Splunk Enterprise Security vs vRealize Network Insight comparison

Splunk Enterprise Security
Read 295 Splunk Enterprise Security reviews
  • 22,513 Views
  • 18,515 Comparison Views
93% willing to recommend
vRealize Network Insight
Read 44 vRealize Network Insight reviews
  • 1,579 Views
  • 876 Comparison Views
89% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Splunk Enterprise Security and vRealize Network Insight based on real PeerSpot user reviews.

Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: July 2024).
Buyer's Guide
Security Information and Event Management (SIEM)
July 2024
Download the complete report
Helped 793,295 peers since 2012
 

Categories and Ranking

Splunk Enterprise Security
Average Rating
8.4
Number of Reviews
295
Ranking in other categories
Log Management (1st), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
vRealize Network Insight
Average Rating
8.6
Number of Reviews
44
Ranking in other categories
Network Monitoring Software (24th), IT Infrastructure Monitoring (24th)
 

Mindshare comparison

As of July 2024, in the Security Information and Event Management (SIEM) category, the mindshare of Splunk Enterprise Security is 10.1%, down from 12.5% compared to the previous year. The mindshare of vRealize Network Insight is 0.0%, up from 0.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
Unique Categories:
Log Management
8.1%
IT Operations Analytics
30.3%
Network Monitoring Software
0.7%
IT Infrastructure Monitoring
0.5%
 

Featured Reviews

SG
Jul 12, 2024
Brings all of the components necessary to identify, analyze, and respond together
The most valuable feature is that it brings all of the components necessary to identify, analyze, and respond together. It's pretty important that Splunk provides end-to-end visibility into your environment. As in any product that one purchases to fulfill a function, we want to recognize where it came in, who it affected, and what the challenges are that need to be met in order to resolve something, both immediately and also to make sure that it doesn't replicate in the future. Splunk does a good job of being able to do the former half. Dealing with issues requires tier-three support and above and it takes time. You can work through it with the help of your vendor team. I would rate them an eight out of ten. It's not so much the problem of the application itself, although there are always improvements that can be done. There are a lot of moving parts that need to be added in and if you don't have the information that you need, especially within identity and inventory, then that can be an added challenge when you have to start making imprints based on what you do know. Splunk Enterprise Security provides us with the relevant context to help guide our investigations. There are a number of different standards that can be presented, which is beneficial. Some customers like to have the information that they receive in one format. The driving factor is that when you work with federal customers, some of them want it in one format. The response will be in one format as opposed to another. Splunk has helped to improve my company's business resilience. It's an active component in ensuring that we are vigilant against intrusion and detecting it.
Read full review
Claudio Sousa - PeerSpot reviewer
Sep 28, 2022
Produces detailed reports of the network flow and layout using SDN
vRealize is used to help our development team by producing detailed reports of the network flow and layout. This includes details like the TCP network keys and the RTT It has helped improve our organization by directing the network traffic using SDN. The most valuable feature is the application…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Splunk Enterprise Security helped improve our organization’s ability to ingest and normalize data."
"It follows MITRE ATT&CK and Cyber Kill Chain frameworks. There are certain notable events for which we can configure our security posture."
"Ease of correlation, creating correlation searches are easy and you can combine multiple sources with little effort"
"The initial setup is pretty straightforward."
"It has been really good at consolidating a lot of data from different sources. It's really good at generating summaries."
"I like the search feature and the indexing. It's very fast and comprehensive."
"My favorite example of improving of organization is saving a $60k/mo in payroll fraud and $10k/mo in wasted API credits by using simple searches and clear reports."
"We have found all the features useful. However, the dashboarding and logging have been very helpful. Additionally, the log analysis does a great job."
More Splunk Enterprise Security pros
"It is user-friendly. It's pretty simple to deploy and to run. It gives you pretty easy-to-understand reports, very graphically intense, so you can visualize what's going on in your network."
"With this product, we can precisely identify communication patterns between virtual machines within our data center, whether it's east-east or east-west communication."
"I find it user-friendly and intuitive. With the GUI interface that we do use on a regular basis, it's easy to navigate, it's easy to see, easy to query. We get reports. It's easy to use."
"The solution helps reduce time to value, increase performance, provide deep visibility, and easily manage networks."
"It's very user-friendly in the sense that the querying is just regular language like you and I speak or write. You don't need to know any SQL-query type of language to be able to get what you want out of it."
"The most valuable feature for me is the different views that you can get when selecting an application or a VLAN. It shows you the traffic flows. It gives you a visual representation of something that, in text, just may not make as much sense."
"The initial setup was straightforward."
"The best feature of this application is its ability to capture everything within the same application, as well as capture all the traffic."
More vRealize Network Insight pros
 

