• Home
  • Splunk Enterprise Security vs. Tableau

Splunk Enterprise Security vs Tableau comparison

Cancel
You must select at least 2 products to compare!
Microsoft Logo

Microsoft Sentinel

Read 67 Microsoft Sentinel reviews
35,678 views|20,151 comparisons
Splunk Logo

Splunk Enterprise Security

Read 76 Splunk Enterprise Security reviews
30,341 views|24,794 comparisons
Tableau Logo

Tableau

Read 48 Tableau reviews
26,854 views|22,799 comparisons
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Security Information and Event Management (SIEM)
November 2023
Executive Summary

We performed a comparison between Splunk Enterprise Security and Tableau based on real PeerSpot user reviews.

Find out what your peers are saying about Splunk, Microsoft, IBM and others in Security Information and Event Management (SIEM).
To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: November 2023).
Download the complete report
744,865 professionals have used our research since 2012.
Featured Review
Anonymous User
Researched Splunk Enterprise Security but chose Microsoft Sentinel: Ability to scale virtually, but it is relatively expensive
Amine Besrour.
Helps reduce alert volume, speeds up investigations, and can monitor multiple environments
Splunk Enterprise Security enables us to monitor multiple cloud environments, which is crucial for receiving real-time email alerts in the event of... Read more →
Anonymous User
Easy to use with good reporting and a simple initial setup
The solution provides our company with easy access to relevant information.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Native integration with Microsoft security products or other Microsoft software is also crucial. For example, we can integrate Sentinel with Office 365 with one click. Other integrations aren't as easy. Sometimes, we have to do it manually.""The AI and ML of Azure Sentinel are valuable. We can use machine learning models at the tenant level and within Office 365 and Microsoft stack. We don't need to depend upon any other connectors. It automatically provisions the native Microsoft products.""The analytics has a lot of advantages because there are 300 default use cases for rules and we can modify them per our environment. We can create other rules as well. Analytics is a useful feature.""Sentinel has an intuitive, user-friendly way to visualize the data properly. It gives me a solid overview of all the logs. We get a more detailed view that I can't get from the other SIEM tools. It has some IP and URL-specific allow listing""I believe one of the main advantages is Microsoft Sentinel's seamless integration with other Microsoft products.""The Log analytics are useful.""You can fine-tune the SOAR and you'll be charged only when your playbooks are triggered. That is the beauty of the solution because the SOAR is the costliest component in the market today... but with Sentinel it is upside-down: the SOAR is the lowest-hanging fruit. It's the least costly and it delivers more value to the customer.""Investigations are something really remarkable. We can drill down right to the raw logs by running different queries and getting those on the console itself."

More Microsoft Sentinel Pros →

"The SIEM is the most valuable feature of the product.""I like Splunk's data aggregation and search capabilities.""Splunk Enterprise Security is able to process a huge amount of data without any issues.""Splunk has a wide range of features that customers use to find and analyze all kinds of logs.""It definitely does help with both auditing and as well as regular monitoring. SOC does more monitoring, but ES also gives you other features that are auditing-related. The dashboards are also beneficial.""The alerts are very effective.""The feature that I have found most valuable with Splunk is the ability to sift through a bunch of data very quickly.""Great platform with user-friendly interface and GUI."

More Splunk Enterprise Security Pros →

"Self-service is most valuable. Users can pick up quickly and do the resolution. There are a lot of out-of-the-box features, and it satisfies most of the needs. If users are properly trained, they can deal with any situation.""The solution allows for the possibility for end-users to do their own reporting.""When compared to Power BI, Tableau has more readily available resources.""The UI part is the best. The end-users can easily get started with Tableau Desktop or Tableau Online because of its user-friendliness.""Tableau will automatically show charts for the related data that I choose making it very easy to use.""Data handling, visualizations, and aesthetics of it are the most valuable features.""I have found Tableau easy to use and the features are superb.""The most valuable feature is the user experience."

