• Home
  • Palo Alto Networks Advanced Threat Prevention vs. Splunk User Behavior Analytics

Palo Alto Networks Advanced Threat Prevention vs Splunk User Behavior Analytics comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Palo Alto Networks Advanced Threat Prevention vs. Splunk User Behavior Analytics
March 2024
Executive Summary

We performed a comparison between Palo Alto Networks Advanced Threat Prevention and Splunk User Behavior Analytics based on real PeerSpot user reviews.

Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Palo Alto Networks Advanced Threat Prevention vs. Splunk User Behavior Analytics Report (Updated: March 2024).
Download the complete report
768,415 professionals have used our research since 2012.
Featured Review
Carlos Bracamonte
Robust, reliable, simple to install and good technical support
We did implement a security policy, but not with Palo Alto; instead, we used Cisco. And we created the rules with a single credit fund from us. To... Read more →
Genrlmgr67
Easy to configure and easy to use solution that integrates with many applications and scripts
It is a great product because it is intelligent and does everything for us. We have a LAN (Local Area Network) and sensitive, classified data and... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The application control and vulnerability protection are the most valuable features.""The most valuable feature of Palo Alto Threat Prevention for our company is the next generation firewall.""Most of the features of Palo Alto Threat Prevention are alright. I recommend features like content filtering, IP address, & intelligent firewalls. The reporting feature is very good.""The most valuable features are the simplicity, transparency, and overall ease of management.""I find the malware protection very handy.""It is a stable product.""I like the solution's interface.""The most valuable features are that it's user-friendly, has interesting features, URL filtering, and threat prevention."

More Palo Alto Networks Advanced Threat Prevention Pros →

"The most valuable feature is being able to take data and put it into other systems so that we could see the output, and to see where we need to apply our focus.""The solution is fast, flexible, and easy to use.""It is a solution that helps test and measure customer satisfaction.""It's easily scalable.""The solution appears to be stable, although we haven't used it heavily.""The most valuable feature is the ability to search through a large amount of data.""The most valuable features are the indexing and powerful search features.""The most valuable features are its data aggregation and the ability to automatically identify a number of threats, then suggest recommended actions upon them."

More Splunk User Behavior Analytics Pros →

Cons
"In terms of what needs improvement, the only thing I don't like is the support.""I think they can use some improvement on FID.""In Africa, the technical support is probably not as good as in Europe and the USA because it's a specific premium support, partner-enabled premium support and all of that. But it's really good, I don't really have any complaints, it's fairly good. I'll give them 80%.""Right now we are focusing on email. If Palo Alto can increase the features related to email filtering and the new malware, it would help us protect our systems.""Palo Alto's maintenance needs to be improved.""The initial setup is complex.""The application’s pricing and dashboard need improvement. It could be user-friendly.""The price of licenses should be lowered to make it less costly to scale our solution."

More Palo Alto Networks Advanced Threat Prevention Cons →

"It could be easier to scale the solution if you are using it on-premise, not in the cloud.""We want to have an automated system for bot hunting that enables us to detect anomalies predictively based on historical data. It would be helpful if Splunk included process mining as an alternative option. We have a threat workflow, but it would be useful if we could supplement that with some process mining capabilities over time.""In the future I would like to see simplified statistics and analytical threats.""The solution is much more expensive than relative competitors like ArcSight or LogRhythm. It makes it hard to sell to customers sometimes.""If the price was lowered and the setup process was less complex, I would consider rating it higher.""The correlation engine should have persistent and definable rules.""The initial setup was complex because some of the configurations that we required needed customization.""We'd like the ability to do custom searches."

More Splunk User Behavior Analytics Cons →

Pricing and Cost Advice
  • "The pricing and the licensing are pretty competitive at this stage. As a reseller, I would like to see the price come down a little bit so I can compete better against other firewalls because we do that all the time."
  • "It's not too expensive."
  • "It is an expensive solution and I would like to see a drop in price."
  • "If you want to have all of the good features then you have to pay extra for licensing."
  • "The pricing has improved with the newer generation of their Firewalls, but the price could always be lower."
  • "The pricing could be lower."
  • "Palo Alto Networks Threat Prevention could improve by having consistent pricing at system levels."
  • "The cost involves the price of the hardware, which is expensive. However, most of the Palo Alto solutions are expensive."

    • More Palo Alto Networks Advanced Threat Prevention Pricing and Cost Advice →

  • "I hope we can increase the free license to be more than 5 gig a day. This would help people who want to introduce a POC or a demo license for the solution."
  • "My biggest complaint is the way they do pricing... You can never know the pricing for next year. Every single time you adjust to something new, the price goes up. It's impossible to truly budget for it. It goes up constantly."
  • "There are additional costs associated with the integrator."
  • "The licensing costs is around 10,000 dollars."
  • "Pricing varies based on the packages you choose and the volume of your usage."
  • "I am not aware of the price, but it is expensive."

