Try our new research platform with insights from 80,000+ expert users

OpenText SiteScope vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

OpenText SiteScope
Average Rating
7.8
Reviews Sentiment
8.0
Number of Reviews
27
Ranking in other categories
Application Performance Monitoring (APM) and Observability (18th)
Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.6
Number of Reviews
315
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. OpenText SiteScope is designed for Application Performance Monitoring (APM) and Observability and holds a mindshare of 0.6%, up 0.4% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 9.4% mindshare, down 12.1% since last year.
Application Performance Monitoring (APM) and Observability
Security Information and Event Management (SIEM)
 

Featured Reviews

Gyanesh Rahatekar - PeerSpot reviewer
Achieve seamless incident response with valuable monitoring capabilities and reliable alerts
There are multiple features related to OpenText SiteScope monitoring that I have found to be very useful, such as SSL monitoring. If SSL is present as a file in a server, then OpenText SiteScope is a very effective tool to monitor when that certificate expires. It provides comprehensive information related to SSL certificates and log monitoring. If any kind of required keyword monitoring is present in the log file, OpenText SiteScope has excellent functionality for monitoring. It is very easy to configure and obtain the correct information related to end-user requirements. The agentless monitoring feature of OpenText SiteScope is particularly impressive and easy to configure and gather information from. According to the operations team perspective, there is no impact related to resource management from the agentless monitoring. It demonstrates very low resource consumption related to its functionality.
ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Instead of executing jobs multiple times, I can configure it once, schedule, and apply it on multiple servers in sequence. It allows me to create scripts and automate several processes, making tasks simpler and more efficient."
"The most valuable feature of SiteScope is its infrastructure monitoring."
"There's no agent you need installed on the servers. In our environment, we have some servers out of our control so we cannot manage them. We use SiteScope to monitor the availability, the resources on the servers, etc. This allows us to do this job without installing agents so there's no need to take care of anything on the server."
"I would rate the stability of OpenText SiteScope as excellent."
"The Monitor Templates functionality allowed us to spin up monitoring with .csv files pretty easily."
"Simplest tool for monitoring servers, web content, databases and other hardware. Its dashboard is really good."
"The product's ability to monitor systems and applications and send alerts and create support tickets are the most valuable features of the product."
"For the system environment, SiteScope can be useful."
"There are lots of free learning materials on their website."
"Splunk has significantly helped with aggregation and correlation of critical logs. Not having to grep on each individual server has made everyone more efficient."
"Splunk incorporates a lot of elements that help to reduce security risks. For it to reach certain compliance, we need to have some security insight. Splunk is a very good SIEM, it’s a top solution, but the best feature is its cost of visibility. We have all the most important features to detect vulnerabilities or risks."
"Splunk gives my clients the ability to bring multiple, disparate types of data together, then correlate and report on them."
"It has quite extensive support in terms of integration. If you want to do anything, there are tools for that."
"There are a lot of third-party applications that can be installed."
"The product is good, it satisfies our customers."
"I really like the user interface and how it works."
 

Cons

"We'd like a uniform interface for monitoring our system, since that's the purpose of SiteScope."
"The graphs and dashboard in the solution are areas that need improvement."
"Full application functionality available via the API. There are some functions you can perform managing monitors, that are only available through the UI."
"While working with OpenText, I noticed sometimes teams refuse intervention due to compliance issues."
"Direct integration with an SMS gateway for sending critical alerts to the support SME. This will help customer investing in third party middleware solutions for SMS."
"There is a need to enhance the reporting feature in OpenText SiteScope. Reporting related to performance information for historical data needs improvement to provide better reporting related to application availability and end node availability."
"I would be very interested in having transaction traceability included in the product, to give us a better view of what is really going wrong in a particular method and action."
"The tool needs to support new technologies like Kubernetes. It also needs to improve scalability."
"At Splunk .conf24, I saw a demo for Splunk Enterprise Security 8. All the things that they have done in Splunk Enterprise Security 8 are what it can be better at."
"There is a learning curve in order to start using machine learning. We have been trying to do it for three years, and we have not managed anything. It is too complex."
"We'd like Splunk to reduce false positives."
"I've never had too many issues with the stability. Years ago we had indexes crash but that was more on us. We didn't understand how to properly size Splunk."
"The pricing of Splunk Enterprise Security is not very affordable, and I have seen many companies planning to leave because of cost concerns."
"If you have to do your own stuff, such as customized charts, it is a little bit more work, but once you're familiar with the Splunk query language, you can pretty much do whatever you want. In terms of features, it should probably have the features that other competitors provide."
"Splunk could improve its default machine-learning models. Also, Splunk Enterprise's native threat intelligence isn't that good. I prefer a custom threat intelligence model."
"Splunk is query-based, which is not the case with most cybersecurity tools. It is based on search queries and can be difficult to use. It would be good if they can make it easier to understand how to create search queries. They can improve the knowledge base for better understanding. To create your dashboard, you need to have a search query. We have multiple firewalls in our company, and we need a dashboard for them. It would be helpful if a default firewall dashboard is included in Splunk to make monitoring easier. If a dashboard is available for a security device, the operation part will be more efficient. We won't have to follow a manual process for this."
 

