We just raised a $30M Series A: Read our story
Cancel
You must select at least 2 products to compare!
Devo Logo
Read 11 Devo reviews.
11,163 views|4,399 comparisons
Splunk Logo
93,502 views|78,363 comparisons
Zabbix Logo
46,518 views|34,152 comparisons
Featured Review
Find out what your peers are saying about Splunk, IBM, Devo and others in Security Information and Event Management (SIEM). Updated: October 2021.
552,136 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"The most valuable feature is definitely the ability that Devo has to ingest data. From the previous SIEM that I came from and helped my company administer, it really was the type of system where data was parsed on ingest. This meant that if you didn't build the parser efficiently or correctly, sometimes that would bring the system to its knees. You'd have a backlog of processing the logs as it was ingesting them.""The ability to have high performance, high-speed search capability is incredibly important for us. When it comes to doing security analysis, you don't want to be doing is sitting around waiting to get data back while an attacker is sitting on a network, actively attacking it. You need to be able to answer questions quickly. If I see an indicator of attack, I need to be able to rapidly pivot and find data, then analyze it and find more data to answer more questions. You need to be able to do that quickly. If I'm sitting around just waiting to get my first response, then it ends up moving too slow to keep up with the attacker. Devo's speed and performance allows us to query in real-time and keep up with what is actually happening on the network, then respond effectively to events.""Being able to build and modify dashboards on the fly with Activeboards streamlines my analyst time because my analysts aren't doing it across spreadsheets or five different tools to try to build a timeline out themselves. They can just ingest it all, build a timeline out across all the logging, and all the different information sources in one dashboard. So, it's a huge time saver. It also has the accuracy of being able to look at all those data sources in one view. The log analysis, which would take 40 hours, we can probably get through it in about five to eight hours using Devo.""Those 400 days of hot data mean that people can look for trends and at what happened in the past. And they can not only do so from a security point of view, but even for operational use cases. In the past, our operational norm was to keep live data for only 30 days. Our users were constantly asking us for at least 90 days, and we really couldn't even do that. That's one reason that having 400 days of live data is pretty huge. As our users start to use it and adopt this system, we expect people to be able to do those long-term analytics.""Even if it's a relatively technical tool or platform, it's very intuitive and graphical. It's very appealing in terms of the user interface. The UI has a graphically interface with the raw data in a table. The table can be as big as you want it, depending on your use case. You can easily get a report combining your data, along with calculations and graphical dashboards. You don't need a lot of training, because the UI is relatively very intuitive.""It's very, very versatile.""One of the biggest features of the UI is that you see the actual code of what you're doing in the graphical user interface, in a little window on the side. Whatever you're doing, you see the code, what's happening. And you can really quickly switch between using the GUI and using the code. That's really useful.""The thing that Devo does better than other solutions is to give me the ability to write queries that look at multiple data sources and run fast. Most SIEMs don't do that. And I can do that by creating entity-based queries. Let's say I have a table which has Okta, a table which has G Suite, a table which has endpoint telemetry, and I have a table which has DNS telemetry. I can write a query that says, 'Join all these things together on IP, and where the IP matches in all these tables, return to me that subset of data, within these time windows.' I can break it down that way."

More Devo Pros »

"The solution allows easy gathering and ingestion of the data.""It allows us to digest the information, the data, the different data streams, so we can make decisions based upon information that we receive, and it is pretty robust.""The completeness of the solution is what we like the most.""The scalability of the solution is amazing because it can collect a lot of data and you can have your own structure to monitor this data.""Splunk is a user-friendly solution.""I have found the installation can be of medium difficulty to very complex depending on the use case.""The reporting aspect is good and it does what I need it to do.""The ability to analyze huge amounts of sales data and accurate prediction of sales forecasting is the most valuable feature."

More Splunk Pros »

"During my testing, the features that I like the most are that it can be integrated with my system, and it provides me with reports of all of my servers.""The initial setup was very quick. The first time it was long because I didn't know it yet. I was only using Windows. The first time was very difficult because of the operating system.""The integration capabilities and APIs are the best part.""The initial setup was not complex.""The solution's design has recently changed and it is visually pleasing with more color, for example, there is blue, black, and white.""It has an intuitive UI with beautiful graphs and customizable maps.""The pricing of the product is reasonable.""The flexibility of this solution is amazing."