Cons

"It would be nice if they had a wizard to construct searches, including more complex searches that include math or statistics."
"The product must improve insider threat detection."
"There are limitations with Splunk not detecting all user activity, especially on mainframes and network devices."
"The threat management part is still lagging. There are some gaps in threat management. Other vendors have built-in threat management systems, but Splunk lacks the threat management component in its portal. The UEBA and everything else is perfect, but it lacks a unified threat intelligence and management part."
"The configuration could be better."
"The documentation is in definite need of improvement."
"Its setup is a little bit complex for a distributed environment. Their support can also be better. If we miss the response for more than a week, they usually close the case. Sometimes, it can take us more than a week to reply."
"It needs integration with a configuration management solution."
More Splunk Enterprise Security cons
"It just needs to be more reliable and more accurate. At some point, there are some things where it does not match properly."
"Support could be much better."
"After you use it for a little while you become accustomed to it but the layout doesn't feel very intuitive. You have to dig around and find the exact place where you can find the information, where you can actually see your east-west traffic, etc. I would like them to bring that information more to the forefront, instead of having to find it."
"I would like to see more reporting features, more dashboards."
"It needs to be a little easier to use and to understand the information it's putting out. That would make it more helpful. If you're not a network person you need to understand things like network policies and concepts. If you gave it to a regular admin, it would be nice if it were easier for them to pick up what is going on, understand the flows and whether or not stuff should be talking to each other, as opposed to just port groups and IP addresses."
"I would like to see application identification. That would be cool."
"The only real improvement they can make is to add more third-party vendors into the environment, mostly switch manufacturers, because it's really limited to Cisco equipment and there are a lot of companies out there other than Cisco."
"I would like to see more interoperability on the firewall and low balancer sides."
More vRealize Network Insight cons
 

Pricing and Cost Advice

"Splunk should be able to integrate with other product using the free version."
"The licensing model can be expensive, but the value it provides is significant."
"It is expensive, but it is a good tool. It is worth the cost."
"Pricing is probably its weakest spot. As compared to some competitors, Splunk is really expensive."
"The pricing is a little bit on the higher side, but looking at what Splunk provides us, it is reasonable."
"You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive."
"While Splunk is more expensive than other solutions, we would still choose it because of its capabilities."
"I have no opinion on pricing."
More Splunk Enterprise Security pricing and cost advice
"They should include the product in NSX because it's important to have it for deployment."
"It reduces costs. It takes something that may be challenging and makes it more usable and visual by being able to bring in tools, seeing what their impact is, such as microsegmentation and application rationalization, and seeing it quickly."
"Cost always has room for improvement, you could always make it cheaper. But I think it's a good value for what you pay for it."
"It has brought more money into our company."
"I rate vRealize Network Insight's pricing a seven point five out of ten."
"The solution has helped us to reduce time, increase performance, reduce costs, and even easily manage networks. We are probably seeing 10 to 20 percent labor savings because we are able to be very specific and focused on what we want to do. It ends up saving the customer money and makes us be more efficient on our cost deliveries."
"It's a little expensive, but for what you're getting out of the product, you often see the trade-off. It depends on the type of licensing you have. It might be a little too pricey for some."
"We have spent less time investigating network flows, so it is absolutely cost-effective."
More vRealize Network Insight pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
793,295 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
15%
Government
10%
Manufacturing Company
8%
Financial Services Firm
16%
Computer Software Company
14%
Government
11%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
See all answers
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
See all answers
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
See all answers
What do you like most about vRealize Network Insight?
The tool's ease of configuration and use and the availability of information and artifacts through professional services and the web are key factors that customers find valuable.
See all answers
What is your experience regarding pricing and costs for vRealize Network Insight?
I rate vRealize Network Insight's pricing a seven point five out of ten.
See all answers
What needs improvement with vRealize Network Insight?
The IT infrastructure industry is expected to evolve towards a hybrid cloud model in the next five to ten years. In this model, most of the customer's resources reside on-premise within a private c...
See all answers
 

