We typically use Splunk to collect and check all the logs and events around the diverse network environment which includes, firewall, switches, and routers. For example, we have traffic that needs to go from one part of the network to another and if we think there is a firewall blocking it along the path, rather than log in to all the firewalls to see what is happening, we simply go into Splunk and the check traffic going across the parts of the network to see where it is being dropped and what is the likely reason it has been dropped.
Splunk Software and Solutions
Splunk
69 reviews
72 discussions
Log Management
Security Information and Event Ma...
IT Operations Analytics
Splunk Phantom
8 reviews
21 discussions
Security Orchestration Automation...
Splunk Cloud
7 reviews
19 discussions
Log Management
Splunk IT Service Intelligence (ITSI)
6 reviews
46 discussions
Application Performance Managemen...
IT Infrastructure Monitoring
Splunk User Behavior Analytics
3 reviews
23 discussions
Intrusion Detection and Preventio...
User Behavior Analytics - UEBA
Anomaly Detection Tools
SignalFx
1 review
18 discussions
IT Infrastructure Monitoring
Cloud Monitoring Software
Splunk Insights for Infrastructure
IT Infrastructure Monitoring
Splunk Reviews
Senior Network Engineer at a tech services company with 51-200 employees
Useful search function, beneficial session reports, but performance could improve
Pros and Cons
- "The most valuable features in Splunk are the search function and the ability to run selected session reports. The session reports are important because I can use them to see what is going on in our environment weekly. Additionally, we can use the graph to see how often that particular event is happening."
- "Over time I will have more requirements and I can foresee the solution could improve the search algorithm to run and output the data faster."
What is our primary use case?
How has it helped my organization?
Splunk has saved our organization time by resolving problems in a quicker timeframe. Before if we had networking issues we would have to log into every single device, check the firewall to see why the traffic is not going across to solve the problem. With Splunk, you only have a single pane of glass to check what is likely happening. This has enabled us to easily go to the right environment and write the necessary security policy to permit such traffic. It brings about faster resolution of problems reduced with visibility.
What is most valuable?
The most valuable features in Splunk are the search function and the ability to run selected session reports. The session reports are important because I can use them to see what is going on in our environment weekly. Additionally, we can use the graph to see how often that particular event is happening.
What needs improvement?
Over time I will have more requirements and I can foresee the solution could improve the search algorithm to run and output the data faster.
For how long have I used the solution?
I have been using Splunk for approximately six months.
What do I think about the stability of the solution?
We have been satisfied with the stability of the solution.
What do I think about the scalability of the solution?
Slunk scale very well.
We have approximately 50 people in our infrastructure and applications teams using this solution in my organization.
We plan to increase usage in the future.
How are customer service and technical support?
I have not needed to open a ticket up with technical support.
Which solution did I use previously and why did I switch?
Previously to using Splunk we only had some Syslog servers that we sent logs to. However, Syslog servers, do not analyze your logs, they only capturing them. Whereas, in Splunk, you can assess the logs and you can do other things with the log.
How was the initial setup?
I do not think the implementation is difficult.
What about the implementation team?
We have an internal team that does the maintenance of the solution.
Which other solutions did I evaluate?
I have evaluated DataDog.
What other advice do I have?
Splunk is easy to use and not having the need to log into every single network device for management is helpful.
I rate Splunk a seven out of ten.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Assistant Manager ICT - Projects at a financial services firm with 1,001-5,000 employees
Good visualization, reliable, scales well, and has good support
Pros and Cons
- "The additional vendors we've brought on board, particularly the elastic, have been quite beneficial."
- "The configuration had a bit of a learning curve."
What is our primary use case?
We are currently using it with SIEM, and SOAR which is Security Orchestration, Automation, and Response.
Splunk is primarily used for security, incident response, and security analytics.
How has it helped my organization?
Using Splunk, give us the visualization we need, we can easily observe things such as user behavior analytics, irregular traffic, frequency, and any spikes in unusual activity inside the network.
What is most valuable?
The additional vendors we've brought on board, particularly the Elastic, have been quite beneficial.
It's a solid platform.
What needs improvement?
Other than the pricing modules, I have no issues with the product itself.
The configuration had a bit of a learning curve.
I would like to learn more about the Cloud solution, but I'm aware that it's lacking some core applications.
If they could bring on more vendors, you would be able to monitor a larger number of applications. We could have visualization with other applications we have with the infrastructure in our organization.
For how long have I used the solution?
I did a POC, but we have recently procured it. We did a rudimentary setup to get an understanding of how it works. We are into our sixth month of using it now.
What do I think about the stability of the solution?
Splunk is a very stable solution.
What do I think about the scalability of the solution?
This solution is quite scalable.
In our organization, we have 10 users, who use this solution but we have plans to increase our usage.
How are customer service and support?
The technical support has been quite helpful.
Which solution did I use previously and why did I switch?
The previous solution was limited in its functionality.
We were looking at the additional controls that enterprise security may have, as well as visualization, to gain greater visibility.
Splunk offered us more visibility.
How was the initial setup?
The initial setup was complex.
We had some assistance with the actual deployment, but while I was doing the POC, I was working with a vendor. There were things I had to do myself, such as the configuration, which was a bit challenging for me, it was a big learning curve.
What about the implementation team?
For the installation, we received some assistance from the vendor.
What was our ROI?
It's too early to know if there will be a return on investment.
What's my experience with pricing, setup cost, and licensing?
The pricing modules could be improved.
The licensing fees are paid on a yearly basis.
There is a standard license with provisions for more. As we are still exploring the functionality, there may be other departments that want to use it.
What other advice do I have?
Those who are interested in implementing this solution should be prepared to dig deep into their pockets.
I would rate Splunk a nine out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Nov 28, 2021
Flag as inappropriateSplunk Questions

