Try our new research platform with insights from 80,000+ expert users

Splunk Enterprise Security vs WhatsUp Gold comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.5
Number of Reviews
318
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
WhatsUp Gold
Average Rating
7.8
Reviews Sentiment
7.4
Number of Reviews
24
Ranking in other categories
Application Performance Monitoring (APM) and Observability (26th), Network Monitoring Software (27th), Server Monitoring (15th), IT Infrastructure Monitoring (29th)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. Splunk Enterprise Security is designed for Security Information and Event Management (SIEM) and holds a mindshare of 9.4%, down 12.1% compared to last year.
WhatsUp Gold, on the other hand, focuses on Application Performance Monitoring (APM) and Observability, holds 0.5% mindshare, up 0.4% since last year.
Security Information and Event Management (SIEM)
Application Performance Monitoring (APM) and Observability
 

Featured Reviews

ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.
Tom Condo - PeerSpot reviewer
If CPU, memory, or disk space is over-utilized, it alerts us immediately via text or email if there is an issue
When it comes to the intuitiveness of the topology mapping feature, our network architect created a vision diagram of our entire network and then created the links tied into the WhatsUp active monitoring to different spots on our topology map. It's one of the more critical functions we do here. We have the map displayed in different places in our room and help desk. We get alerted via emails but we can also see it visually. It does what it says it's going to do. We find this feature very helpful. The interactive mapping interface for scrolling, zooming, and drilling down on an element to learn about a network issue is good. When we see a network there will sometimes be a spot that has one link. You can go into a particular part of the topology map, scroll in, and see exactly which module it is. All the information is provided. This feature really helps. You can see the correlation between that link and what failed. This feature is very helpful. The interface is fairly intuitive. Some of our users used SolarWinds and Nagios, and WhatsUp is easy in comparison. Once you get set up, the look, feel, and configuration are good. Our network architect had never used it before but he was able to create the Visio and map. It was very simple. He has no problems with it.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most useful feature for me is the ability to create different kinds of alerts and set a different kind of denominator that will capture the real event. That is helpful for a power user like me."
"Splunk Enterprise Security helped improve our organization’s ability to ingest and normalize data."
"Deployment server for deploying changes in one go."
"There are quite a lot of things that we find useful. Splunk agents are useful and good. Its UI is quite impressive."
"My customer was integrated with many third-party credentials and other threat sources as well. The integration part was seamless and easy. The rates for allocating valuable information and IOCs from different sources are also good."
"It helps us uncover bottlenecks in the network."
"The search lookups are useful."
"The log aggregation is great."
"The threshold alerting is the most valuable feature."
"The tool's most valuable feature is the visibility it offers of everything in the network and infrastructure."
"Auto scanning is most valuable. It looks for rogue devices on your network."
"The product is reasonably priced."
"NetFlow monitoring, real-time monitoring, and surveys have been the most valuable features for our business."
"I use it on premises to monitor my network database. We monitor the link up/down and use the SNMP traps as well."
"The most valuable feature is the monitoring of resources."
"It is stable."
 

Cons

"It would be nice to have more advanced UEBA in Splunk Enterprise Security. Additionally, it would be beneficial if they offered more threat intel feeds for free."
"It works as intended for us, and we are getting everything that we need out of it. If anything, its initial setup can be improved a bit."
"It can be tough to determine if you are getting all of the value out of your investment at times."
"Being a SIEM solution with a centralized dashboard, we would like to have more options to customize it."
"The threat detection system has room for improvement."
"Spam has different plugins but by default, the logs are not organized, it shows that there are roll-ups that are out of the box. I saw many plugins that can help improve or extend Splunk's functionality but I haven't tried any of them."
"The UI could be better. This is applicable to Splunk in general. I know that a lot of people who get their hands on Splunk are hesitant to use it just because they find it overwhelming. There are a lot of options."
"Features related to content management must be improved."
"Adding on services increases the cost and on the version we have there is no option for ATM monitoring."
"The new release cadence needs to be improved. It takes a while for them to add new features and functionality. There should be a quicker turnaround with new versions."
"I think there are a few bugs now. Although they give some resolution for this, we cannot share the network remotely because of our company policy."
"The interface needs some work."
"Improvements are needed in integration, especially for WhatsApp call and messages. Our region heavily uses WhatsApp Messenger for communication, and integration with this platform would be beneficial."
"The product is old and not updated."
"I would like to see them do an enhancement to the application monitoring. A lot of other products do better application monitoring so they should do some improvements to the application monitoring."
"You have to invest a few days to become an expert in this solution."
 

Pricing and Cost Advice

"Splunk is priced higher than other solutions."
"Splunk licensing model might seem expensive but with all the gain in functionalities you will have compared to traditional SIEM solutions I think it’s worth the price."
"It is quite expensive."
"It's definitely worth it."
"I have no opinion on pricing."
"I believe there is room for improvement in reducing costs, particularly in the financial aspect, as Splunk tends to be pricier compared to other options."
"Splunk is definitely not a cheap solution. It is an expensive product."
"Splunk Enterprise Security is expensive but the solution is equipped with a lot of features."
"The tool's price is reasonable. WhatsUp Gold is cheaper than SolarWinds."
"The choice of version depends on the number of points, or devices, that you want to monitor, and this makes the product expensive."
"I'm not sure, but it's expensive. We don't pay any additional fees."
"The price of WhatsUp Gold is good."
"The most valuable feature is the cost compared to other solutions."
"This is a well priced solution."
"There are some subscription charges that are quite heavy. I need to pay for support every year and these charges can be quite expensive. Aside from the initial cost for the tool, you need to pay additionally for support."
"It is per device, per year. The pricing is very clear. If you have a service agreement, you get all of your major upgrades and minor upgrades. It was under $10,000 to go all-in with all of the different add-ons for it."
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
861,803 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
14%
Computer Software Company
14%
Manufacturing Company
8%
Government
7%
Computer Software Company
12%
Manufacturing Company
11%
Financial Services Firm
11%
Government
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
What do you like most about WhatsUp Gold?
The interactive mapping interface for scrolling, zooming, and drilling down on an element to learn about a network issue is good. When we see a network there will sometimes be a spot that has one l...
What is your experience regarding pricing and costs for WhatsUp Gold?
Clients find the licensing calculator confusing, but we simplify this for them by collecting relevant information first. The licensing is based on devices, providing better cost-effectiveness than ...
What needs improvement with WhatsUp Gold?
Improvements are needed in integration, especially for WhatsApp call and messages. Our region heavily uses WhatsApp Messenger for communication, and integration with this platform would be benefici...
 

Overview

 

Sample Customers

Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Artoni Trasporti, Austin Independent School District, Banca Marche, Burke County North Carolina, Cambridge University School of Clinical Medicine, Clayco, Community Integrated Care, Desca, Deutsche Bergbau, Flexi-Van, Gropper, Hamleys, Hammonds Furniture, Knowledge IT, Idras S.P.A., Sibeg, Swann Engineering, Trivium Lindenhof
Find out what your peers are saying about Splunk Enterprise Security vs. WhatsUp Gold and other solutions. Updated: May 2023.
861,803 professionals have used our research since 2012.