We just raised a $30M Series A: Read our story

Splunk Reviews

ID
Senior Network Engineer at a tech services company with 51-200 employees
Real User
Top 20
Useful search function, beneficial session reports, but performance could improve

Pros and Cons

  • "The most valuable features in Splunk are the search function and the ability to run selected session reports. The session reports are important because I can use them to see what is going on in our environment weekly. Additionally, we can use the graph to see how often that particular event is happening."
  • "Over time I will have more requirements and I can foresee the solution could improve the search algorithm to run and output the data faster."

What is our primary use case?

We typically use Splunk to collect and check all the logs and events around the diverse network environment which includes, firewall, switches, and routers. For example, we have traffic that needs to go from one part of the network to another and if we think there is a firewall blocking it along the path, rather than log in to all the firewalls to see what is happening, we simply go into Splunk and the check traffic going across the parts of the network to see where it is being dropped and what is the likely reason it has been dropped.

How has it helped my organization?

Splunk has saved our organization time by resolving problems in a quicker timeframe. Before if we had networking issues we would have to log into every single device, check the firewall to see why the traffic is not going across to solve the problem. With Splunk, you only have a single pane of glass to check what is likely happening. This has enabled us to easily go to the right environment and write the necessary security policy to permit such traffic. It brings about faster resolution of problems reduced with visibility.

What is most valuable?

The most valuable features in Splunk are the search function and the ability to run selected session reports. The session reports are important because I can use them to see what is going on in our environment weekly. Additionally, we can use the graph to see how often that particular event is happening.

What needs improvement?

Over time I will have more requirements and I can foresee the solution could improve the search algorithm to run and output the data faster.

For how long have I used the solution?

I have been using Splunk for approximately six months.

What do I think about the stability of the solution?

We have been satisfied with the stability of the solution.

What do I think about the scalability of the solution?

Slunk scale very well.

We have approximately 50 people in our infrastructure and applications teams using this solution in my organization.

We plan to increase usage in the future.

How are customer service and technical support?

I have not needed to open a ticket up with technical support. 

Which solution did I use previously and why did I switch?

Previously to using Splunk we only had some Syslog servers that we sent logs to. However, Syslog servers, do not analyze your logs, they only capturing them. Whereas, in Splunk, you can assess the logs and you can do other things with the log.

How was the initial setup?

I do not think the implementation is difficult.

What about the implementation team?

We have an internal team that does the maintenance of the solution.

Which other solutions did I evaluate?

I have evaluated DataDog.

What other advice do I have?

Splunk is easy to use and not having the need to log into every single network device for management is helpful.

I rate Splunk a seven out of ten.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate

Splunk Questions

Netanya Carmi
Content Manager
IT Central Station
Nov 17 2021

Which is better and why?

Shibu BabuchandranHi @Netanya Carmi​, Below are some comparisons on features and Integrations.… more »
Julia Frohwein
Content and Social Media Manager
IT Central Station
Nov 05 2021

Hi Everyone,

What advice do you have for others considering Splunk?

Thanks for sharing your thoughts with the community!

Engineercb47Make sure it fits your use case. Be clear about what you want to achieve, get… more »
Tomi JuslinSplunk's website is quite useful. You can find a lot of information on it. I… more »
Gavan McLaughlinIt works well when searching logs. If you looked to try to do things beyond… more »
Miriam Tover
Content Specialist
IT Central Station
Nov 05 2021

Hi Everyone,

What needs improvement with Splunk?

Thanks for sharing your thoughts with the community!

Shaveta DattaI would like to see them develop integration with the help of a rack rest API… more »
Direct9887The tool itself is very difficult to configure. It's great for its number of… more »
Mui TranIf possible, we would like to have not only a log monitoring system but a… more »
Julia Frohwein
Content and Social Media Manager
IT Central Station
Nov 05 2021

Hi Everyone,

What is your experience regarding pricing and costs for Splunk?

Thanks for sharing your thoughts with the community!

Jairo Willian PereiraCost versus volume in the medium/long term are heavy. It is a great tool but you… more »
Miriam Tover
Content Specialist
IT Central Station
Nov 05 2021

Hi Everyone,

What do you like most about Splunk?

Thanks for sharing your thoughts with the community!

Julia Frohwein
Content and Social Media Manager
IT Central Station
Oct 28 2021

If you were talking to someone whose organization is considering Splunk User Behavior Analytics, what would you say?

How would you rate it and why? Any other tips or advice?

Julia Frohwein
Content and Social Media Manager
IT Central Station
Oct 28 2021

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

Miriam Tover
Content Specialist
IT Central Station
Oct 28 2021

Please share with the community what you think needs improvement with Splunk User Behavior Analytics.

