IBM Cloud Pak for Security vs Splunk SOAR comparison

The compared IBM and Splunk solutions aren't in the same category. IBM is ranked #31 in CDCS , and holds a 0.0% mindshare in the category. Splunk is ranked #3 in SOAR , with an average rating of 8.4, and holds a 7.7% mindshare. Additionally, 86% of Splunk users are willing to recommend the solution.

IBM Cloud Pak for Security

Read 1 IBM Cloud Pak for Security review

230 Views
35 Comparison Views

0% willing to recommend

Splunk SOAR

Read 47 Splunk SOAR reviews

4,844 Views
3,633 Comparison Views

86% willing to recommend

IBM Cloud Pak for Security

Splunk SOAR

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between IBM Cloud Pak for Security and Splunk SOAR based on real PeerSpot user reviews.

Find out what your peers are saying about Akamai, SentinelOne, VMware and others in Cloud and Data Center Security.

To learn more, read our detailed Cloud and Data Center Security Report (Updated: September 2025).

Buyer's Guide

Cloud and Data Center Security

September 2025

Download the complete report

Helped 867,497 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

IBM Cloud Pak for Security

Average Rating

0.0

Number of Reviews

Ranking in other categories

Cloud and Data Center Security (31st)

Splunk SOAR

Average Rating

8.0

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Security Orchestration Automation and Response (SOAR) (3rd)

Mindshare comparison

IBM Cloud Pak for Security and Splunk SOAR aren’t in the same category and serve different purposes. IBM Cloud Pak for Security is designed for Cloud and Data Center Security and holds a mindshare of 0.0%, down 0.2% compared to last year.
Splunk SOAR, on the other hand, focuses on Security Orchestration Automation and Response (SOAR), holds 7.7% mindshare, down 8.2% since last year.

Cloud and Data Center Security Market Share Distribution
Product	Market Share (%)
IBM Cloud Pak for Security	0.0%
Illumio	23.4%
Akamai Guardicore Segmentation	22.2%
Other	54.400000000000006%

Cloud and Data Center Security

Security Orchestration Automation and Response (SOAR) Market Share Distribution
Product	Market Share (%)
Splunk SOAR	7.7%
Microsoft Sentinel	16.3%
Palo Alto Networks Cortex XSOAR	9.7%
Other	66.3%

Security Orchestration Automation and Response (SOAR)

Featured Reviews

reviewer1907040

IBM Security Product Manager at a tech services company with 201-500 employees

Great user-friendly interface; provides many functionalities and many free applications

The interface is good and very user-friendly, it's easy for our customers to use. Cloud Pak provides a lot of functionalities and many free applications available from the online shop which can be deployed to your system. It allows for an increase in functionalities even if you've bought the smallest installation.

Read full review

Mack Scott

Cyber Security Network Security Engineer at Cirrus Logic

Improves response time by consolidating tools and automating threat detection

I haven't gone too far into it to see anything that needs improvement yet. We can likely include some features related to the integration with on-premises resources, rather than focusing solely on the existing automation. These are the additional features that could be included in the future. Splunk's Unified Platform does help consolidate networking security and IT observability tools. They should integrate Splunk Enterprise Security better into Splunk Cloud.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The interface is good and very user-friendly."

"Splunk SOAR's quick response to incidents is the most valuable part."

"The solution allows us to customize playbooks and incorporate custom code, allowing us to drag and drop elements while still writing code to build the integrations we need."

"Very flexible integration with other tools"

"Splunk SOAR has made a huge impact across security operations and the business overall."

"It has definitely saved a decent amount of time for our analysts so they can focus on other tasks."

"I like the way Splunk interacts with various systems via the API. The ability to integrate Splunk with our ticketing system has been an immense help because we can maintain our workflow while blending Splunk with our support desk and other ways that we track work."

"It's pretty easy when it comes to setting up assets. If you want to fetch emails or call a REST API, you can set up an asset and grab that information."

"The customization continues to be excellent."

More Splunk SOAR pros

Cons

"Lacks sufficient technical support."

"The dashboard could be improved and some other features. SOAR should integrate network capabilities, allowing us to also monitor the WLAN network. Splunk is also expensive and difficult for beginners to learn. It's hard for a new user to figure out how to visualize old threat data. It took two to three months to learn with hands-on experience how to use the dashboard, visualize events, and analyze threats."

"There is a lot of room for improvement with the UI."

"The algorithm and machine learning have room for improvement and can be more user-friendly."

"The pricing could be a bit more reasonable. It would be great if it were feasible for smaller organizations."

"And most of the challenges that I have faced with the solution can be found in the documentation itself."

"It would be ideal for us if Splunk SOAR could integrate with Teams."

"SOAR is probably the most unreliable product Splunk has and that's because most of it is content driven from what you put into it. There are certain parts of it that have a little bit of difficulty at volume too. It's always changing. There is new stuff coming out for it that's going to make it a little bit better, but it does have some drawbacks."