More Tableau Pros →

Cons
"Improvement-wise, I would like to see more integration with third-party solutions or old-school antivirus products that have some kind of logging capability. I wouldn't mind having that exposed within Sentinel. We do have situations where certain companies have bought licensing or have made an investment in a product, and that product will be there for the next two or three years. To be able to view information from those legacy products would be great. We can then better leverage the Sentinel solution and its capabilities.""Sometimes, it is hard for us to estimate the costs of Microsoft Sentinel.""I would like to see more AI used in processes.""The data connectors for third-party tools could be improved, as some aren't available in Sentinel. They need to be available in the data connector panel.""Documentation is the main thing that could be improved. In terms of product usage, the documentation is pretty good, but I'd like a lot more documentation on Kusto Query Language.""The troubleshooting has room for improvement.""When we pass KPIs to the governance department, there's no option to provide rights to the data or dashboard to colleagues. We can use Power BI for this, but it isn't easy or convenient. They should just come up with a way to provide limited role-based access to auditing personnel""I believe one of the challenges I encountered was the absence of live training sessions, even with the option to pay for them."

More Microsoft Sentinel Cons →

"There can be a bit of complexity around some fields during the initial setup.""The threat detection system has room for improvement.""Its user interface for everything other than the charts can be improved. Some parts of it can be simplified a bit, such as when importing documents that have the network traffic. When you're going through the information about the network traffic, you have to have the expertise, but even if a program is supposed to be for IT support, it is good to make it user-friendly because it gets easier to train people. When something goes wrong, the more difficult a program is in terms of UI, the harder it is to fix the issue.""One issue is that we are getting a lot of false positives. We are trying to reduce them by customizing the default rules, changing thresholds, and using white-listing and black-listing. It's getting better and better as a result. But they need to build components that would reduce the false positives.""We had some connections issues with the solution at the beginning.""Splunk could add more ways to manage archiving and storage. There isn't a web interface. You can do this on the SaaS version, but the on-premise platform doesn't have this option. It has other things but no option for remote NAS. I would like to have a personal web interface where I can specify how long logs should be stored. To have this readily available on the web, you need to adjust some settings on the backend. That is tricky.""Splunk ES could have more pre-built integrations and rules. The detection is fairly accurate, but it depends on the rules you create. Splunk's out-of-the-box configuration isn't that useful.""It works as intended for us, and we are getting everything that we need out of it. If anything, its initial setup can be improved a bit."

More Splunk Enterprise Security Cons →

"A strict security measure is needed. I believe it is weak in terms of security.""When you create new fields in Tableau and you enter the formulas, there is a new small window that is there in the interface. You can enter the calculated fields, it could be more user-friendly. At this time it is limited and hard to understand at the beginning. The fields should be easier to use, such as in Microsoft Excel. You can have a difficult time understanding what to do in the fields, you end up doing trial and error to figure it out.""Navigating through activities like cleansing, reshaping, and wrangling extensive or complicated datasets could prove challenging within the Tableau environment.""There are not enough language options. It needs to be offered in more than just English.""SAP BusinessObjects has some semantic layer designs that give the flexibility to do ad hoc reporting or dashboard designing. If that can be brought into Tableau, it would be great. We have the data in the database, but we should also be able to bring something between the database and the dashboard and do some semantic layer modeling for ad hoc reporting requirements.""I think Tableau could be improved with cheaper or more flexible licensing, though this is a generic improvement and applies for any product. It would be better if they had more flexible payment and licensing plans so that they could suit small- and mid-sized organizations.""The solution needs to improve its integration capabilities.""They need a write-back; that is what is missing. If they get the write back to the database, they will be fully automated, but for the time being, they are not."

More Tableau Cons →

Pricing and Cost Advice
  • "I have worked with a lot of SIEMs. We are using Sentinel three to four times more than other SIEMs that we have used. Azure Sentinel's only limitation is its price point. Sentinel costs a lot if your ingestion goes up to a certain point."
  • "Pricing is pay-as-you-go with Sentinel, which is good because it all depends on the number of users and the number of devices to which you connect."
  • "For us, it is not expensive at this time, but if we start to collect all logs from our on-premise SIEM solutions, it will cost more than QRadar. If we calculate its cost over the next five or ten years, it will cost more than what we paid for QRadar."
  • "I don't know yet because they gave us a 30-day test window for free."
  • "It's costly to maintain and renew."
  • "Microsoft Sentinel is expensive."
  • "Sentinel is pretty competitive. The pricing is at the level of other SIEM solutions."
  • "It is certainly the most expensive solution. The cost is very high. We need to do an assessment using the one-month trial so that we can study the cost side. Before implementing it, we must do a careful calculation."

