We just raised a $30M Series A: Read our story
Cancel
You must select at least 2 products to compare!
Devo Logo
Read 12 Devo reviews.
11,163 views|4,399 comparisons
Splunk Logo
93,502 views|78,363 comparisons
Zabbix Logo
46,518 views|34,152 comparisons
Featured Review
Find out what your peers are saying about Splunk, IBM, Devo and others in Security Information and Event Management (SIEM). Updated: October 2021.
552,695 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"The user interface is really modern. As an end-user, there are a lot of possibilities to tailor the platform to your needs, and that can be done without needing much support from Devo. It's really flexible and modular. The UI is very clean.""The ability to have high performance, high-speed search capability is incredibly important for us. When it comes to doing security analysis, you don't want to be doing is sitting around waiting to get data back while an attacker is sitting on a network, actively attacking it. You need to be able to answer questions quickly. If I see an indicator of attack, I need to be able to rapidly pivot and find data, then analyze it and find more data to answer more questions. You need to be able to do that quickly. If I'm sitting around just waiting to get my first response, then it ends up moving too slow to keep up with the attacker. Devo's speed and performance allows us to query in real-time and keep up with what is actually happening on the network, then respond effectively to events.""Even if it's a relatively technical tool or platform, it's very intuitive and graphical. It's very appealing in terms of the user interface. The UI has a graphically interface with the raw data in a table. The table can be as big as you want it, depending on your use case. You can easily get a report combining your data, along with calculations and graphical dashboards. You don't need a lot of training, because the UI is relatively very intuitive.""The most valuable feature is definitely the ability that Devo has to ingest data. From the previous SIEM that I came from and helped my company administer, it really was the type of system where data was parsed on ingest. This meant that if you didn't build the parser efficiently or correctly, sometimes that would bring the system to its knees. You'd have a backlog of processing the logs as it was ingesting them.""Being able to build and modify dashboards on the fly with Activeboards streamlines my analyst time because my analysts aren't doing it across spreadsheets or five different tools to try to build a timeline out themselves. They can just ingest it all, build a timeline out across all the logging, and all the different information sources in one dashboard. So, it's a huge time saver. It also has the accuracy of being able to look at all those data sources in one view. The log analysis, which would take 40 hours, we can probably get through it in about five to eight hours using Devo.""One of the biggest features of the UI is that you see the actual code of what you're doing in the graphical user interface, in a little window on the side. Whatever you're doing, you see the code, what's happening. And you can really quickly switch between using the GUI and using the code. That's really useful.""Devo provides a multi-tenant, cloud-native architecture. This is critical for managed service provider environments or multinational organizations who may have subsidiaries globally. It gives organizations a way to consolidate their data in a single accessible location, yet keep the data separate. This allows for global views and/or isolated views restricted by access controls by company or business unit.""Those 400 days of hot data mean that people can look for trends and at what happened in the past. And they can not only do so from a security point of view, but even for operational use cases. In the past, our operational norm was to keep live data for only 30 days. Our users were constantly asking us for at least 90 days, and we really couldn't even do that. That's one reason that having 400 days of live data is pretty huge. As our users start to use it and adopt this system, we expect people to be able to do those long-term analytics."

More Devo Pros »

"The scalability is good.""I have found the installation can be of medium difficulty to very complex depending on the use case.""The solution is very fast and succinct.""The data analysis part is good in Splunk, which is something that I like the most. It is also quite easy to use. Its dashboards, visualizations, and analytics are good.""I am satisfied with the support.""We can easily configure things as required in relation to our use cases.""The most valuable feature is that it's very good for log aggregation.""Its compatibility with other SIEMS is very useful."

More Splunk Pros »

"The solution is quite mature and very stable.""The flexibility of this solution is amazing.""The basic setup is very easy.""Zabbix is scalable.""The solution's design has recently changed and it is visually pleasing with more color, for example, there is blue, black, and white.""It's a flexible solution.""We detect problems before the customer does and before it actually happens using the predictive functions in Zabbix.""Zabbix is quite stable once it is set up. We haven't had any post-setup issues."