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Jul 05 2022
If you were talking to someone whose organization is considering Splunk Cloud, what would you say?
How would you rate it and why? Any other tips or advice?

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Jul 05 2022
Please share with the community what you think needs improvement with Splunk Cloud.
What are its weaknesses? What would you like to see changed in a future version?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Jul 05 2022
Hi,
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Jul 05 2022
Hi Everyone,
What do you like most about Splunk Cloud?
Thanks for sharing your thoughts with the community!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Jun 12 2022
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Thank you!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Jun 12 2022
Please share with the community what you think needs improvement with Splunk IT Service Intelligence (ITSI).
What are its weaknesses? What would you like to see changed in a future version?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Jun 02 2022
Hi Everyone,
What is your experience regarding pricing and costs for Splunk?
Thanks for sharing your thoughts with the community!

Jairo Willian PereiraCost versus volume in the medium/long term are heavy. It is a great tool but you… more »

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Jun 02 2022
If you were talking to someone whose organization is considering Splunk Phantom, what would you say?
How would you rate it and why? Any other tips or advice?

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Jun 02 2022
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Thank you!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Jun 02 2022
Please share with the community what you think needs improvement with Splunk Phantom.
What are its weaknesses? What would you like to see changed in a future version?

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Jun 02 2022
Hi,
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Jun 02 2022
Hi Everyone,
What do you like most about Splunk Phantom?
Thanks for sharing your thoughts with the community!

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
May 26 2022
If you were talking to someone whose organization is considering Splunk IT Service Intelligence (ITSI), what would you say?
How would you rate it and why? Any other tips or advice?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
May 26 2022
Hi,
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
May 26 2022
Hi Everyone,
What do you like most about Splunk IT Service Intelligence (ITSI)?
Thanks for sharing your thoughts with the community!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
May 16 2022
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Thank you!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Apr 29 2022
If you were talking to someone whose organization is considering SignalFx, what would you say?
How would you rate it and why? Any other tips or advice?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Apr 29 2022
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Thank you!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Apr 29 2022
Please share with the community what you think needs improvement with SignalFx.
What are its weaknesses? What would you like to see changed in a future version?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Apr 29 2022
Hi Everyone,
What do you like most about SignalFx?
Thanks for sharing your thoughts with the community!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Apr 12 2022
If you were talking to someone whose organization is considering Splunk Insights for Infrastructure, what would you say?
How would you rate it and why? Any other tips or advice?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Apr 12 2022
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Thank you!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Apr 12 2022
Please share with the community what you think needs improvement with Splunk Insights for Infrastructure.
What are its weaknesses? What would you like to see changed in a future version?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Apr 12 2022
Hi,
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Apr 12 2022
Hi Everyone,
What do you like most about Splunk Insights for Infrastructure?
Thanks for sharing your thoughts with the community!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Mar 29 2022
Hi Everyone,
What advice do you have for others considering Splunk?
Thanks for sharing your thoughts with the community!

Engineercb47Make sure it fits your use case. Be clear about what you want to achieve, get… more »

Tomi JuslinSplunk's website is quite useful. You can find a lot of information on it. I… more »

Gavan McLaughlinIt works well when searching logs. If you looked to try to do things beyond… more »

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Mar 29 2022
Hi Everyone,
What needs improvement with Splunk?
Thanks for sharing your thoughts with the community!