More Zabbix Pros »

Cons
"Some third-parties don't have specific API connectors built, so we had to work with Devo to get the logs and parse the data using custom parsers, rather than an out-of-the-box solution.""Devo has a lot of cloud connectors, but they need to do a little bit of work there. They've got good integrations with the public cloud, but there are a lot of cloud SaaS systems that they still need to work with on integrations, such as Salesforce and other SaaS providers where we need to get access logs.""Their documentation could be better. They are growing quickly and need to have someone focused on tech writing to ensure that all the different updates, how to use them, and all the new features and functionality are properly documented.""There is room for improvement in the ability to parse different log types. I would go as far as to say the product is deficient in its ability to parse multiple, different log types, including logs from major vendors that are supported by competitors. Additionally, the time that it takes to turn around a supported parser for customers and common log source types, which are generally accepted standards in the industry, is not acceptable. This has impacted customer onboarding and customer relationships for us on multiple fronts.""There's room for improvement within the GUI. There is also some room for improvement within the native parsers they support. But I can say that about pretty much any solution in this space.""There's always room to reduce the learning curve over how to deal with events and machine data. They could make the machine data simpler.""One major area for improvement for Devo... is to provide more capabilities around pre-built monitoring. They're working on integrations with different types of systems, but that integration needs to go beyond just onboarding to the platform. It needs to include applications, out-of-the-box, that immediately help people to start monitoring their systems. Such applications would include dashboards and alerts, and then people could customize them for their own needs so that they aren't starting from a blank slate.""I would like to have the ability to create more complex dashboards."

More Devo Cons »

"It needs integration with a configuration management solution.""Splunk needs to be able to hold more days of data. At the moment it only holds three months of data.""It's difficult to set up initially, and their billing model is also a bit complicated.""If you monitor too much, you can lose performance on your systems.""Deployment is not difficult but the lock sources and configurations can take time.""The solution could improve by giving more email details.""We find that the maintenance process could be a lot better.""There are a lot of competitive products that are doing better than what Splunk is doing on the analytics side."

More Splunk Cons »

"The user interface could be a bit better. They could update it a bit.""The stability could be better.""In an upcoming release, there should be automated reports which we are currently doing manually. For example, if we collect a report file every day and want to send it to a moderator for review. We are expecting this feature to come out soon but it would be valuable to have now.""Documentation terminology could be improved.""Implementation is always tailored to the customer and the kind of information we need from the client to carry it out can make them very uncomfortable. Sometimes the clients are not ready to share it.""Its UI should be improved. They did some improvements in version 5, but it could benefit from some more work. Its integrations should also be improved. They've been active for one year, and they seem to have noticed that. It has new integrations, but it could benefit from more integrations. As far as I know, there is no model to push statistics, metrics, or events towards Zabbix. This type of API isn't yet there, whereas some other tools provide an API for this.""Correlation of events would be a wonderful addition.""The graphical user interface could be customized a little bit more, and also the dashboard could be more friendly."

More Zabbix Cons »

Pricing and Cost Advice
"It's a per gigabyte cost for ingestion of data. For every gigabyte that you ingest, it's whatever you negotiated your price for. Compared to other contracts that we've had for cloud providers, it's significantly less.""I'm not involved in the financial aspect, but I think the licensing costs are similar to other solutions. If all the solutions have a similar cost, Devo provides more for the money.""We have an OEM agreement with Devo. It is very similar to the standard licensing agreement because we are charged in the same way as any other customer, e.g., we use the backroom.""Our licensing fees are billed annually and per terabyte.""Devo was very cost-competitive... Devo did come with that 400 days of hot data, and that was not the case with other products.""Be cautious of metadata inclusion for log types in pricing, as there are some "gotchas" with that.""Devo is definitely cheaper than Splunk. There's no doubt about that. The value from Devo is good. It's definitely more valuable to me than QRadar or LogRhythm or any of the old, traditional SIEMs.""[Devo was] in the ballpark with at least a couple of the other front-runners that we were looking at. Devo is a good value and, given the quality of the product, I would expect to pay more."

More Devo Pricing and Cost Advice »

"The price is comparable.""Price-wise, if you compare QRadar to Splunk for SIEM functionality then they are in the same range but when you integrate SOAR with these solutions, Splunk takes the lead and is more competitive.""The subscription is monthly.""Its pricing model can be improved.""It can be cost-prohibitive when you start to scale and have terabytes of data. Its cost model is based on how much data it processes a day. If they're able to create scaled-down niche or custom package offerings, it may help with the cost. Instead of the full-blown features, if they can narrow the scope where it can only be used for a specific purpose, it would kind of create that market for the product, and it may help with the costing. When you start using it as a central aggregator and you're pumping tons of logs at it, pretty soon, you'll start hitting your cap on what it can process a day. Once you've got that, you're kind of defeating the purpose because you're going to have to scale back.""Our customers often complain that the price of Splunk is too high.""It's a yearly subscription.""I think that most of the log analytics solutions are expensive and I'm not sure if it's worth it."

More Splunk Pricing and Cost Advice »

"We are using the free, open-source version.""Zabbix is free but if you use it in production then you have to pay for it.""We were searching for an open source solution and Zabbix fit the bill because it is free and open source under the GPL license.""I was using the free, Community Edition.""There is no license but we need to pay for support.""It is open source. If you want to have a subscription or official support, you can pay for it. They have different plans, which are not that expensive. The plans are based on per monitoring server, not per monitored equipment. So, it is not at all expensive, and you can also live without the support if you want a cheaper option.""This solution is completely open-source, so it is quite affordable.""Zabbix is open-source so if one wishes to implement it in-house, they must have qualified professionals to set up and optimize databases, Linux/Unix OS, PHP, Apache, and depending on what is monitored, a full-stack network and systems administrator may be needed."

