Singularity Platform vs Splunk Enterprise Security comparison

SentinelOne and Splunk are both solutions in the Security Information and Event Management (SIEM) category. SentinelOne is ranked #37 with an average rating of 8.3, while Splunk is ranked #1 with an average rating of 8.3. SentinelOne holds a 0.4% mindshare in SIEM, compared to Splunk’s 7.2% mindshare. Additionally, 100% of SentinelOne users are willing to recommend the solution, compared to 94% of Splunk users who would recommend it.

Singularity Platform

Read 9 Singularity Platform reviews

677 Views
575 Comparison Views

100% willing to recommend

Splunk Enterprise Security

Read 380 Splunk Enterprise Security reviews

27,630 Views
14,920 Comparison Views

94% willing to recommend

Singularity Platform

Splunk Enterprise Security

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Singularity Platform and Splunk Enterprise Security based on real PeerSpot user reviews.

Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Singularity Platform vs. Splunk Enterprise Security Report (Updated: February 2026).

Buyer's Guide

Singularity Platform vs. Splunk Enterprise Security

February 2026

Download the complete report

Helped 883,546 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Singularity Platform

Ranking in Security Information and Event Management (SIEM)

37th

Average Rating

8.6

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

AI-Powered Cybersecurity Platforms (12th)

Splunk Enterprise Security

Ranking in Security Information and Event Management (SIEM)

1st

Average Rating

8.4

Reviews Sentiment

7.3

Number of Reviews

380

Ranking in other categories

Log Management (2nd), IT Operations Analytics (1st)

Mindshare comparison

As of March 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Singularity Platform is 0.4%, up from 0.0% compared to the previous year. The mindshare of Splunk Enterprise Security is 7.2%, down from 9.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM) Mindshare Distribution
Product	Mindshare (%)
Splunk Enterprise Security	7.2%
Singularity Platform	0.4%
Other	92.4%

Security Information and Event Management (SIEM)

Featured Reviews

Akash Das Barman

Cyber Security Mentor and trainee at DataSpace Academy

Log analysis has become faster and more accurate, enabling precise threat detection

Regarding areas for improvement in Singularity Platform, I would say the data security posture and control over sensitive information could be enhanced. If the control were more robust, then it would be better. For instance, when I analyze a log using Singularity Platform, the logs I see are clear, but if they were more descriptive, it would be much better. For example, when I find a log suspicious, if it automatically points out that a particular point in the log at a specific timing or frame is looking malicious, it would be easier for me. I would not have to go through many logs to find this information.

Read full review

reviewer1469784

Senior Manager at a financial services firm with 10,001+ employees

Helps us detect cyber threats quickly and integrate multiple feeds effectively

Overall, the product is good, but when it comes to some infrastructure issues, we have to dig into more logs. There is no straightforward indication of an issue. Health check kind of dashboards are not available. More AI would help us, and more optimization, since security products run more queries. The AI module could suggest solutions, optimizing queries or workload balancing. If the product itself advises on running queries during peak times, it would be similar to what ChatGPT currently offers. We see quite a few issues on stability. Even last week, we faced something, and identifying bottlenecks is not easy. We need more SMEs, and there is no mechanism to tell us about indexer or search head issues. Self-monitoring dashboards could be beneficial. The technical support still requires more improvement. Often, primary support takes a lot of time and forwards most solutions to the engineering side. The primary support team has very limited knowledge to provide.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"During the time of attacks, if there is any data loss, we were able to easily roll back those attacks and retrieve that data for the client with a single click."

"The best features I and my clients like the most about Singularity Platform are that, first of all, it's easy to handle, it doesn't take a lot of time to get into, there's no real obscurity, it takes a load of work from the team, and in most cases, you can literally just configure it once and leave it running until something comes up, and it will just work."

"I have tried some paid tools, but I have found that Singularity Platform is far better than others, and as a log analyst and SOC analyst, I find it better than others."

"Singularity Platform's best features are its scheduled reports and its automated end-of-day business capabilities, which allow any activities that occur projected or expected to come in overnight without manual intervention."

"Singularity Platform allows us to have one single view of potential threats and the health of our environment, helping us optimize operational efficiency."

"Singularity Platform's functionality for ransomware rollback is quite useful because if you have a ransomware attack, most EDR solutions do not have the feature to do a rollback and bring the system to its earlier state, but that is one of the unique features that Singularity Platform has which can be a game changer for customers."

"Singularity Platform's real-time personalization feature has helped our customer experience strategies by allowing us to have different workspaces where we have custom views, and depending on the use case because we have many products that use Singularity Platform, they interact with the UI in different ways, producing different elements and giving us tailored views for different products."

"I believe Singularity Platform is perfectly fine overall."

