We performed a comparison between Splunk Enterprise Security and Tableau based on real PeerSpot user reviews.Find out what your peers are saying about Splunk, Microsoft, IBM and others in Security Information and Event Management (SIEM).
"Native integration with Microsoft security products or other Microsoft software is also crucial. For example, we can integrate Sentinel with Office 365 with one click. Other integrations aren't as easy. Sometimes, we have to do it manually."
"The AI and ML of Azure Sentinel are valuable. We can use machine learning models at the tenant level and within Office 365 and Microsoft stack. We don't need to depend upon any other connectors. It automatically provisions the native Microsoft products."
"The analytics has a lot of advantages because there are 300 default use cases for rules and we can modify them per our environment. We can create other rules as well. Analytics is a useful feature."
"Sentinel has an intuitive, user-friendly way to visualize the data properly. It gives me a solid overview of all the logs. We get a more detailed view that I can't get from the other SIEM tools. It has some IP and URL-specific allow listing"
"I believe one of the main advantages is Microsoft Sentinel's seamless integration with other Microsoft products."
"The Log analytics are useful."
"You can fine-tune the SOAR and you'll be charged only when your playbooks are triggered. That is the beauty of the solution because the SOAR is the costliest component in the market today... but with Sentinel it is upside-down: the SOAR is the lowest-hanging fruit. It's the least costly and it delivers more value to the customer."
"Investigations are something really remarkable. We can drill down right to the raw logs by running different queries and getting those on the console itself."
"The SIEM is the most valuable feature of the product."
"I like Splunk's data aggregation and search capabilities."
"Splunk Enterprise Security is able to process a huge amount of data without any issues."
"Splunk has a wide range of features that customers use to find and analyze all kinds of logs."
"It definitely does help with both auditing and as well as regular monitoring. SOC does more monitoring, but ES also gives you other features that are auditing-related. The dashboards are also beneficial."
"The alerts are very effective."
"The feature that I have found most valuable with Splunk is the ability to sift through a bunch of data very quickly."
"Great platform with user-friendly interface and GUI."
"Self-service is most valuable. Users can pick up quickly and do the resolution. There are a lot of out-of-the-box features, and it satisfies most of the needs. If users are properly trained, they can deal with any situation."
"The solution allows for the possibility for end-users to do their own reporting."
"When compared to Power BI, Tableau has more readily available resources."
"The UI part is the best. The end-users can easily get started with Tableau Desktop or Tableau Online because of its user-friendliness."
"Tableau will automatically show charts for the related data that I choose making it very easy to use."
"Data handling, visualizations, and aesthetics of it are the most valuable features."
"I have found Tableau easy to use and the features are superb."
"The most valuable feature is the user experience."
"Improvement-wise, I would like to see more integration with third-party solutions or old-school antivirus products that have some kind of logging capability. I wouldn't mind having that exposed within Sentinel. We do have situations where certain companies have bought licensing or have made an investment in a product, and that product will be there for the next two or three years. To be able to view information from those legacy products would be great. We can then better leverage the Sentinel solution and its capabilities."
"Sometimes, it is hard for us to estimate the costs of Microsoft Sentinel."
"I would like to see more AI used in processes."
"The data connectors for third-party tools could be improved, as some aren't available in Sentinel. They need to be available in the data connector panel."
"Documentation is the main thing that could be improved. In terms of product usage, the documentation is pretty good, but I'd like a lot more documentation on Kusto Query Language."
"The troubleshooting has room for improvement."
"When we pass KPIs to the governance department, there's no option to provide rights to the data or dashboard to colleagues. We can use Power BI for this, but it isn't easy or convenient. They should just come up with a way to provide limited role-based access to auditing personnel"
"I believe one of the challenges I encountered was the absence of live training sessions, even with the option to pay for them."
"There can be a bit of complexity around some fields during the initial setup."
"The threat detection system has room for improvement."
"Its user interface for everything other than the charts can be improved. Some parts of it can be simplified a bit, such as when importing documents that have the network traffic. When you're going through the information about the network traffic, you have to have the expertise, but even if a program is supposed to be for IT support, it is good to make it user-friendly because it gets easier to train people. When something goes wrong, the more difficult a program is in terms of UI, the harder it is to fix the issue."
"One issue is that we are getting a lot of false positives. We are trying to reduce them by customizing the default rules, changing thresholds, and using white-listing and black-listing. It's getting better and better as a result. But they need to build components that would reduce the false positives."
"We had some connections issues with the solution at the beginning."
"Splunk could add more ways to manage archiving and storage. There isn't a web interface. You can do this on the SaaS version, but the on-premise platform doesn't have this option. It has other things but no option for remote NAS. I would like to have a personal web interface where I can specify how long logs should be stored. To have this readily available on the web, you need to adjust some settings on the backend. That is tricky."