More Zabbix Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
552,136 professionals have used our research since 2012.
Questions from the Community
Top Answer: It's very, very versatile.
Top Answer: Devo, like other vendors, doesn't charge extra for playbooks and automation. That way, you are only paying for the side… more »
Top Answer: I need more empowerment in reporting. For example, when I'm using Qlik or Power BI in terms of reporting for the… more »
Top Answer: It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for… more »
Top Answer: Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring… more »
Top Answer: The reporting aspect is good and it does what I need it to do.
Top Answer: We are able to monitor our virtual infrastructure, virtual machines, windows servers, databases, and the network using a… more »
Top Answer: The solution is free to use but they offer support as a paid service. If you can go read the manuals and do the… more »
Top Answer: Zabbix does not draw automatic mapping of the network, this is something they should add in the future. There is a lot… more »
Comparisons
Compared 12% of the time.
Compared 8% of the time.
Compared 5% of the time.
Compared 4% of the time.
Compared 4% of the time.
Compared 6% of the time.
Compared 6% of the time.
Compared 5% of the time.
Compared 4% of the time.
Compared 3% of the time.
Compared 12% of the time.
Compared 10% of the time.
Compared 6% of the time.
Compared 6% of the time.
Compared 4% of the time.
Also Known As
Splunk Enterprise Security
Learn More
Overview

Devo is the only cloud-native logging and security analytics platform that releases the full potential of all your data to empower bold, confident action when it matters most. Only the Devo platform delivers the powerful combination of real-time visibility, high-performance analytics, scalability, multitenancy, and low TCO crucial for monitoring and securing business operations as enterprises accelerate their shift to the cloud.

Splunk software has been around since 2006 and the company has since grown to become an industry leader. Splunk's vision is to make machine data accessible, usable and valuable to everybody. The company offers a wide range of products to turn machine data into valuable information by monitoring and analyzing all activities. This is known as Operational Intelligence and is the unique value proposition of Splunk.

Splunk is well-known for its Log Management capabilities and also for its Security Information and Event Management (SIEM) solutions.

Zabbix is the ultimate enterprise-level software designed for real-time monitoring of millions of metrics collected from tens of thousands of servers, virtual machines and network devices. Zabbix is Open Source and comes at no cost.

Offer
See Devo in Action

See how Devo allows you to free yourself from data management, and make machine data and insights accessible.

Learn more about Splunk
Learn more about Zabbix
Sample Customers
United States Air Force, Rubrik, SentinelOne, Critical Start, NHL, Panda Security, Telefonica, CaixaBank, OpenText, IGT, OneMain Financial, SurveyMonkey, FanDuel, H&R Block, Ulta Beauty, Manulife, Moneylion, Chime Bank, Magna International, American Express Global Business Travel
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Bodybuilding.com, LLC., ITtelligent Consulting Services,Eltele AS, Total Server Solutions, LLC., ChinaNetCloud
Top Industries
VISITORS READING REVIEWS
Computer Software Company28%
Comms Service Provider20%
Government8%
Financial Services Firm7%
REVIEWERS
Financial Services Firm19%
Energy/Utilities Company12%
Computer Software Company11%
Retailer7%
VISITORS READING REVIEWS
Computer Software Company27%
Comms Service Provider18%
Financial Services Firm10%
Government7%
REVIEWERS
Computer Software Company17%
Comms Service Provider10%
Manufacturing Company7%
Aerospace/Defense Firm7%
VISITORS READING REVIEWS
Comms Service Provider31%
Computer Software Company24%
Government7%
Financial Services Firm5%
Company Size
REVIEWERS
Small Business17%
Midsize Enterprise17%
Large Enterprise67%
VISITORS READING REVIEWS
Small Business48%
Midsize Enterprise15%
Large Enterprise36%
REVIEWERS
Small Business30%
Midsize Enterprise15%
Large Enterprise55%
VISITORS READING REVIEWS
Small Business25%
Midsize Enterprise18%
Large Enterprise57%
REVIEWERS
Small Business47%
Midsize Enterprise22%
Large Enterprise31%
VISITORS READING REVIEWS
Small Business14%
Midsize Enterprise49%
Large Enterprise36%
Find out what your peers are saying about Splunk, IBM, Devo and others in Security Information and Event Management (SIEM). Updated: October 2021.
552,136 professionals have used our research since 2012.

Splunk is ranked 1st in Security Information and Event Management (SIEM) with 45 reviews while Zabbix is ranked 1st in Network Monitoring Software with 38 reviews. Splunk is rated 8.0, while Zabbix is rated 8.0. The top reviewer of Splunk writes "Good support with an intuitive dashboard but the cost is too high". On the other hand, the top reviewer of Zabbix writes "Very mature, easy to scale, and free to use". Splunk is most compared with Dynatrace, Datadog, IBM QRadar, ELK Logstash and Fortinet FortiAnalyzer, whereas Zabbix is most compared with Nagios XI, Centreon, SolarWinds NPM, Nagios Core and PRTG Network Monitor.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.