"I haven't used it fully, but based on my usage, I could not find simulation tools and features. It currently lacks simulation features, which are important for me for creating a playbook. It is also very expensive for my region."

More Splunk SOAR cons

Pricing and Cost Advice

Information not available

"Splunk SOAR is more expensive compared to other options for SOAR."

"It's very overpriced because it is based on the number of users. There is no bulk licensing."

"The tool is not cheap."

"Splunk SOAR is an expensive solution for an organization of our size."

"While I can't confirm the exact pricing, some colleagues have mentioned that Splunk SOAR may be on the costlier side."

"When we first purchased our Splunk SOAR license, it was based on an event-count model. It was based on the number of events. I had strong opinions at the time that automation should not be stifled by the amount of automation you can accomplish, so the previous structure was not as beneficial for us. Later that year, we got told or saw at a conference that they announced user-based pricing. We are now in a renewal period, so we migrated to a user-based license model, which is more appropriate for us so that we no longer have to worry about stifling our automation based on the quantity."

"We renewed it this year. This year was the first time there was a dramatic increase in the price. It was kind of non-negotiable. It was just a high increase. We had internal communications, and it was definitely a surprise to us. In a short time frame, we renewed it this year. Prices are going up everywhere, but they are not always justifiable, at least not to our eyes. The pricing this year was definitely a big shock."

"Splunk is a fast enterprise tool, but it costs too much. At the same time, it's worth what we pay, in my opinion. We can efficiently perform all the functions and tie together the data. It's the perfect tool for our needs."

More Splunk SOAR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud and Data Center Security solutions are best for your needs.

See recommendations

867,497 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

No data available

Computer Software Company

12%

Financial Services Firm

12%

Manufacturing Company

11%

University

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

By reviewers
Company Size	Count
Small Business	11
Midsize Enterprise	7
Large Enterprise	28

Questions from the Community

Ask a question

Earn 20 points

What do you like most about Splunk Phantom?

Splunk SOAR's quick response to incidents is the most valuable part.

See all answers

What is your experience regarding pricing and costs for Splunk Phantom?

The solution is free for us, which is a beneficial aspect.

See all answers

What needs improvement with Splunk Phantom?

It would be nice if we could put it on other search heads, not just Enterprise Security. We have an ad hoc search head, and compatibility with that would be beneficial. More training classes from S...

See all answers

Comparisons

IBM Security QRadar vs IBM Cloud Pak for Security

Compared 100% of the time

More IBM Cloud Pak for Security Competitors

Palo Alto Networks Cortex XSOAR vs Splunk SOAR

Compared 19% of the time

Cortex XSIAM vs Splunk SOAR

Compared 13% of the time

Fortinet FortiSOAR vs Splunk SOAR

Compared 11% of the time

ServiceNow Security Operations vs Splunk SOAR

Compared 9% of the time

Tines vs Splunk SOAR

Compared 9% of the time

More Splunk SOAR Competitors

Product Reports

Buyer's Guide

Cloud and Data Center Security

September 2025

Download IBM Cloud Pak for Security product report

Buyer's Guide

Splunk SOAR

August 2025

Download Splunk SOAR product report

Also Known As

No data available

Phantom

Overview

IBM Cloud Pak for Security is comprised of containerized software pre-integrated with Red Hat OpenShift. The platform connects to your existing security tools – and through the use of open standards – allows you to search for threat indicators across your hybrid, multicloud environment.

IBM

Splunk SOAR offers features like automation and orchestration of manual tasks, speeding up work, detection and response to advanced and emerging threats.

Go from overwhelmed to in-control

Automate manual tasks. Address every alert, every day. Establish repeatable procedures that allow security analysts to stop being reactive and focus on mission-critical objectives to protect your business.

Force multiply your team

Orchestrate and automate repetitive tasks, investigation and response to increase efficiency and productivity, and do more with the people you already have. Make a team of three feel like a team of 10.

From 30 minutes to 30 seconds

Work faster with Splunk SOAR. Respond to threats in seconds. Lower your mean time to respond (MTTR) by automating security tasks and workflows across all of your security tools.

End-to-end security operations made easy

Take advantage of Splunk Enterprise Security and Splunk SOAR joining forces to provide a seamless and intuitive SecOps platform to prevent, detect and respond to advanced and emerging threats.

Splunk

Sample Customers

Information Not Available

Recorded Future, Blackstone

Buyer's Guide

Cloud and Data Center Security

September 2025

Download Free Report

Find out what your peers are saying about Akamai, SentinelOne, VMware and others in Cloud and Data Center Security. Updated: September 2025.

DOWNLOAD NOW

867,497 professionals have used our research since 2012.

We monitor all Cloud and Data Center Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.