Splunk Enterprise Security Pros review quotes

Rishabh Gandhi - PeerSpot reviewer
Senior Security Analyst at Inspira Enterprise India Pvt. Ltd.
Sep 6, 2023
Our clients use the solution to find any threats or vulnerabilities inside their environment.
SC
CSO at a manufacturing company with 1,001-5,000 employees
Aug 11, 2023
The most valuable features include agility and Splunk Enterprise Security's ability to quickly search for alerted items, as well as the capacity to create custom alerts using the SQL language employed by Splunk.
LC
Security Engineer at a recreational facilities/services company with 10,001+ employees
Dec 22, 2021
The feature that I have found most valuable with Splunk is the ability to sift through a bunch of data very quickly.
Learn what your peers think about Splunk Enterprise Security. Get advice and tips from experienced pros sharing their opinions. Updated: September 2023.
734,678 professionals have used our research since 2012.
PW
Director of Security Engineering and Operations at a legal firm with 1,001-5,000 employees
May 11, 2023
The varied prebuilt feature is the most valuable because it ensures that we have complete coverage over all of the key questions.
TB
Sr Cybersecurity Engineer at a energy/utilities company with 10,001+ employees
Jul 20, 2023
The correlation searches are most valuable just because we are able to do things like RBA.
Praveen-Kadali - PeerSpot reviewer
Senior Consultant at Ernst & Young
Jul 13, 2023
Recently, Splunk upgraded to version 9.0.02, which includes excellent data dashboards and visualization effects.
CF
Lead Solutions Architect at a government with 10,001+ employees
Jul 19, 2023
We saw the granularity that we could get from Splunk far exceeded what we already had. We had the ability to have our security team really focus on the platform and stay within the platform, but they could correlate with a variety of other stakeholders, and our stakeholders were growing.
AG
Chief Cybersecurity Architect at a security firm with 201-500 employees
Sep 11, 2023
The ability to digest any information and then correlate it in accordance with what you need is valuable. The ability to connect to pretty much everything and bring the information in the same format is also valuable. On top of that, we can use their language in order to create and customize the dashboards, correlations, or analytics that we want to incorporate.
JC
Cyber Security at a financial services firm with 5,001-10,000 employees
Jul 20, 2023
Integration with the cloud is pretty important and good for us. We found the integration with a lot of tools, not all tools yet, valuable. It does make the transfer of data, log files, and other things easier for us.
Donald Baldwin - PeerSpot reviewer
Principal Enterprise Architect at Aurenav Sweden AB
Nov 5, 2021
The reporting aspect is good and it does what I need it to do.

Splunk Enterprise Security Cons review quotes

Rishabh Gandhi - PeerSpot reviewer
Senior Security Analyst at Inspira Enterprise India Pvt. Ltd.
Sep 6, 2023
It would be great if I could have a certain dialogue box in Splunk that uses innovative AI tools like ChatGPT, which are available now in the tech department.
SC
CSO at a manufacturing company with 1,001-5,000 employees
Aug 11, 2023
Splunk could enhance its services by providing more comprehensive professional assistance aimed at optimizing our investment.
LC
Security Engineer at a recreational facilities/services company with 10,001+ employees
Dec 22, 2021
Their technical support sucks.
Learn what your peers think about Splunk Enterprise Security. Get advice and tips from experienced pros sharing their opinions. Updated: September 2023.
734,678 professionals have used our research since 2012.
PW
Director of Security Engineering and Operations at a legal firm with 1,001-5,000 employees
May 11, 2023
It is important to make sure that everything is built off of the threat models and all the underlying items within Splunk.
TB
Sr Cybersecurity Engineer at a energy/utilities company with 10,001+ employees
Jul 20, 2023
The UI could be better. This is applicable to Splunk in general. I know that a lot of people who get their hands on Splunk are hesitant to use it just because they find it overwhelming. There are a lot of options.
Praveen-Kadali - PeerSpot reviewer
Senior Consultant at Ernst & Young
Jul 13, 2023
We will receive alerts only for the administrators and deployment servers, but not for all servers.
CF
Lead Solutions Architect at a government with 10,001+ employees
Jul 19, 2023
We were inundated with the amount of alerts and alarms that we could get out of it. It is also a resource hog and we didn't have the resources to support it on-prem so we're taking it offline now.
AG
Chief Cybersecurity Architect at a security firm with 201-500 employees
Sep 11, 2023
They can incorporate the SOAR solution within the actual product so that we do not require two different products, two different installations, and two different pricing methods. In regards to UBA, I am familiar with the UBA that existed two years ago. I am not updated about it today, but two years ago, UBA required such an amount of data that from a cost perspective, it was not worth it. When you compare it to what you get out of the box with Microsoft Sentinel without additional costs, there is no match.
JC
Cyber Security at a financial services firm with 5,001-10,000 employees
Jul 20, 2023
Its pricing is extremely high. There are other tools out in the market that are competitive. They do not necessarily have all the functionality, but they are competitive. The professional services we have used have been high as well in comparison to the market.
Donald Baldwin - PeerSpot reviewer
Principal Enterprise Architect at Aurenav Sweden AB
Nov 5, 2021
If you monitor too much, you can lose performance on your systems.