Comparisons

Wazuh vs Splunk Enterprise Security Logo
Wazuh vs Splunk Enterprise Security
Compared 14% of the time
IBM Security QRadar vs Splunk Enterprise Security Logo
IBM Security QRadar vs Splunk Enterprise Security
Compared 9% of the time
Dynatrace vs Splunk Enterprise Security Logo
Dynatrace vs Splunk Enterprise Security
Compared 8% of the time
Elastic Security vs Splunk Enterprise Security Logo
Elastic Security vs Splunk Enterprise Security
Compared 4% of the time
Datadog vs Splunk Enterprise Security Logo
Datadog vs Splunk Enterprise Security
Compared 4% of the time
More Splunk Enterprise Security Competitors
ThousandEyes vs vRealize Network Insight Logo
ThousandEyes vs vRealize Network Insight
Compared 13% of the time
AppNeta by Broadcom vs vRealize Network Insight Logo
AppNeta by Broadcom vs vRealize Network Insight
Compared 11% of the time
NETSCOUT vSTREAM vs vRealize Network Insight Logo
NETSCOUT vSTREAM vs vRealize Network Insight
Compared 9% of the time
SolarWinds NPM vs vRealize Network Insight Logo
SolarWinds NPM vs vRealize Network Insight
Compared 9% of the time
Nutanix Prism vs vRealize Network Insight Logo
Nutanix Prism vs vRealize Network Insight
Compared 5% of the time
More vRealize Network Insight Competitors
 

Product Reports

Buyer's Guide
Splunk Enterprise Security
June 2024
Splunk Enterprise Security reportDownload Splunk Enterprise Security product report
Buyer's Guide
vRealize Network Insight
June 2024
vRealize Network Insight reportDownload vRealize Network Insight product report
 

Also Known As

No data available
Arkin
 

Learn More

Splunk
VMware
 

Overview

Splunk Enterprise Security is a SIEM, log management, and IT operations analytics tool. The solution provides users with the ability to secure their information and manage their data in the cloud, data centers, or other applications. Splunk Enterprise Security also offers visibility from different areas, levels, and devices, rather than from a single system, thus, providing its users with flexibility. Splunk Enterprise Security can monitor data and analyze, detect, and prevent intrusions. This benefits users as it provides alerts to possible intrusions, helps users to be proactive, and reduces risk factors. 

Full visibility across your environment

Break down data silos and gain actionable intelligence by ingesting data from multicloud and on-premises deployments. Get full visibility to quickly detect malicious threats in your environment.

Fast threat detection

Defend against threats with advanced security analytics, machine learning and threat intelligence that focus detection and provide high-fidelity alerts to shorten triage times and raise true positive rates.

Efficient investigations

Gather all the context you need and initiate flexible investigations with security analytics at your fingertips. The built-in open and extensible data platform boosts productivity and drives down fatigue.

Open and scalable

Built on an open and scalable data platform, you can stay agile in the face of evolving threats and business needs. Splunk meets you where you are on your cloud journey, and integrates across your data, tools and content.

VMware vRealize Network Insight delivers intelligent operations for software-defined networking and security. It helps customers build an optimized, highly-available and secure network infrastructure across multi-cloud environments. It accelerates micro-segmentation planning and deployment, enables visibility across virtual and physical networks and provides operational views to manage and scale VMware NSX deployments.
 

Sample Customers

Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
NTTi3, VCIX-NV, VMware Networking and Security Business Unit, Illumio, CompuNet
Buyer's Guide
Security Information and Event Management (SIEM)
July 2024
Download Free Report
Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM). Updated: July 2024.
DOWNLOAD NOW
793,295 professionals have used our research since 2012.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.