    • More Splunk User Behavior Analytics Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
    See Recommendations
    768,415 professionals have used our research since 2012.
    Questions from the Community
    Which is the best DDoS protection solution for a big ISP for monitoring a...
    Top Answer:Arbor would be the best bid, apart from Arbor, Palo Alto and Fortinet have good solutions. As this is an ISP, I would prefer Arbor.
    Read all 8 answers   →
    What do you like most about Palo Alto Networks Threat Prevention?
    Top Answer:It is a stable product.
    Read all 21 answers   →
    What is your experience regarding pricing and costs for Palo Alto Network...
    Top Answer:The solution comes with a license.
    Read all 18 answers   →
    What do you like most about Splunk User Behavior Analytics?
    Top Answer:We are really pleased with Splunk and its features. It would be practically impossible to function without it To provide a general overview of the system, it's important to note that the standard… more »
    Read all 16 answers   →
    What is your experience regarding pricing and costs for Splunk User Behav...
    Top Answer:I am not aware of the price, but it is expensive. A rough estimate would be around 150 gigabytes, given the huge amount of data. At the moment there are no additional costs for maintenance.
    Read all 12 answers   →
    What needs improvement with Splunk User Behavior Analytics?
    Top Answer:Currently, we do not have any specific improvement projects in progress. However, we have partnered with some companies that are constantly working on improving the system. Therefore, I believe it's… more »
    Read all 16 answers   →
    Ranking
    6th
    out of 42 in Intrusion Detection and Prevention Software (IDPS)
    Views
    4,278
    Comparisons
    3,183
    Reviews
    8
    Average Words per Review
    396
    Rating
    8.6
    12th
    out of 42 in Intrusion Detection and Prevention Software (IDPS)
    Views
    1,934
    Comparisons
    1,231
    Reviews
    5
    Average Words per Review
    374
    Rating
    8.6
    Comparisons
    Also Known As
    Caspida, Splunk UBA
    Learn More
    Palo Alto Networks
    Splunk
    Video Not Available
    Overview

    Palo Alto Networks Advanced Threat Prevention is a cloud-based security service that combines cutting-edge technologies, including machine learning, artificial intelligence, and expert human monitoring, to effectively thwart advanced threats like malware, zero-day attacks, and command-and-control threats. It offers inline protection, scrutinizing all network traffic irrespective of port, protocol, or encryption. An integral component of Palo Alto Networks' security platform, it enjoys widespread adoption across diverse organizations. With its robust security capabilities, it's an ideal choice for entities of all sizes, particularly those in high-risk sectors such as finance, healthcare, and government agencies, seeking to safeguard their networks from a broad spectrum of advanced threats.

    Splunk User Behavior Analytics is a behavior-based threat detection is based on machine learning methodologies that require no signatures or human analysis, enabling multi-entity behavior profiling and peer group analytics for users, devices, service accounts and applications. It detects insider threats and external attacks using out-of-the-box purpose-built that helps organizations find known, unknown and hidden threats, but extensible unsupervised machine learning (ML) algorithms, provides context around the threat via ML driven anomaly correlation and visual mapping of stitched anomalies over various phases of the attack lifecycle (Kill-Chain View). It uses a data science driven approach that produces actionable results with risk ratings and supporting evidence that increases SOC efficiency and supports bi-directional integration with Splunk Enterprise for data ingestion and correlation and with Splunk Enterprise Security for incident scoping, workflow management and automated response. The result is automated, accurate threat and anomaly detection.

    Sample Customers
    University of Arkansas, JBG SMITH, SkiStar AB, TRI-AD, Temple University, Telkom Indonesia
    8 Securities, AAA Western, AdvancedMD, Amaya, Cerner Corporation, CJ O Shopping, CloudShare, Crossroads Foundation, 7-Eleven Indonesia
    Top Industries
    REVIEWERS
    Financial Services Firm27%
    Comms Service Provider27%
    Computer Software Company13%
    Aerospace/Defense Firm7%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Financial Services Firm9%
    Government8%
    Manufacturing Company8%
    REVIEWERS
    Financial Services Firm44%
    Insurance Company11%
    Government11%
    Security Firm11%
    VISITORS READING REVIEWS
    Computer Software Company14%
    Financial Services Firm14%
    Government10%
    Manufacturing Company8%
    Company Size
    REVIEWERS
    Small Business23%
    Midsize Enterprise18%
    Large Enterprise59%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise18%
    Large Enterprise61%
    REVIEWERS
    Small Business31%
    Midsize Enterprise31%
    Large Enterprise38%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise12%
    Large Enterprise69%
    Buyer's Guide
    Palo Alto Networks Advanced Threat Prevention vs. Splunk User Behavior Analytics
    March 2024
    Free Report: Palo Alto Networks Advanced Threat Prevention vs. Splunk User Behavior Analytics
    Find out what your peers are saying about Palo Alto Networks Advanced Threat Prevention vs. Splunk User Behavior Analytics and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    768,415 professionals have used our research since 2012.

    Palo Alto Networks Advanced Threat Prevention is ranked 6th in Intrusion Detection and Prevention Software (IDPS) with 24 reviews while Splunk User Behavior Analytics is ranked 12th in Intrusion Detection and Prevention Software (IDPS) with 17 reviews. Palo Alto Networks Advanced Threat Prevention is rated 8.8, while Splunk User Behavior Analytics is rated 8.2. The top reviewer of Palo Alto Networks Advanced Threat Prevention writes "A good amount of granularity and advanced URL filtering capabilities". On the other hand, the top reviewer of Splunk User Behavior Analytics writes "Easy to configure and easy to use solution that integrates with many applications and scripts ". Palo Alto Networks Advanced Threat Prevention is most compared with Check Point IPS, Fortinet FortiGate IPS, Arista NDR, Forcepoint Next Generation Firewall and Rapid7 InsightIDR, whereas Splunk User Behavior Analytics is most compared with Darktrace, Microsoft Defender for Identity, IBM Security QRadar, Varonis Datalert and Weka. See our Palo Alto Networks Advanced Threat Prevention vs. Splunk User Behavior Analytics report.

    See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.

    We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.