More Zabbix Pros »

Cons
"The Activeboards feature is not as mature regarding the look and feel. Its functionality is mature, but the look and feel is not there. For example, if you have some data sets and are trying to get some graphics, you cannot change anything. There's just one format for the graphics. You cannot change the size of the font, the font itself, etc.""Some basic reporting mechanisms have room for improvement. Customers can do analysis by building Activeboards, Devo’s name for interactive dashboards. This capability is quite nice, but it is not a reporting engine. Devo does provide mechanisms to allow third-party tools to query data via their API, which is great. However, a lot of folks like or want a reporting engine, per se, and Devo simply doesn't have that. This may or may not be by design.""Their documentation could be better. They are growing quickly and need to have someone focused on tech writing to ensure that all the different updates, how to use them, and all the new features and functionality are properly documented.""Some third-parties don't have specific API connectors built, so we had to work with Devo to get the logs and parse the data using custom parsers, rather than an out-of-the-box solution.""There's always room to reduce the learning curve over how to deal with events and machine data. They could make the machine data simpler.""There's room for improvement within the GUI. There is also some room for improvement within the native parsers they support. But I can say that about pretty much any solution in this space.""One major area for improvement for Devo... is to provide more capabilities around pre-built monitoring. They're working on integrations with different types of systems, but that integration needs to go beyond just onboarding to the platform. It needs to include applications, out-of-the-box, that immediately help people to start monitoring their systems. Such applications would include dashboards and alerts, and then people could customize them for their own needs so that they aren't starting from a blank slate.""Devo has a lot of cloud connectors, but they need to do a little bit of work there. They've got good integrations with the public cloud, but there are a lot of cloud SaaS systems that they still need to work with on integrations, such as Salesforce and other SaaS providers where we need to get access logs."

More Devo Cons »

"It needs integration with a configuration management solution.""Our two main complaints are about the difficulty of the initial setup and the licensing model.""Splunk could be improved by reducing the cost. The cost is one of the biggest challenges for us in keeping to our production requirements.""On-premises scaling of the solution is a bit more limited than it is on the cloud.""Its pricing model and integration with third-party services can be improved. We had faced an issue with integration. The alerting feature is currently not available with Splunk, but it is definitely available with Datadog and PagerDuty. They should include this feature. A few dashboards in Splunk look quite old and are not that modern. They aren't bad, but improving these dashboards will definitely make Splunk more attractive and usable. I read in a few blog posts that there were a few security incidents related to Splunk agents. So, it can be made more secure.""An area of improvement would be the licensing of the solution. They need a free license, which would allow faster lead times.""In the next releases, I would like to see more pricing flexibility.""It's difficult to set up initially, and their billing model is also a bit complicated."

More Splunk Cons »

"Outside of the normal standard monitoring, I would like to extend patching, importing patching, and supporting patching for Windows Servers.""I think the reporting part of Zabbix can be improved in terms of more user-friendly graphics to display the collected data. Many simple users who don't know how to use Zabbix properly might get confused by the reporting, although at the same time it is very versatile for my company.""When using this solution in enterprise monitoring, you are able to see that there are some issues with equipment that could be causing a problem. Sometimes you want to make a root command that you do not want to be executed automatically. What we have tried to do is open an SSH session directly from the solution's interface but it is not possible.""Zabbix isn't very good at automation just yet.""In an upcoming release, there should be automated reports which we are currently doing manually. For example, if we collect a report file every day and want to send it to a moderator for review. We are expecting this feature to come out soon but it would be valuable to have now.""I would like to remotely connect to the computer, and Zabbix doesn't have this capability.""Its UI needs to be improved a little bit more so that an end-user is also able to handle it. I can handle it, but others should also be able to handle it in a better way. It becomes complex when we are growing and need to add proxies. We need more scalability features and documentation for different use cases. A lot of articles are available, but they need to be in proper documentation. For example, when you have thousands of servers that have to be monitored in different regions of the world, there should be some kind of documentation to describe how you can create proxies and add them. Sometimes, when you are using the database, it can get overloaded. When the network is growing, the number of transactions becomes very high, and the database gets overloaded. There should be information about how to reduce the load on the MySQL database, which is what Zabbix is using. The market is growing a lot, and it should be enhanced for a lot more things. We are currently bringing enhancements at our end for different use cases. For example, when dockerization is going on, how can we check the logs inside the Dockers. We should also be able to monitor and check the number of logins and add features such as SSO login and two-factor authentication as a protocol. These are the security features and concerns that we have to deal with. Currently, we are developing modules to add features to Zabbix, but they should also work on these features.""It could be more stable."

