This solution is very useful for our Infosec team that manages our enterprise-level security. It collects logs from all of our on-premises devices and servers for search and analysis. All of the logs are collected on-premises and then sent to Splunk Cloud for analysis.
We are a Splunk reseller and Splunk Cloud is one of the main products that we work with. Our customers implement this product for log management, application management, application testing, and process management. They also have it for customer service use cases.
Compared to other products, Splunk Cloud is expensive. The licensing is based on the amount of data that we send to the cloud on a daily basis. It is expensive, although it has more features than other SIEM tools.