Pricing and Cost Advice

"The product's pricing should be lower since there are many open-source products that can do the same job with better user interfaces. The tool's pricing is yearly and you need to pay for support."
"Licensing is a little steep."
"You have to pay for their "solution templates". Other tools do not charge you for knowledge-based monitoring bundles."
"SiteScope licensing can be node based-or monitor-based. I would recommend for node-based licensing."
"When Micro Focus Voltage SiteScope has introduced approximately eight years ago and there was not very much competition making the price high. However, when comparing the price of Micro Focus Voltage SiteScope now to other tools, they should reduce the price. It is similar to a legacy tool at this point."
"The pricing or licensing cost for Micro Focus SiteScope is often bundled with other things, so the cost for each individual would be difficult to calculate. Pricing could be $2,000,000 a year. My company pays for technical support because it's part of the contract with Micro Focus SiteScope. You buy the licenses, but you're also paying for the support. With Nagios, it's much more bare-bones as far as paying for licenses and the software itself, and my company didn't have to use as much Nagios support yet in one or two years because there weren't too many problems using Nagios, and it's much more cost-effective, so that's one of the reasons why my company is migrating to Nagios from Micro Focus SiteScope."
"It is expensive. I don't like its licensing. I don't like anything where you have to license it by individual licenses. I'm not a fan of that, but that's just me."
"Depending on your requirements, there are two licensing models available. A simple point model, or an endpoint model."
"Splunk licensing model might seem expensive but with all the gain in functionalities you will have compared to traditional SIEM solutions I think it’s worth the price."
"Splunk Enterprise becomes extremely expensive after the 20GB/month license."
"Splunk ES is quite expensive compared to some products on the market."
"Expensive compared to other options."
"The price of Splunk is too high for our market."
"It's a little bit expensive for a small to medium enterprise."
"Splunk is expensive based on our current requirements, but it's obviously worth what we pay."
"Splunk is definitely not a cheap solution. It is an expensive product."
report
Use our free recommendation engine to learn which Application Performance Monitoring (APM) and Observability solutions are best for your needs.
860,632 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
32%
Manufacturing Company
13%
Computer Software Company
11%
Government
5%
Computer Software Company
14%
Financial Services Firm
14%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Micro Focus Voltage SiteScope?
The most valuable feature of SiteScope is its infrastructure monitoring.
What is your experience regarding pricing and costs for Micro Focus Voltage SiteScope?
The licensing scheme for Micro Focus tools is reasonable, and more affordable. It's seen as medium or de-receivable.
What needs improvement with Micro Focus Voltage SiteScope?
Integration related to other applications with OpenText SiteScope is effective, as we are using both functionalities in our environment. The integration for other applications related to alerts and...
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Also Known As

Micro Focus SiteScope, HPE SiteScope, SiteScope
No data available
 

Overview

 

Sample Customers

Vodafone Ireland, Kuveyt Turk Participation Bank
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about OpenText SiteScope vs. Splunk Enterprise Security and other solutions. Updated: May 2023.
860,632 professionals have used our research since 2012.