

Splunk ITSI and Sumo Logic Observability compete in the observability and IT service intelligence space. Overall, user reviews favor Splunk ITSI's comprehensive features, but Sumo Logic Observability is praised for ease of use and faster deployment.
Features: Splunk ITSI offers robust analytics capabilities, integration with various data sources, and effective support. Sumo Logic Observability provides real-time monitoring, simple dashboards, and user-friendly interfaces.
Room for Improvement: Splunk ITSI could enhance its alerting mechanisms, address workflow complexity, and improve operational efficiency. Sumo Logic Observability needs better log management, more customization options, and expanded configurations.
Ease of Deployment and Customer Service: Splunk ITSI deployment is more time-consuming but supported by solid customer service. Sumo Logic Observability has faster deployment and responsive customer assistance.
Pricing and ROI: Splunk ITSI is more expensive but delivers a high return on investment due to its comprehensive features. Sumo Logic Observability is cost-effective and offers substantial ROI because of its streamlined operation.
We estimate a 30 to 35 percent saving on resource costs and around 25 to 30 percent savings on inventory expenses, all credited to utilizing Splunk ITSI (IT Service Intelligence) effectively.
Risks can mean that if one failure happens, it can result in risks in hundreds of thousands of USD.
It has saved me a lot of money and a lot of time.
The technical support is excellent, and I would rate it at ten.
We typically have weekly calls with the technical staff, and whenever we encounter issues, they usually reply with solutions within one or two days.
I would rate Splunk ITSI (IT Service Intelligence) support at nine or 9.5 because it is a highly effective and handy tool.
Splunk is highly scalable, with the ability to expand efficiently.
When we create Glass Tables containing many searches, the Glass Tables sometimes fail due to memory constraints, and we receive error pages.
Splunk ITSI (IT Service Intelligence) scalability allows us to predict analytics such as service degradation and perform root cause analysis through metrics, logs, and traces.
The setup, however, must be done correctly as incorrect deployment can lead to issues.
Splunk ITSI (IT Service Intelligence) fails if you do not have good hardware requirements.
I would rate the stability of Splunk ITSI (IT Service Intelligence) as a perfect ten; it is an extremely stable tool.
I would appreciate additional features in the next release of Splunk ITSI (IT Service Intelligence) such as cloud infrastructure monitoring including CICDs, Kubernetes, and similar technologies.
On-cloud upgrades are easy, but on-premises upgrades are very painful.
If Splunk ITSI (IT Service Intelligence) could handle real-time call-outs automatically—not just incident creation—this would reduce our dependency on PagerDuty and consolidate processes within Splunk ITSI (IT Service Intelligence).
Splunk ITSI tends to be more expensive compared to some open-source solutions.
I believe the pricing is based on daily volume ingestion.
The pricing reflects usage levels, and compared to others in the market, Splunk ITSI (IT Service Intelligence) provides a reasonable solution.
The predictive analysis can give you proactive information about potential bottlenecks that can occur on applications, desk, storage, SQL servers, databases, or other systems.
One valuable feature is the scheduled maintenance window provided by Splunk ITSI (IT Service Intelligence) because Splunk does not offer this scheduling maintenance feature in the core product, but Splunk ITSI (IT Service Intelligence) helps us with these maintenance reports.
The most beneficial aspect for me is that it is AI-enabled, providing us with very good analytics.
| Product | Mindshare (%) |
|---|---|
| Splunk ITSI (IT Service Intelligence) | 0.8% |
| Sumo Logic Observability | 0.6% |
| Other | 98.6% |

| Company Size | Count |
|---|---|
| Small Business | 17 |
| Midsize Enterprise | 8 |
| Large Enterprise | 45 |
Splunk ITSI offers intelligent alerting, predictive analysis, customizable dashboards, and improves visibility and monitoring through Service Analyzer and Glass Tables. Event correlation enhances incident management, reducing alert fatigue, and improves mean time to resolution.
Splunk ITSI enables businesses to proactively monitor their IT environments by offering functionalities that reduce noise and provide enhanced visibility through sophisticated dashboards. Service Analyzer and Glass Tables facilitate the monitoring of KPIs, allowing for the prompt identification of potential issues. The platform's event correlation capabilities streamline incident management. Its scalability efficiently supports large data volumes, integrating diverse data resources while incorporating AI for predictive insights. Future improvements are sought in integration, documentation, and user-friendly interfaces, with an emphasis on simplifying configurations in expansive deployments.
What are the Key Features of Splunk ITSI?Industries leverage Splunk ITSI to monitor infrastructure and applications effectively, employing its Service Analyzer and KPI models. Especially in sectors requiring stringent incident management and predictive analytics, integrations like ServiceNow enable visual health assessments and automated anomaly detection, positioning ITSI as a manager of managers by enhancing IT operations with comprehensive reporting and alert correlations.
Sumo Logic Observability offers advanced monitoring solutions with features like integrated dashboards and querying capabilities, though presents a learning curve compared to alternatives. Designed for efficient log aggregation and analysis, it provides near-real-time updates facilitating improved incident resolution.
Sumo Logic Observability stands out with its ability to unify teams through a single platform, offering features that include customizable dashboards and valuable apps. It provides powerful log tracing and centralized management, designed for organizations focused on log aggregation, analysis, and expanding SIEM capabilities. While it has a steeper learning curve compared to some competitors, it excels in tailored integrations that enhance log searches. Users find themselves able to monitor, automate, and centralize log repositories for effective debugging. Despite its strengths, improvements in data enrichment and documentation organization are needed as current query functions can be slow, impacting efficiency. Users have also mentioned needing pre-built dashboards and better tab management for enhanced functionality. Cost management remains a notable consideration for users evaluating Sumo Logic Observability.
What features make Sumo Logic Observability effective?Sumo Logic Observability is implemented across industries predominantly for managing and analyzing extensive data sets, offering capabilities critical for SIEM activities and security examinations. By facilitating quick data visualization and transaction tracking, organizations in sectors such as finance, healthcare, and technology benefit from its robust framework to support infrastructure logging and large-scale data management, contributing to effective monitoring and system operations.
We monitor all Application Performance Monitoring (APM) and Observability reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.