    • More Microsoft Sentinel Pricing and Cost Advice →

  • "The pricing modules could be improved."
  • "This solution is costly. Splunk is obviously a great product, but you should only choose this product if you need all the features provided. Otherwise, if you don't need all the features to meet your requirements, there are probably other products that will be more cost-effective. It's cost versus the functionality requirement."
  • "It is expensive. I used to buy it early on, but then they combined it into a higher-up organization. They buy it for multiple systems now. Last time, I paid around 60K for it. There is just the licensing fee. That's all."
  • "I remember Splunk being relatively affordable. Kibana was more reasonable, but you get more with Splunk. If I was suggesting something, I would probably suggest Splunk because it is better to pay a little bit more and get a lot more."
  • "Expensive compared to other options."
  • "The price of Splunk is too high for our market."
  • "The price of this solution is expensive. However, it has great features. If you want a great solution you need to pay a price matching the features."
  • "There is an annual license required to use this solution."

    • More Splunk Enterprise Security Pricing and Cost Advice →

  • "The license is very expensive."
  • "It is more expensive than other solutions."
  • "For data extraction and analysis, Tableau is better than any other tool I have used with the same pricing model."
  • "Basically, we prefer a permanent license. A one-time charge is much better."
  • "We are paying an annual licensing fee."
  • "Cost is where tools like MicroStrategy, Power BI, or Spotfire come into play. Cost-wise, Tableau is a little bit costlier than other tools such as Power BI. I have been using Tableau all these years, but about four years ago, Power BI came out at a very low cost. Their desktop version was free from the beginning. Power BI Desktop has always been free, whereas Tableau Desktop is costly. When it comes to cost, people prefer Power BI because it integrates very well with Office 365. You don't have to worry about integration with Teams or SharePoint."
  • "We pay for the enterprise license for Tableau. The licensing could be cheaper and more flexible."
  • "Licensing fees are paid on a yearly basis."

    • More Tableau Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
    See Recommendations
    744,865 professionals have used our research since 2012.
    Comparison Review
    Guillermo (Bill) Cabiro
    Tableau provides very fast interactive visual analysis.
    I do use both Tableau and QlikView. Although very different, I really like both solutions. They belong to the new BI generation known as Interactive Visual Analytics In my opinion, QlikView has a more intuitive interface for regular users or executives that are not technical experts but the development side is a little more complex. Up to version 12 QlikView did not provide drag & drop features. If a user wanted to see something not included in the application the new object had to be created by a power user or developer because Qlikview's scripting has somewhat of a learning curve. On the positive side, QlikView's scripting is a great asset as it functions as an ETL allowing the integration of hundreds of different data sources into the same visual app. Another feature that’s extremely useful is Qlik’s proprietary Associative Model that allows the users to visualize data relationships that exist as well as those that do not. Tableau on the other hand is a lot easier to use for developers, analysts or power users who need to connect, manipulate and visualize data rather quickly. While this makes Tableau a better fit for the more analytical crowd, it may not be as appealing or intuitive to the regular or casual business users as QlikView is. Tableau has full pivot, drag & drop and drill down capabilities that are great for developers or power users. They can rotate measures and dimensions and graph them instantly using visualization best practices as suggested by the… Read more →
    Questions from the Community
    Is there a common threat intelligence tool that aggregates multiple threa...
    Top Answer:Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and… more »
    Read all 10 answers   →
    What is a better choice, Splunk or Azure Sentinel?
    Top Answer:It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for… more »
    Which is better - Azure Sentinel or AWS Security Hub?
    Top Answer:We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is… more »
    Read all 2 answers   →
    What SOC product do you recommend?
    Top Answer:For tools I’d recommend:  -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is… more »
    Read all 12 answers   →
    How does Splunk compare with Azure Monitor?
    Top Answer:Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring… more »
    Read all 2 answers   →
    What do you like most about Splunk?
    Top Answer:We are using Microsoft 365 and we're using the Exchange Mail Service. It's good for monitoring that in particular.
    Read all 122 answers   →
    Seeking lightweight open source BI software
    Top Answer:It depends on the Data architecture and the complexity of your requirement Some great tools in the market are Qlik… more »
    Read all 8 answers   →
    Tableau vs. Business Objects - Which is a better solution for visualizati...
    Top Answer:Both tools have their positives and negatives. First, I should mention that I am relatively new to Tableau. I have been… more »
    Read all 18 answers   →
    Which would you choose - Tableau or SAP Analytics Cloud?
    Top Answer:Tableau is easy to set up and maintain. In about a day it is possible for the entire platform to be deployed for use… more »
    Read all 6 answers   →
    Comparisons
    Also Known As
    Azure Sentinel
    Tableau Desktop, Tableau Server, Tableau Online
    Learn More
    Microsoft
    Splunk
    Tableau
    Overview

    Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

    - Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

    - Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

    - Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

    - Respond to incidents rapidly with built-in orchestration and automation of common tasks

    To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

    Splunk Enterprise Security is a SIEM, log management, and IT operations analytics tool. The solution provides users with the ability to secure their information and manage their data in the cloud, data centers, or other applications. Splunk Enterprise Security also offers visibility from different areas, levels, and devices, rather than from a single system, thus, providing its users with flexibility. Splunk Enterprise Security can monitor data and analyze, detect, and prevent intrusions. This benefits users as it provides alerts to possible intrusions, helps users to be proactive, and reduces risk factors. 

    Full visibility across your environment

    Break down data silos and gain actionable intelligence by ingesting data from multicloud and on-premises deployments. Get full visibility to quickly detect malicious threats in your environment.

    Fast threat detection

    Defend against threats with advanced security analytics, machine learning and threat intelligence that focus detection and provide high-fidelity alerts to shorten triage times and raise true positive rates.

    Efficient investigations

    Gather all the context you need and initiate flexible investigations with security analytics at your fingertips. The built-in open and extensible data platform boosts productivity and drives down fatigue.

    Open and scalable

    Built on an open and scalable data platform, you can stay agile in the face of evolving threats and business needs. Splunk meets you where you are on your cloud journey, and integrates across your data, tools and content.

    Tableau is a tool for data visualization and business intelligence that allows businesses to report insights through easy-to-use, customizable visualizations and dashboards. Tableau makes it exceedingly simple for its customers to organize, manage, visualize, and comprehend data. It enables users to dig deep into the data so that they can see patterns and gain meaningful insights. 

    Make data-driven decisions with confidence thanks to Tableau’s assistance in providing faster answers to queries, solving harder problems more easily, and offering new insights more frequently. Tableau integrates directly to hundreds of data sources, both in the cloud and on premises, making it simpler to begin research. People of various skill levels can quickly find actionable information using Tableau’s natural language queries, interactive dashboards, and drag-and-drop capabilities. By quickly creating strong calculations, adding trend lines to examine statistical summaries, or clustering data to identify relationships, users can ask more in-depth inquiries.

    Tableau Features

    Tableau has many valuable key features. Some of the most useful ones include:

    • Tableau dashboard: Tableau dashboards provide a complete view of your data through visualizations, visual objects, text, and more. 
    • Sharing and collaboration: Tableau provides convenient, real-time options to collaborate with other users and instantly share data in the form of visualizations, sheets, and dashboards. 
    • In-memory and live data: Tableau ensures connectivity to both live data sources and data extraction from external data sources as in-memory data. This gives users the flexibility to use data from more than one source without any restrictions. 
    • Multiple data sources: Tableau gives many data source option, ranging from spreadsheets, big data, on-premise files, relational databases, non-relational databases, data warehouses, and big data, to on-cloud data. 
    • Advanced charts and visualizations: One of the key features of Tableau is its wide range of visualizations.
    • Maps: Tableau has a lot of pre-installed information on maps, such as cities, postal codes, and administrative boundaries. 
    • Robust security: Tableau has a foolproof security system based on authentication and permission systems for data connections and user access. Tableau also gives you the freedom to integrate with other security protocols.