Shaveta DattaI would like to see them develop integration with the help of a rack rest API… more »

it_user762567The tool itself is very difficult to configure. It's great for its number of… more »

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Mar 29 2022
Hi Everyone,
What do you like most about Splunk?
Thanks for sharing your thoughts with the community!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Mar 02 2022
Hi Everyone,
What is your primary use case for Splunk?
Thanks for sharing your thoughts with the community!

Gregg Woodcock#1 is InfoSec
#2 is BI
#3 is IoT

Jairo Willian PereiraBusiness indicators (KPIs) for specific (and limited) purpose together IT area… more »

Shibu Babuchandran
Regional Manager/ Service Delivery Manager at ASPL INFO Services
Hi dear professionals,
How would you compare Securonix and Splunk as a SIEM enterprise solution?

Manoj GautamI believe when we built a solution for any customer SOC environment, we need to… more »

Netanya Carmi
Content Manager
PeerSpot (formerly IT Central Station)
Which is better and why?

Shibu BabuchandranHi @Netanya Carmi,
Below are some comparisons on features and Integrations.… more »

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
If you were talking to someone whose organization is considering Splunk User Behavior Analytics, what would you say?
How would you rate it and why? Any other tips or advice?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Thank you!

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Please share with the community what you think needs improvement with Splunk User Behavior Analytics.
What are its weaknesses? What would you like to see changed in a future version?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Hi,
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Hi Everyone,
What do you like most about Splunk User Behavior Analytics?
Thanks for sharing your thoughts with the community!

Netanya Carmi
Content Manager
PeerSpot (formerly IT Central Station)
Why?

David SwiftIt would really depend on (1) which logs you need to ingest and (2) what are… more »

Navin Rehnius
Security Engineer at a tech services company with 201-500 employees
Hi community members,
I'm a security engineer at a Tech Services company and I'm currently exploring SOC solutions, such as Rapid7 InsightIDR, Splunk, IBM QRadar and ArcSight Analytics.
Based on your experience, which SOC tool/solution would you recommend and why?

Kumar MahadevanI haven't used these big-name ones like Splunk etc. but I feel they're… more »

Jack CallaghanFor tools I’d recommend:
-SIEM- LogRhythm
-SOAR- Palo Alto XSOAR
Doing… more »

Jairo Willian PereiraApache Metron, ELK, OSSIM, Splunk and Qradar (in cost/benefit order for… more »

William Milton
User at VAE-MARMARA8
Hi peers,
I'm looking for a technical comparison between Splunk Phantom SOAR and FireEye SOAR solutions.
Can anyone help with the insights?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
If you were talking to someone whose organization is considering Splunk IT Service Intelligence (ITSI), what would you say?
How would you rate it and why? Any other tips or advice?

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Thank you!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Please share with the community what you think needs improvement with Splunk IT Service Intelligence (ITSI).
What are its weaknesses? What would you like to see changed in a future version?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Hi Everyone,
What do you like most about Splunk IT Service Intelligence (ITSI)?
Thanks for sharing your thoughts with the community!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
If you were talking to someone whose organization is considering Splunk User Behavior Analytics, what would you say?
How would you rate it and why? Any other tips or advice?

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Thank you!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Please share with the community what you think needs improvement with Splunk User Behavior Analytics.
What are its weaknesses? What would you like to see changed in a future version?

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Hi Everyone,
What do you like most about Splunk User Behavior Analytics?
Thanks for sharing your thoughts with the community!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
If you were talking to someone whose organization is considering Splunk Cloud, what would you say?
How would you rate it and why? Any other tips or advice?

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Thank you!

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Please share with the community what you think needs improvement with Splunk Cloud.
What are its weaknesses? What would you like to see changed in a future version?

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Hi,
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Hi Everyone,
What do you like most about Splunk Cloud?
Thanks for sharing your thoughts with the community!

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Hi,
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Hi,
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
If you were talking to someone whose organization is considering Splunk Insights for Infrastructure, what would you say?
How would you rate it and why? Any other tips or advice?

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Thank you!

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Please share with the community what you think needs improvement with Splunk Insights for Infrastructure.
What are its weaknesses? What would you like to see changed in a future version?

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Hi Everyone,
What do you like most about Splunk Insights for Infrastructure?
Thanks for sharing your thoughts with the community!