More Singularity Platform pros

"Splunk Enterprise Security helped us with faster detection of threats."

"The risk-based alerting is excellent."

"Its search is very flexible, allowing you to search anything by typing a sentence."

"Splunk has significantly reduced the time in performing the task of aggregating logs, reviewing as well as time spent during investigations."

"We have created a few custom use cases for Splunk that have helped us detect threats faster. For example, we set up endpoint-related data models and specialized setups for various scenarios. It's more efficient than some other products I've used."

"Search language is easy to understand and teach to new users."

"The best feature I've seen is the ability to easily change the query based on the dashboard or based on the chart we have to create, allowing any value or metric we want to add to that particular chart while keeping the rest of the dashboard settings intact."

"You can check up on security from the dashboards."

More Splunk Enterprise Security pros

Cons

"Technical support from SentinelOne is somewhat dependent on the engineer you are assigned. Some TAC cases are solved in a good time, but some cases faced challenges because the engineer was not competent or was not able to understand the issue or take it to its logical conclusion."

"From an operational perspective, the customizable dashboards are easy to use, but I face concerns with the alerts from the email ticketing system."

"The first thing I would say about the negative side of Singularity Platform is that it lacks some customization and integrations compared to competitors."

"The dashboards can be improved, and their dashboarding functionality needs to be better. The way the dashboards look is not really impactful or meaningful."

"Regarding areas for improvement in Singularity Platform, I would say the data security posture and control over sensitive information could be enhanced."

"In my opinion, the real-time monitoring capabilities in Singularity Platform sometimes work and sometimes they don't, because there are a lot of false positives and people use unsigned applications which get deleted or quarantined by the product."

"I believe that CAM and Clearwater are superior to Singularity Platform."

"Sometimes, these customized solutions our developers develop also get flagged in real time, and the processes get stopped and are blocked, and we have to whitelist the processes."

More Singularity Platform cons

"The GUI can be improved. Splunk has always suffered from having a kind of goofy UI, it needs some updating."

"It would be nice if they had a wizard to construct searches, including more complex searches that include math or statistics."

"Regarding customer service and technical support, their support is the worst I have ever run into in any industry."

"The cluster environment should be improved. We have a cluster. In the Splunk cluster environment, in the case of heavy searches and heavy load, the Splunk cluster goes down, and we have to put it in the maintenance mode to get it back. We are not able to find the actual culprit for this issue. I know that cluster has RF and SF, but it has been down so many times. There should be something in Splunk to help users to find the reason and the solution for such issues."

"The threat management part is still lagging. There are some gaps in threat management. Other vendors have built-in threat management systems, but Splunk lacks the threat management component in its portal. The UEBA and everything else is perfect, but it lacks a unified threat intelligence and management part."

"The integration could be a bit better. They charge for certain integrations."

"A problem that we had recently had was we licensed it based on how much data you upload to them every day. Something changed in one our applications, and it started generating three to four times as many logs and. So now, we are trying to assemble something with parts of the Splunk API to warn ourselves, then turn it off and throttle it back more. However it would be better if they had something systematically built into the product that if you're getting close to your license, then to shut things down."

"Splunk Enterprise Security is not exactly user-friendly."

More Splunk Enterprise Security cons

Pricing and Cost Advice

Information not available

"While licensing can be a concern, there are ways to reduce the licensing costs including filtering some events."

"ROI is estimated at saving my team roughly 10 to 12 man hours per week in troubleshooting for our company as well as what our profits had been from our services of installing, configuring, and supporting other clients with the product."

"The price of this solution is expensive. However, it has great features. If you want a great solution you need to pay a price matching the features."

"I think that most of the log analytics solutions are expensive and I'm not sure if it's worth it."

"The subscription is monthly."

"The solution is costly."

"Pricing can be a limiting factor. You have to continuously tune what you are bringing in and make sure what you bring in is of value."

"Some of the insights that we have obtained as a part of using Splunk have greatly helped us in increasing our revenue in terms of selling our products."

More Splunk Enterprise Security pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

883,546 professionals have used our research since 2012.

Comparison Review

Vinod Shankar

Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees

Feb 26, 2015

HP ArcSight vs. IBM QRadar vs. McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm

We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…

Read full review

Top Industries

By visitors reading reviews

No data available

Financial Services Firm

12%

Computer Software Company

10%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	6
Midsize Enterprise	2
Large Enterprise	1

By reviewers
Company Size	Count
Small Business	112
Midsize Enterprise	50
Large Enterprise	266

Questions from the Community

What is your experience regarding pricing and costs for Singularity Platform?

In terms of pricing for Singularity Platform, I believe they are competitive with the market. I do not believe they are cheap or expensive; I believe they try to be within a few basis points of oth...

