No more typing reviews! Try our Samantha, our new voice AI agent.

Panther vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jan 25, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Panther
Ranking in Security Information and Event Management (SIEM)
35th
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
3
Ranking in other categories
AI Data Analysis (31st)
Splunk Enterprise Security
Ranking in Security Information and Event Management (SIEM)
1st
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
405
Ranking in other categories
Log Management (1st), IT Operations Analytics (1st)
 

Mindshare comparison

As of July 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Panther is 0.9%, up from 0.3% compared to the previous year. The mindshare of Splunk Enterprise Security is 7.3%, down from 9.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Splunk Enterprise Security7.3%
Panther0.9%
Other91.8%
Security Information and Event Management (SIEM)
 

Featured Reviews

Narendran Nair - PeerSpot reviewer
Product Security Engineer at Infoblox
AI triage has streamlined real-time alert monitoring and has improved on-call incident response
The best features Panther offers are AI Triage, the ability to comment on our activities, and seamless integration with other communication sources such as PagerDuty, Microsoft Teams, and potentially Slack, showcasing the flexibility we have in using this tool. The most valuable feature for my team is definitely AI Triage, which helps save a lot of time by eliminating the need for manual research regarding patterns that may be repeated, making our work easier and more efficient. Panther has positively impacted my organization as it serves as one of the main sources for triaging real-time incidents. Panther definitely plays a key role in the work that we do. Specific outcomes that show how Panther has helped our organization include saving a lot of time, especially since the AI Triage feature reduces the necessity to reach out to others for clarity, which it occasionally accomplishes on its own. To be honest, it does lack some aspects. For example, if it could access our organizational knowledge, including the Jira database, it might better analyze incidents and determine whether they are false positives or not by using more contextual data.
Sathis-Kumar - PeerSpot reviewer
Senior Manager at Bank of America
Helps us detect cyber threats quickly and integrate multiple feeds effectively
Overall, the product is good, but when it comes to some infrastructure issues, we have to dig into more logs. There is no straightforward indication of an issue. Health check kind of dashboards are not available. More AI would help us, and more optimization, since security products run more queries. The AI module could suggest solutions, optimizing queries or workload balancing. If the product itself advises on running queries during peak times, it would be similar to what ChatGPT currently offers. We see quite a few issues on stability. Even last week, we faced something, and identifying bottlenecks is not easy. We need more SMEs, and there is no mechanism to tell us about indexer or search head issues. Self-monitoring dashboards could be beneficial. The technical support still requires more improvement. Often, primary support takes a lot of time and forwards most solutions to the engineering side. The primary support team has very limited knowledge to provide.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I find Panther's detection capabilities and integrations to be highly valuable."
"The AI Triage feature saves a considerable amount of time, and if it were to incorporate organizational knowledge, it could provide finer-tuned results."
"We have seen a return on investment measured primarily through SOC efficiency and productivity improvements, with teams observing a twenty to thirty-five percent improvement in investigation efficiency depending on the environment and product maturity."
"The features I appreciate the most in Splunk Enterprise Security are the scheduled alerts and the search function."
"It is easy to use in any environment."
"The feature I appreciate the most about Splunk Enterprise Security is Search Processing Language, which has benefited my organization by making searching data a lot easier than other tools I've used."
"The most valuable feature of Splunk Enterprise Security is the comprehensive logging capabilities it provides."
"Splunk gives my clients the ability to bring multiple, disparate types of data together, then correlate and report on them."
"The product provides visibility and enables us to correlate data and generate alerts."
"The risk-based alerting (RBA) is one of the valuable features."
"Splunk has a wide range of features that customers use to find and analyze all kinds of logs."
 

Cons

"The solution could be improved by providing more built-in integrations, which would reduce the need for me to build them myself."
"Regarding Panther's accuracy and reliability of output, I would rate it at 70 percent since, at times, it identifies findings as valid when they may actually be false positives, which we have experienced in a few cases."
"Given the ever-increasing number of threats, I would like Splunk to update its threat signatures more frequently."
"Splunk should have more regional data centers in the Middle East."
"The integration with all our tool sets felt like we were reinventing the wheel, which was a pain point for us."
"The product was difficult to back up the first time."
"I would like to see the asset and identity lookups be more automatic and less manual."
"The main dislikes about Splunk Enterprise Security are that we need more highly skilled people and the license for Splunk Enterprise Security is costly."
"The solution is expensive."
"The ingestion happens quickly, so you can run up the data costs if you use the default settings. It isn't a problem for government agencies in the Saudi market, but many of the corporations in India are small or medium-sized enterprises that cannot afford that kind of ingestion system."
 

Pricing and Cost Advice

Information not available
"The price can always be lower, but it is fair at the moment. The cost efficiencies depend on the licensing and how much data we are bringing in. We have a fairly large footprint, so it is cost-effective."
"I would highly recommend anyone evaluating this option to download the free trial which allows for the ingestion of 500MB of data per day in order to get a feel for what Splunk does at its core. It will get pricey once your ingestion rates start to sky rocket, but I would consider it expensive given the amount of information that it allows you to analyze and react on straight out-of-the-box."
"Splunk can be expensive, as its licensing is based on the daily data ingestion volume."
"It is pretty straightforward and based on the sizing. If I compare it with other competitors, it makes sense."
"I think the price could be improved."
"The price of Splunk Enterprise Security is high."
"It is a bit costly."
"Splunk has always been on the expensive side."
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Comparison Review

VS
Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Manufacturing Company
16%
Construction Company
15%
Financial Services Firm
8%
Healthcare Company
6%
Financial Services Firm
14%
Manufacturing Company
9%
Computer Software Company
8%
Construction Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business125
Midsize Enterprise61
Large Enterprise279
 

Questions from the Community

What is your experience regarding pricing and costs for Panther?
I am not aware of the pricing, setup cost, and licensing details, as I handle the usage of Panther and not the setup process.
What needs improvement with Panther?
Panther could be improved by adding a feature that allows it to access organizational data, which would help produce better-tuned outputs with fewer false positives and alerts, making our jobs easi...
What is your primary use case for Panther?
My main use case for Panther is real-time monitoring of alerts, where we triage incidents that occur for our on-call duties. Panther is one of the major sources from which we receive alerts in real...
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Overview

 

Sample Customers

Docker, Loom, Discord, Dropbox, HubSpot, Asana, GoFundMe, Zapier, Benchling, JupiterOne, Jumio, Bitstamp, Intercom, Randori, and Cedar
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about Panther vs. Splunk Enterprise Security and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.