What are its weaknesses? What would you like to see changed in a future version?

Julia Frohwein
Content and Social Media Manager
IT Central Station
Oct 28 2021

Hi,

We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

Julia Frohwein
Content and Social Media Manager
IT Central Station
Oct 28 2021

Hi Everyone,

What do you like most about Splunk User Behavior Analytics?

Thanks for sharing your thoughts with the community!

Julia Frohwein
Content and Social Media Manager
IT Central Station
Oct 22 2021

Hi Everyone,

What is your primary use case for Splunk?

Thanks for sharing your thoughts with the community!

Gregg Woodcock#1 is InfoSec #2 is BI #3 is IoT
Jairo Willian PereiraBusiness indicators (KPIs) for specific (and limited) purpose together IT area… more »
Julia Frohwein
Content and Social Media Manager
IT Central Station
Sep 09 2021

If you were talking to someone whose organization is considering Splunk Cloud, what would you say?

How would you rate it and why? Any other tips or advice?

Julia Frohwein
Content and Social Media Manager
IT Central Station
Sep 09 2021

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

Miriam Tover
Content Specialist
IT Central Station
Sep 09 2021

Please share with the community what you think needs improvement with Splunk Cloud.

What are its weaknesses? What would you like to see changed in a future version?

Julia Frohwein
Content and Social Media Manager
IT Central Station
Sep 09 2021

Hi,

We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

Julia Frohwein
Content and Social Media Manager
IT Central Station
Sep 09 2021

Hi Everyone,

What do you like most about Splunk Cloud?

Thanks for sharing your thoughts with the community!

Netanya Carmi
Content Manager
IT Central Station
Sep 01 2021

Why?

David SwiftIt would really depend on (1) which logs you need to ingest and (2) what are… more »
Navin Rehnius
Security Engineer at a tech services company with 201-500 employees
Aug 10 2021

Hi community members,

I'm a security engineer at a Tech Services company and I'm currently exploring SOC solutions, such as Rapid7 InsightIDR, Splunk, IBM QRadar and ArcSight Analytics.

Based on your experience, which SOC tool/solution would you recommend and why?

Kumar MahadevanI haven't used these big-name ones like Splunk etc. but I feel they're… more »
Jairo Willian PereiraApache Metron, ELK, OSSIM, Splunk and Qradar (in cost/benefit order for… more »
Jack CallaghanFor tools I’d recommend:  -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing… more »
Julia Frohwein
Content and Social Media Manager
IT Central Station

If you were talking to someone whose organization is considering Splunk Phantom, what would you say?

How would you rate it and why? Any other tips or advice?

Miriam Tover
Content Specialist
IT Central Station

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

Julia Frohwein
Content and Social Media Manager
IT Central Station

Please share with the community what you think needs improvement with Splunk Phantom.

What are its weaknesses? What would you like to see changed in a future version?

Miriam Tover
Content Specialist
IT Central Station

Hi,

We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

Julia Frohwein
Content and Social Media Manager
IT Central Station

Hi Everyone,

What do you like most about Splunk Phantom?

Thanks for sharing your thoughts with the community!

William Milton
User at VAE-MARMARA8

Hi, I'm looking for a technical comparison between Splunk Phantom SOAR and FireEye SOAR solutions.

Can anyone help with insights?

Miriam Tover
Content Specialist
IT Central Station

If you were talking to someone whose organization is considering Splunk IT Service Intelligence (ITSI), what would you say?

How would you rate it and why? Any other tips or advice?

Julia Frohwein
Content and Social Media Manager
IT Central Station

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

Julia Frohwein
Content and Social Media Manager
IT Central Station

Please share with the community what you think needs improvement with Splunk IT Service Intelligence (ITSI).

What are its weaknesses? What would you like to see changed in a future version?

Miriam Tover
Content Specialist
IT Central Station

Hi Everyone,

What do you like most about Splunk IT Service Intelligence (ITSI)?

Thanks for sharing your thoughts with the community!

Julia Frohwein
Content and Social Media Manager
IT Central Station

If you were talking to someone whose organization is considering Splunk IT Service Intelligence (ITSI), what would you say?

How would you rate it and why? Any other tips or advice?

Miriam Tover
Content Specialist
IT Central Station

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

Julia Frohwein
Content and Social Media Manager
IT Central Station

Please share with the community what you think needs improvement with Splunk IT Service Intelligence (ITSI).

What are its weaknesses? What would you like to see changed in a future version?

Julia Frohwein
Content and Social Media Manager
IT Central Station

Hi Everyone,

What do you like most about Splunk IT Service Intelligence (ITSI)?

Thanks for sharing your thoughts with the community!