See all answers

What needs improvement with Singularity Platform?

I believe there is room for improvement in Singularity Platform regarding its product. First of all, with all automated systems, they need to have the capabilities to expand rather quickly. When I ...

See all answers

What is your primary use case for Singularity Platform?

My use case working with Singularity Platform was to implement clients from the insurance business onto the platform.

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What is a better choice, Splunk or Azure Sentinel?

It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...

See all answers

How does Splunk compare with Azure Monitor?

Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...

See all answers

Comparisons

Oracle Security Monitoring and Analytics Cloud Service vs Singularity Platform

Compared 39% of the time

Graylog Security vs Singularity Platform

Compared 29% of the time

Cortex XSIAM vs Singularity Platform

Compared 20% of the time

Sophos Central vs Singularity Platform

Compared 7% of the time

Cortex XDR by Palo Alto Networks vs Singularity Platform

Compared 6% of the time

More Singularity Platform Competitors

IBM Security QRadar vs Splunk Enterprise Security

Compared 10% of the time

Wazuh vs Splunk Enterprise Security

Compared 5% of the time

Sentinel vs Splunk Enterprise Security

Compared 5% of the time

Dynatrace vs Splunk Enterprise Security

Compared 3% of the time

Elastic Security vs Splunk Enterprise Security

Compared 3% of the time

More Splunk Enterprise Security Competitors

Product Reports

Buyer's Guide

Singularity Platform

February 2026

Download Singularity Platform product report

Buyer's Guide

Splunk Enterprise Security

February 2026

Download Splunk Enterprise Security product report

Overview

One intelligent platform. Unprecedented speed. Infinite scale. Singularity™ enables unfettered visibility, industry-leading detection, and autonomous response. Discover the power of AI-powered, enterprise-wide cybersecurity.
The world’s leading enterprises use the Singularity platform to prevent, detect, and respond to cyber attacks at machine-speed, greater scale, and higher accuracy across endpoint, cloud, and identity.
Maximize visibility across the entire enterprise. Defend your enterprise with unrivaled speed, coverage, and efficiency. Leverage AI to respond across the entire connected security ecosystem.

SentinelOne

Splunk Enterprise Security delivers powerful log management, rapid searches, and intuitive dashboards, enhancing real-time analytics and security measures. Its advanced machine learning and wide system compatibility streamline threat detection and incident response across diverse IT environments.

Splunk Enterprise Security stands out in security operations with robust features like comprehensive threat intelligence and seamless data integration. Its real-time analytics and customizable queries enable proactive threat analysis and efficient incident response. Integration with multiple third-party feeds allows detailed threat correlation and streamlined data visualization. Users find the intuitive UI and broad compatibility support efficient threat detection while reducing false positives. Despite its strengths, areas such as visualization capabilities and integration processes with cloud environments need enhancement. Users face a high learning curve, and improvements in automation, AI, documentation, and training are desired to maximize its potential.

What Are the Key Features of Splunk Enterprise Security?

Log Management: Efficiently manages and organizes a vast amount of logs for better data handling.
Rapid Data Search: Quickly retrieves relevant data for fast decision-making.
Flexible Dashboards: Customizable dashboards provide clear data visualization.
Comprehensive Threat Intelligence: Offers detailed insights to preemptively defend against threats.
Real-Time Analytics: Analyzes data in real-time to enhance response times.
Integration with Third-Party Feeds: Streamlines information flow from multiple sources.

What Benefits Should Users Investigate in Reviews?

Efficient Incident Response: Enhances the ability to respond promptly to threats.
False Positive Reduction: Minimizes incorrect threat alarms, making monitoring more efficient.
Threat Detection Speed: Accelerates the identification and evaluation of security threats.
Cost-Effectiveness: Potential savings through better licensing options and operational efficiency.
User Adaptability: Enhancements in documentation and training resources aid in overcoming the learning curve.

In specific industries like finance and healthcare, Splunk Enterprise Security is instrumental for log aggregation, SIEM functionalities, and compliance monitoring. Companies leverage its capabilities for proactive threat analysis and response, ensuring comprehensive security monitoring and integration with various tools for heightened operational intelligence.

Splunk

Sample Customers

Information Not Available

Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.

Buyer's Guide

Singularity Platform vs. Splunk Enterprise Security

February 2026

Free Report: Singularity Platform vs. Splunk Enterprise Security

Find out what your peers are saying about Singularity Platform vs. Splunk Enterprise Security and other solutions. Updated: February 2026.

DOWNLOAD NOW

883,546 professionals have used our research since 2012.

See our Singularity Platform vs. Splunk Enterprise Security report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.