More Zabbix Cons »

Pricing and Cost Advice
"Our licensing fees are billed annually and per terabyte.""Be cautious of metadata inclusion for log types in pricing, as there are some "gotchas" with that.""I'm not involved in the financial aspect, but I think the licensing costs are similar to other solutions. If all the solutions have a similar cost, Devo provides more for the money.""[Devo was] in the ballpark with at least a couple of the other front-runners that we were looking at. Devo is a good value and, given the quality of the product, I would expect to pay more.""We have an OEM agreement with Devo. It is very similar to the standard licensing agreement because we are charged in the same way as any other customer, e.g., we use the backroom.""Devo is definitely cheaper than Splunk. There's no doubt about that. The value from Devo is good. It's definitely more valuable to me than QRadar or LogRhythm or any of the old, traditional SIEMs.""Devo was very cost-competitive... Devo did come with that 400 days of hot data, and that was not the case with other products.""I like the pricing very much. They keep it simple. It is a single price based on data ingested, and they do it on an average. If you get a spike of data that flows in, they will not stick it to you or charge you for that. They are very fair about that."

More Devo Pricing and Cost Advice »

"The price of Splunk is reasonable.""My customers have found the price of the solution to be high.""I think that most of the monitoring solutions are expensive.""It can be cost-prohibitive when you start to scale and have terabytes of data. Its cost model is based on how much data it processes a day. If they're able to create scaled-down niche or custom package offerings, it may help with the cost. Instead of the full-blown features, if they can narrow the scope where it can only be used for a specific purpose, it would kind of create that market for the product, and it may help with the costing. When you start using it as a central aggregator and you're pumping tons of logs at it, pretty soon, you'll start hitting your cap on what it can process a day. Once you've got that, you're kind of defeating the purpose because you're going to have to scale back.""Its pricing model can be improved.""This solution is costly. Splunk is obviously a great product, but you should only choose this product if you need all the features provided. Otherwise, if you don't need all the features to meet your requirements, there are probably other products that will be more cost-effective. It's cost versus the functionality requirement.""I think that most of the log analytics solutions are expensive and I'm not sure if it's worth it.""Price-wise, if you compare QRadar to Splunk for SIEM functionality then they are in the same range but when you integrate SOAR with these solutions, Splunk takes the lead and is more competitive."

More Splunk Pricing and Cost Advice »

"This solution is completely open-source, so it is quite affordable.""Zabbix is free but if you use it in production then you have to pay for it.""I was using the free, Community Edition.""The solution is free to use but they offer support as a paid service. If you can go read the manuals and do the fine-tuning based on your needs, you do not need to pay anything and you will have a full solution.""It is worth every cent to pay or even study to do your own installation.""We are using the free, open-source version.""It is open source. If you want to have a subscription or official support, you can pay for it. They have different plans, which are not that expensive. The plans are based on per monitoring server, not per monitored equipment. So, it is not at all expensive, and you can also live without the support if you want a cheaper option.""Zabbix is open-source so if one wishes to implement it in-house, they must have qualified professionals to set up and optimize databases, Linux/Unix OS, PHP, Apache, and depending on what is monitored, a full-stack network and systems administrator may be needed."

More Zabbix Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
552,695 professionals have used our research since 2012.
Questions from the Community
Top Answer: It's very, very versatile.
Top Answer: Devo, like other vendors, doesn't charge extra for playbooks and automation. That way, you are only paying for the side… more »
Top Answer: I need more empowerment in reporting. For example, when I'm using Qlik or Power BI in terms of reporting for the… more »
Top Answer: It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for… more »
Top Answer: Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring… more »
Top Answer: The reporting aspect is good and it does what I need it to do.
Top Answer: We are able to monitor our virtual infrastructure, virtual machines, windows servers, databases, and the network using a… more »
Top Answer: The solution is free to use but they offer support as a paid service. If you can go read the manuals and do the… more »
Top Answer: Zabbix does not draw automatic mapping of the network, this is something they should add in the future. There is a lot… more »
Comparisons
Compared 12% of the time.
Compared 8% of the time.
Compared 5% of the time.
Compared 4% of the time.
Compared 4% of the time.
Compared 6% of the time.
Compared 6% of the time.
Compared 5% of the time.
Compared 4% of the time.
Compared 3% of the time.
Compared 12% of the time.
Compared 10% of the time.
Compared 6% of the time.
Compared 6% of the time.
Compared 4% of the time.
Also Known As
Splunk Enterprise Security
Learn More
Overview