    Tableau Benefits

    There are many benefits to implementing Tableau. Some of the biggest advantages the solution offers include:

    • Data visualization
    • Create interactive visualizations quickly
    • Easy to implement
    • Ability to handle large amounts of data
    • Use varying scripting languages 
    • Responsive dashboard and mobile support 

    Reviews from Real Users

    Tableau stands out among its competitors for a number of reasons. Some of these include its fast data access, easy creation of visualizations, and its stability. PeerSpot users take note of the advantages of these features in their reviews:

    Romil S., Deputy General Manager of IT at Nayara Energy, notes, "Its visualizations are good, and its features make the development process a little less time-consuming. It has an in-memory extract feature that allows us to extract data and keep it on the server, and then our users can use it quickly.

    Ariful M., Consulting Practice Partner of Data, Analytics & AI at FH, writes, “Tableau is very flexible and easy to learn. It has drag-and-drop function analytics, and its design is very good.

    Offer
    Learn more about Microsoft Sentinel
    Learn More
    Learn more about Splunk Enterprise Security
    Learn More
    Learn more about Tableau
    Learn More
    Sample Customers
    Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.
    Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
    Accenture, Adobe, Amazon.com, Bank of America, Charles Schwab Corp, Citigroup, Coca-Cola Company, Cornell University, Dell, Deloitte, Duke University, eBay, Exxon Mobil, Fannie Mae, Ferrari, French Red Cross, Goldman Sachs, Google, Government of Canada, HP, Intel, Johns Hopkins Hospital, Macy's, Merck, The New York Times, PayPal, Pfizer, US Army, US Air Force, Skype, and Walmart.
    Top Industries
    REVIEWERS
    Financial Services Firm22%
    Computer Software Company11%
    Manufacturing Company8%
    Real Estate/Law Firm6%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Financial Services Firm10%
    Government9%
    Manufacturing Company7%
    REVIEWERS
    Computer Software Company17%
    Financial Services Firm16%
    Government10%
    Energy/Utilities Company8%
    VISITORS READING REVIEWS
    Financial Services Firm15%
    Computer Software Company14%
    Government9%
    Manufacturing Company7%
    REVIEWERS
    Financial Services Firm12%
    Computer Software Company12%
    University7%
    Healthcare Company7%
    VISITORS READING REVIEWS
    Educational Organization34%
    Financial Services Firm11%
    Computer Software Company8%
    Manufacturing Company6%
    Company Size
    REVIEWERS
    Small Business33%
    Midsize Enterprise20%
    Large Enterprise47%
    VISITORS READING REVIEWS
    Small Business24%
    Midsize Enterprise16%
    Large Enterprise60%
    REVIEWERS
    Small Business31%
    Midsize Enterprise12%
    Large Enterprise57%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise13%
    Large Enterprise68%
    REVIEWERS
    Small Business31%
    Midsize Enterprise18%
    Large Enterprise50%
    VISITORS READING REVIEWS
    Small Business13%
    Midsize Enterprise39%
    Large Enterprise48%
    Buyer's Guide
    Security Information and Event Management (SIEM)
    November 2023
    Download Free Report
    Find out what your peers are saying about Splunk, Microsoft, IBM and others in Security Information and Event Management (SIEM). Updated: November 2023.
    DOWNLOAD NOW
    744,865 professionals have used our research since 2012.

    Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 76 reviews while Tableau is ranked 2nd in BI (Business Intelligence) Tools with 48 reviews. Splunk Enterprise Security is rated 8.6, while Tableau is rated 8.4. The top reviewer of Splunk Enterprise Security writes "Can be used to find any threats or vulnerabilities inside a user’s environment". On the other hand, the top reviewer of Tableau writes "Provides fast data access with in-memory extracts, makes it easy to create visualizations, and saves time". Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Azure Monitor, whereas Tableau is most compared with Microsoft BI, Amazon QuickSight, Domo, SAS Visual Analytics and SAP Analytics Cloud.

    We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.