most valuable feature of Splunk Enterprise Security is the threat intelligence integration because essentially having to go out and correlate all the data on our own becomes convoluted."
"The most valuable features include agility and Splunk Enterprise Security's ability to quickly search for alerted items, as well as the capacity to create custom alerts using the SQL language employed by Splunk."
 

Cons

"If I want to track any round-trip or breakdowns of my response times, I'm not able to get it. My request goes through various levels of the Google Cloud Platform (GCP) and comes back to my client machine. Suppose that my request has taken 10 seconds overall, so if I want to break it down, to see where the delay is happening within my architecture, I am not able to find that out using Stackdriver."
"It could be even more automated."
"Lacking sufficient operations documentation."
"The product provides minimal metrics that are insufficient."
"It could be more stable."
"The process of logging analytics can be improved"
"It is difficult to estimate in advance how much something is going to cost."
"While we are satisfied with the overall performance, in certain cases we must add additional metrics and additional tools like Grafana and Dynatrace."
"The licensing price is high and has room for improvement."
"While Splunkbase (the app repository) has a lot of great content, some apps are terribly old and could stand to be updated or purged."
"The price has room for improvement."
"I think the tech support response time could be a bit better. Sometimes I need to wait more than 24 hours for a response to my tickets."
"We had some connections issues with the solution at the beginning."
"For us, the area that Splunk Enterprise Security can improve is performance optimization."
"The solution's case management system could be further improved to make it easier for analysts to manage cases."
"The level of scalability depends on the license you have. You can expand or reduce it based on the environment. It does cost more money to scale, however."
 

Pricing and Cost Advice

"We have a basic standard license without any additional costs."
"The cost of using Stackdriver depends on usage."
"The cost could be lower."
"In addition to the licensing fee, there is also a support and maintenance charge."
"Splunk Enterprise Security is cheaper than competitors, but I do not know whether it is just our contract."
"It can be expensive, especially the licensing costs. However, there is added value in what it can do, not just log aggregation."
"Expensive compared to other options."
"Splunk licensing model might seem expensive but with all the gain in functionalities you will have compared to traditional SIEM solutions I think it’s worth the price."
"Further reductions would be fantastic, and I believe that more and more people would flock to it."
"Our customers often complain that the price of Splunk is too high."
"You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
856,873 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
20%
Computer Software Company
14%
Manufacturing Company
7%
Real Estate/Law Firm
6%
Financial Services Firm
15%
Computer Software Company
15%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What needs improvement with Google Stackdriver?
If the errors are caught early in the interface, it would be easier for users to manage. The process of logging analytics can be improved.
What is your primary use case for Google Stackdriver?
I use the solution for logging, defining alerts, and monitoring. Our company's Java and Python logging teams mainly use it.
What advice do you have for others considering Google Stackdriver?
The Ops Agent and logging transport feature of the solution have had a major impact on improving application performance. The solution also allows the transport of logs into log buckets, which is h...
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Also Known As

Google Stackdriver, Stackdriver Monitoring, Stackdriver Logging, Google Cloud Monitoring
No data available
 

Overview

 

Sample Customers

Uber, Batterii, Q42, Dovetail Games
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about Google Cloud's operations suite (formerly Stackdriver) vs. Splunk Enterprise Security and other solutions. Updated: June 2025.
856,873 professionals have used our research since 2012.