Find out what your peers are saying about Microsoft, Palo Alto Networks, Splunk and others in Security Orchestration Automation and Response (SOAR).
We've seen a decrease in false positives and a significant increase in our containment.
Discovering different troubleshooting methods is harder to do with Splunk SOAR than with Enterprise Security or other Splunk services.
Splunk's technical support is very good and generally not needed often due to the stable environment.
My experience with the technical support by Splunk has been quite positive
It can be extended and adapted as necessary.
Splunk SOAR has the ability to scale quite significantly.
We have not experienced any downtime, crashes, or performance issues.
Splunk SOAR provides a stable environment and technology.
It's been pretty reliable.
Splunk's Unified Platform does help consolidate networking security and IT observability tools.
Although it enhances alert handling, it still has a journey to compete with Palo Alto SOAR and FortiSOAR.
Splunk SOAR does not help me reduce my security event volume; in fact, it makes them massive.
I recall we couldn't upgrade because the sensor was not compatible, and the latest VMware Carbon Black Cloud version was not compatible with the latest Red Hat version.
Splunk SOAR is moderately priced, neither cheap nor overly expensive.
The solution is free for us, which is a beneficial aspect.
Splunk SOAR is affordable cost-wise only.
Creating playbooks using the Playbook Editor in Splunk SOAR is easy. The editor is designed to be user-friendly with visual drag and drop features, allowing for easy workflows without writing any code.
Splunk SOAR saves time in threat response, and the time to solve an incident is currently the best in the market.
The customization of the playbook in Splunk SOAR is very beneficial.
| Product | Market Share (%) |
|---|---|
| Splunk SOAR | 7.7% |
| Microsoft Sentinel | 15.9% |
| Palo Alto Networks Cortex XSOAR | 9.6% |
| Other | 66.8% |
| Product | Market Share (%) |
|---|---|
| VMware Carbon Black Cloud | 7.4% |
| Proofpoint Threat Response | 14.5% |
| ServiceNow Security Operations | 13.2% |
| Other | 64.9% |
| Company Size | Count |
|---|---|
| Small Business | 12 |
| Midsize Enterprise | 7 |
| Large Enterprise | 30 |
| Company Size | Count |
|---|---|
| Small Business | 5 |
| Midsize Enterprise | 4 |
| Large Enterprise | 8 |
Splunk SOAR offers features like automation and orchestration of manual tasks, speeding up work, detection and response to advanced and emerging threats.
Automate manual tasks. Address every alert, every day. Establish repeatable procedures that allow security analysts to stop being reactive and focus on mission-critical objectives to protect your business.
Orchestrate and automate repetitive tasks, investigation and response to increase efficiency and productivity, and do more with the people you already have. Make a team of three feel like a team of 10.
Work faster with Splunk SOAR. Respond to threats in seconds. Lower your mean time to respond (MTTR) by automating security tasks and workflows across all of your security tools.
Take advantage of Splunk Enterprise Security and Splunk SOAR joining forces to provide a seamless and intuitive SecOps platform to prevent, detect and respond to advanced and emerging threats.
Fortify Endpoint and Workload Protection
Legacy approaches fall short as cybercriminals update tactics and obscure their actions. Get advanced cybersecurity fueled by behavioral analytics to spot minor fluctuations and adapt in response.
Recognize New Threats
Analyze attackers’ behavior patterns to detect and stop never-before-seen attacks with continuous endpoint activity data monitoring. Don’t get stuck analyzing only what’s worked in the past.
Simplify Your Security Stack
Streamline the response to potential incidents with a unified endpoint agent and console. Minimize downtime responding to incidents and return critical CPU cycles back to the business.
We monitor all Security Orchestration Automation and Response (SOAR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