Miriam Tover
Senior Delivery Ops Manager
PeerSpot (formerly IT Central Station)
Hi community,
One of the most popular comparisons on IT Central Station is Dynatrace vs Splunk.
People like you are trying to decide which one is best for their company. Can you help them out?
What is the biggest difference between Dynatrace and Splunk? Which of these two solutions would you ... Read More »

Bernd HarzogThe two things are entirely different.
Splunk is primarily a log collection,… more »

informat792312Splunk and Dynatrace are two different solutions. Most organizations use both of… more »

Stacy NessIt really depends on the use case. Dynatrace can actually enrich the data… more »

Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Hi,
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.

Vivek Vijayan
DevOps Engineer at a tech company with 10,001+ employees
Hi Experts,
I'm a DevOps Engineer for a Tech Services company with 10,000+ employees.
I'm comparing ELK and Splunk. We're looking to use one solution to process logs for our IBM CLM application and for application server log analysis. Which of these two solutions would you recommend and why?
A... Read More »

reviewer1182204Generally Elastic is very strong in datasearch, and Splunk has a strong security… more »

Dirk BeckerFirst of all, we need to understand what those two softwares are; Splunk is a… more »

Norman FreitagWe use ELK or other freeware stacks in isolated small scenarios.
Think of a… more »

Nurit Sherman
Content Specialist
PeerSpot (formerly IT Central Station)
One of the most popular comparisons on IT Central Station is SolarWinds LEM vs Splunk.
One user says about SolarWinds LEM, "It allows us to monitor access and pull cyber reports quickly. No more searching through logs on each server. There was not much customization, which we had to do with Splu... Read More »

Johney ShadeComparing SolarWinds to Splunk is unwise. One responds to active monitoring… more »

Chingiz AbdukarimovI would prefer SolarWinds LEM for environments with high log volumes (e.g… more »

Nurit Sherman
Content Specialist
PeerSpot (formerly IT Central Station)
One of the most popular comparisons on PeerSpot (formerly IT Central Station) is IBM QRadar vs Splunk.
People like you are trying to decide which one is best for their company. Can you help them out?
Which of these two solutions would you recommend for Log Management? Why?
Thanks for helping... Read More »

it_user478128As all consultants say...it depends.
The elements I would factor in are:
1)… more »

it_user716313It depends on the intended purpose of the tool and the type of people… more »

Eduardo PerezI had been looking at the Security Analytics Platforms from the top right… more »

User at a comms service provider with 10,001+ employees
Which do you recommend, Phantom or Demisto Enterprise? Can you give examples of how those tools can eliminate manual work?

Claudia LoratI would not recommend Phantom or Demisto, but rather JASK! JASK is modernizing… more »

User at a tech services company with 10,001+ employees
From a few reviews I saw that Elastic Stack, which is an open source stack solution is gaining popularity.
Splunk has been in the market for quite some time but is commercial product.
Is it possible to replace Splunk with Elastic Stack?
If so, what are all the benefits we may ... Read More »

IT Manager at a healthcare company with 1,001-5,000 employees
Folks,
What are your experiences in using Splunk as an Enterprise Class monitoring solution in either the infrastructure or application performance monitoring spaces? How might it compare to a matured (or even not matured) instance of CA's suite inclusive of APM/Wily, CEM, ADA, and UIM?
Lo... Read More »

it_user536142Hi,
Well I will summarize my answer in the simplest possible way.
It all… more »

it_user708444Totally agree. Splunk is mainly an IT Ops Analytics solution (log manaegment… more »

Customer Success Manager at IT Central Station
Recently, our user activity has shown that Splunk is the most commonly searched solution on our site.
3,643 of our community members follow Splunk, and it's listed in five of our product categories: Log Management, Data Visualization, IT Operations Analytics, and Security Information and Event ... Read More »

Randall HindsI agree with Aaron & Tom on their points. Along their use cases, I have been… more »

it_user113184Good log management solution you can use if you know what you ae looking for… more »

it_user380727The flexibility that it offers, One of the most powerful features of Splunk is… more »

Avigail Sugarman
Community Manager at PeerSpot (formerly IT Central Station)
What are your experiences with these vendors/solutions? Pros and Cons?

it_user235365Hello ,
As someone who worked with Splunk, Arcsight and Qradar.
I am sorry but… more »

Avigail Sugarman
Community Manager at PeerSpot (formerly IT Central Station)
The Wall Street Journal this week reported on new additions to the Splunk App to enable easier, faster threat detection and containment by empowering users to assign risk scores to any data. The app also includes new features to help users connect and visualize data on the fly and introduces guid... Read More »
Popular Comparisons

ServiceNow

VMware

Microsoft

Palo Alto Networks

Veritas
Varonis

TIBCO

Tripwire

Progress Software

Fortinet

Quest Software

Trend Micro

Exabeam

Equinix

McAfee

Zscaler

AT&T