Devo is the only cloud-native logging and security analytics platform that releases the full potential of all your data to empower bold, confident action when it matters most. Only the Devo platform delivers the powerful combination of real-time visibility, high-performance analytics, scalability, multitenancy, and low TCO crucial for monitoring and securing business operations as enterprises accelerate their shift to the cloud.

Splunk software has been around since 2006 and the company has since grown to become an industry leader. Splunk's vision is to make machine data accessible, usable and valuable to everybody. The company offers a wide range of products to turn machine data into valuable information by monitoring and analyzing all activities. This is known as Operational Intelligence and is the unique value proposition of Splunk.

Splunk is well-known for its Log Management capabilities and also for its Security Information and Event Management (SIEM) solutions.

Zabbix is the ultimate enterprise-level software designed for real-time monitoring of millions of metrics collected from tens of thousands of servers, virtual machines and network devices. Zabbix is Open Source and comes at no cost.

Offer
See Devo in Action

See how Devo allows you to free yourself from data management, and make machine data and insights accessible.

Learn more about Splunk
Learn more about Zabbix
Sample Customers
United States Air Force, Rubrik, SentinelOne, Critical Start, NHL, Panda Security, Telefonica, CaixaBank, OpenText, IGT, OneMain Financial, SurveyMonkey, FanDuel, H&R Block, Ulta Beauty, Manulife, Moneylion, Chime Bank, Magna International, American Express Global Business Travel
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Bodybuilding.com, LLC., ITtelligent Consulting Services,Eltele AS, Total Server Solutions, LLC., ChinaNetCloud
Top Industries
VISITORS READING REVIEWS
Computer Software Company28%
Comms Service Provider20%
Government7%
Financial Services Firm7%
REVIEWERS
Financial Services Firm19%
Energy/Utilities Company12%
Computer Software Company10%
Retailer7%
VISITORS READING REVIEWS
Computer Software Company27%
Comms Service Provider18%
Financial Services Firm10%
Government7%
REVIEWERS
Computer Software Company17%
Comms Service Provider10%
Manufacturing Company7%
Aerospace/Defense Firm7%
VISITORS READING REVIEWS
Comms Service Provider31%
Computer Software Company24%
Government7%
Financial Services Firm5%
Company Size
REVIEWERS
Small Business17%
Midsize Enterprise17%
Large Enterprise67%
VISITORS READING REVIEWS
Small Business48%
Midsize Enterprise15%
Large Enterprise36%
REVIEWERS
Small Business30%
Midsize Enterprise15%
Large Enterprise55%
VISITORS READING REVIEWS
Small Business25%
Midsize Enterprise18%
Large Enterprise57%
REVIEWERS
Small Business47%
Midsize Enterprise22%
Large Enterprise31%
VISITORS READING REVIEWS
Small Business14%
Midsize Enterprise49%
Large Enterprise38%
Find out what your peers are saying about Splunk, IBM, Devo and others in Security Information and Event Management (SIEM). Updated: October 2021.
552,695 professionals have used our research since 2012.

Splunk is ranked 1st in Security Information and Event Management (SIEM) with 47 reviews while Zabbix is ranked 1st in Network Monitoring Software with 38 reviews. Splunk is rated 8.0, while Zabbix is rated 8.0. The top reviewer of Splunk writes "Good support with an intuitive dashboard but the cost is too high". On the other hand, the top reviewer of Zabbix writes "Very mature, easy to scale, and free to use". Splunk is most compared with Dynatrace, Datadog, IBM QRadar, ELK Logstash and Fortinet FortiAnalyzer, whereas Zabbix is most compared with Nagios XI, Centreon, SolarWinds NPM, Nagios Core and PRTG Network Monitor.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.