We performed a comparison between Splunk ITSI (IT Service Intelligence) and Sumo Logic Observability based on real PeerSpot user reviews.
Find out in this report how the two Application Performance Monitoring (APM) and Observability solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."ITSI's most valuable feature is that it's easy to integrate DLP."
"We have a lot of teams using Splunk and they would be blind without it."
"One of the excellent features is the service analyzer, which is truly impressive."
"Our mean time to detect is down to five minutes."
"Alerts and episodes are valuable to me."
"One particularly useful feature of Splunk ITSI is the ability to create custom services."
"The flexibility to develop and consolidate many solutions into one platform is great."
"The most valuable features are the agility, being able to ingest many data sources with no limitation on capacity."
"Sumo Logic Observability presents a range of valuable features, including well-crafted dashboards and a diverse selection of helpful apps. However, personally, I don't hold a favorable opinion of the solution. While I don't struggle with writing queries, my main difficulty lies in recruiting competent individuals and ensuring their proficiency in utilizing the solution. This often leads to additional challenges and complexities. From my perspective, when compared to Microsoft Sentinel or even Splunk, Sumo Logic Observability has a steeper learning curve. One contributing factor to this disparity is the solution's long existence in the market compared to Synlogic. Nevertheless, I acknowledge that there are capable and knowledgeable professionals employed at Sumo Logic Observability. The effectiveness of the solution largely depends on how it is integrated into your internal operations and environment. Its utility and benefits can vary significantly. It is worth noting that organizations like the NSA and, I believe, the CIA used it in the past, primarily for rapidly searching and analyzing large volumes of data. To leverage its capabilities effectively, you must determine how to tailor it to your specific needs."
"I have not seen any stability issues in the product."
"The product is easy to learn."
"Alerting and consistency are key. We have different tiers with log collectors, and continuous querying provides near-real-time updates. It's almost like instantly when something happens, like pending transactions or error fees. This helps reduce incident resolution time compared to waiting for thresholds on other platforms. We can continue logging in with them seamlessly and quickly get into action."
"The solution allows multiple groups to converge on a unified platform, allowing for different utilization by various teams."
"We have problems doing upgrades and operating alternate new versions."
"Integration is the most critical area to improve in Splunk IT Service Intelligence (ITSI). It wasn't a great experience because you had to do a little back and forth to integrate the solution."
"The license cost is expensive."
"Predictive analytics, in terms of preventing incidents before they occur, still needs time to mature."
"We experience occasional delays in receiving solutions from Splunk technical support. Splunk's support for P3 cases seems inadequate, as they frequently switch support personnel. For instance, in a single P3 case, we had three different technical support representatives assigned. We were ultimately forced to escalate the issue to our account manager to get it resolved. In essence, we never receive complete support from a single point of contact; instead, the support team keeps changing, necessitating us to explain the problem from scratch each time."
"We're using predictive analytics, and there are three or four algorithms. It would be helpful if this process were more standardized and scalable."
"We also faced challenges relating to UI development."
"After upgrading Splunk ITSI from version 4.11 to 4.13, the analyzer stopped finding values for KPS and services."
"Fine-grained data can be quite frustrating to work with and should be made easier."
"SearchUI.exe is a bit clunky in the product, making it an area where the product needs improvements."
"Implementing a more streamlined enrichment process, and conceptualizing the observability data collection as an ETL pipeline would be helpful."
"Documentation could be better. While it's generally good, sometimes finding what you need requires extensive searching. It's not always clear where to look for specific things."
More Splunk ITSI (IT Service Intelligence) Pricing and Cost Advice →
Splunk ITSI (IT Service Intelligence) is ranked 12th in Application Performance Monitoring (APM) and Observability with 30 reviews while Sumo Logic Observability is ranked 29th in Application Performance Monitoring (APM) and Observability with 5 reviews. Splunk ITSI (IT Service Intelligence) is rated 8.2, while Sumo Logic Observability is rated 8.0. The top reviewer of Splunk ITSI (IT Service Intelligence) writes "Provides great end-to-end visibility into our network environment and helped us reduce alert noise". On the other hand, the top reviewer of Sumo Logic Observability writes "Easy creation of custom fields, no need to alter applications; supports ten active logging applications simultaneously and faster than aster than default search tools". Splunk ITSI (IT Service Intelligence) is most compared with ServiceNow IT Operations Management, Grafana, Dynatrace, Splunk APM and BMC TrueSight Operations Management, whereas Sumo Logic Observability is most compared with Dynatrace, New Relic, Prometheus and Chronosphere. See our Splunk ITSI (IT Service Intelligence) vs. Sumo Logic Observability report.
See our list of best Application Performance Monitoring (APM) and Observability vendors.
We monitor all Application Performance Monitoring (APM) and Observability reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.