Splunk User Behavior Analytics and ManageEngine Log360 compete in the user behavior analytics and log management category. ManageEngine Log360 appears to have the upper hand due to better features and cost-effectiveness, despite Splunk's higher satisfaction with pricing and support.
Features: Splunk User Behavior Analytics offers powerful search capabilities, integration flexibility, and automation for diverse use cases. ManageEngine Log360 provides a comprehensive dashboard view, easy integration, and robust threat detection with real-time security management.
Room for Improvement: Splunk User Behavior Analytics could improve its pricing model, expand device compatibility, and simplify user interfaces. ManageEngine Log360 should enhance reporting speed, expand AI features, and improve stability during on-premises deployment.
Ease of Deployment and Customer Service: Splunk supports both on-premises and public cloud platforms and receives positive feedback for professional support. ManageEngine Log360 is predominantly on-premises with hybrid cloud potential but needs improvements in support response times.
Pricing and ROI: Splunk is considered expensive with varied licensing options but offers productivity gains leading to improved ROI. ManageEngine Log360 provides more predictable and economical pricing with good ROI in staff productivity and cost savings.
The solution can save costs by improving incident resolution times and reducing security incident costs.
Mission-critical offering a dedicated team, proactive monitoring, and fast resolution.
Splunk's technical support is amazing.
I would rate the support at eight, meaning there's some room for improvement.
Splunk User Behavior Analytics is highly scalable, designed for enterprise scalability, allowing expansion of data ingestion, indexing, and search capabilities as log volumes grow.
Splunk User Behavior Analytics is a one hundred percent stable solution.
Splunk User Behavior Analytics is highly stable and reliable, even in large-scale enterprise environments with high log injection rates.
Sometimes issues occur when handling long-term data.
High data ingestion costs can be an issue, especially for large enterprises, as Splunk charges based on the amount of data processed.
I encountered several issues while trying to create solutions for this advanced version, which seem unrelated to query or data issues.
Advanced reporting could see enhancements as there are some issues with latency.
The pricing is based on the amount of data processed, and it is considered a high-level investment for enterprises.
Comparing with the competitors, it's a bit expensive.
I also utilize it for anomaly detection and behavior analysis, particularly using Splunk's machine learning environment.
It correlates all the historical data, compares the upcoming behavior with what's already stored in the platform, and reduces false positives.
It is highly scalable and stable, even in large-scale enterprise environments.
Log360 is your one-stop solution for all log management and network security challenges. It is an integrated solution that combines EventLog Analyzer and ADAudit Plus into a single console to help you manage your Active Directory auditing and network security easily.
Splunk User Behavior Analytics is a behavior-based threat detection is based on machine learning methodologies that require no signatures or human analysis, enabling multi-entity behavior profiling and peer group analytics for users, devices, service accounts and applications. It detects insider threats and external attacks using out-of-the-box purpose-built that helps organizations find known, unknown and hidden threats, but extensible unsupervised machine learning (ML) algorithms, provides context around the threat via ML driven anomaly correlation and visual mapping of stitched anomalies over various phases of the attack lifecycle (Kill-Chain View). It uses a data science driven approach that produces actionable results with risk ratings and supporting evidence that increases SOC efficiency and supports bi-directional integration with Splunk Enterprise for data ingestion and correlation and with Splunk Enterprise Security for incident scoping, workflow management and automated response. The result is automated, accurate threat and anomaly detection.
We monitor all User Entity Behavior Analytics (UEBA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