"Splunk ES could have more pre-built integrations and rules. The detection is fairly accurate, but it depends on the rules you create. Splunk's out-of-the-box configuration isn't that useful."
"It works as intended for us, and we are getting everything that we need out of it. If anything, its initial setup can be improved a bit."
"A strict security measure is needed. I believe it is weak in terms of security."
"When you create new fields in Tableau and you enter the formulas, there is a new small window that is there in the interface. You can enter the calculated fields, it could be more user-friendly. At this time it is limited and hard to understand at the beginning. The fields should be easier to use, such as in Microsoft Excel. You can have a difficult time understanding what to do in the fields, you end up doing trial and error to figure it out."
"Navigating through activities like cleansing, reshaping, and wrangling extensive or complicated datasets could prove challenging within the Tableau environment."
"There are not enough language options. It needs to be offered in more than just English."
"SAP BusinessObjects has some semantic layer designs that give the flexibility to do ad hoc reporting or dashboard designing. If that can be brought into Tableau, it would be great. We have the data in the database, but we should also be able to bring something between the database and the dashboard and do some semantic layer modeling for ad hoc reporting requirements."
"I think Tableau could be improved with cheaper or more flexible licensing, though this is a generic improvement and applies for any product. It would be better if they had more flexible payment and licensing plans so that they could suit small- and mid-sized organizations."
"The solution needs to improve its integration capabilities."
"They need a write-back; that is what is missing. If they get the write back to the database, they will be fully automated, but for the time being, they are not."
Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:
- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds
- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft
- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft
- Respond to incidents rapidly with built-in orchestration and automation of common tasks
To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.
Splunk Enterprise Security is a SIEM, log management, and IT operations analytics tool. The solution provides users with the ability to secure their information and manage their data in the cloud, data centers, or other applications. Splunk Enterprise Security also offers visibility from different areas, levels, and devices, rather than from a single system, thus, providing its users with flexibility. Splunk Enterprise Security can monitor data and analyze, detect, and prevent intrusions. This benefits users as it provides alerts to possible intrusions, helps users to be proactive, and reduces risk factors.
Break down data silos and gain actionable intelligence by ingesting data from multicloud and on-premises deployments. Get full visibility to quickly detect malicious threats in your environment.
Defend against threats with advanced security analytics, machine learning and threat intelligence that focus detection and provide high-fidelity alerts to shorten triage times and raise true positive rates.
Gather all the context you need and initiate flexible investigations with security analytics at your fingertips. The built-in open and extensible data platform boosts productivity and drives down fatigue.
Built on an open and scalable data platform, you can stay agile in the face of evolving threats and business needs. Splunk meets you where you are on your cloud journey, and integrates across your data, tools and content.
Tableau is a tool for data visualization and business intelligence that allows businesses to report insights through easy-to-use, customizable visualizations and dashboards. Tableau makes it exceedingly simple for its customers to organize, manage, visualize, and comprehend data. It enables users to dig deep into the data so that they can see patterns and gain meaningful insights.
Make data-driven decisions with confidence thanks to Tableau’s assistance in providing faster answers to queries, solving harder problems more easily, and offering new insights more frequently. Tableau integrates directly to hundreds of data sources, both in the cloud and on premises, making it simpler to begin research. People of various skill levels can quickly find actionable information using Tableau’s natural language queries, interactive dashboards, and drag-and-drop capabilities. By quickly creating strong calculations, adding trend lines to examine statistical summaries, or clustering data to identify relationships, users can ask more in-depth inquiries.
Tableau has many valuable key features. Some of the most useful ones include:
There are many benefits to implementing Tableau. Some of the biggest advantages the solution offers include:
Reviews from Real Users
Tableau stands out among its competitors for a number of reasons. Some of these include its fast data access, easy creation of visualizations, and its stability. PeerSpot users take note of the advantages of these features in their reviews:
Romil S., Deputy General Manager of IT at Nayara Energy, notes, "Its visualizations are good, and its features make the development process a little less time-consuming. It has an in-memory extract feature that allows us to extract data and keep it on the server, and then our users can use it quickly.
Ariful M., Consulting Practice Partner of Data, Analytics & AI at FH, writes, “Tableau is very flexible and easy to learn. It has drag-and-drop function analytics, and its design is very good.”
Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 76 reviews while Tableau is ranked 2nd in BI (Business Intelligence) Tools with 48 reviews. Splunk Enterprise Security is rated 8.6, while Tableau is rated 8.4. The top reviewer of Splunk Enterprise Security writes "Can be used to find any threats or vulnerabilities inside a user’s environment". On the other hand, the top reviewer of Tableau writes "Provides fast data access with in-memory extracts, makes it easy to create visualizations, and saves time". Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Azure Monitor, whereas Tableau is most compared with Microsoft BI, Amazon QuickSight, Domo, SAS Visual Analytics and SAP Analytics Cloud.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.