We changed our name from IT Central Station: Here's why

Splunk Reviews

Senior Network Engineer at a tech services company with 51-200 employees
Real User
Top 20
Useful search function, beneficial session reports, but performance could improve
Pros and Cons
  • "The most valuable features in Splunk are the search function and the ability to run selected session reports. The session reports are important because I can use them to see what is going on in our environment weekly. Additionally, we can use the graph to see how often that particular event is happening."
  • "Over time I will have more requirements and I can foresee the solution could improve the search algorithm to run and output the data faster."

What is our primary use case?

We typically use Splunk to collect and check all the logs and events around the diverse network environment which includes, firewall, switches, and routers. For example, we have traffic that needs to go from one part of the network to another and if we think there is a firewall blocking it along the path, rather than log in to all the firewalls to see what is happening, we simply go into Splunk and the check traffic going across the parts of the network to see where it is being dropped and what is the likely reason it has been dropped.

How has it helped my organization?

Splunk has saved our organization time by resolving problems in a quicker timeframe. Before if we had networking issues we would have to log into every single device, check the firewall to see why the traffic is not going across to solve the problem. With Splunk, you only have a single pane of glass to check what is likely happening. This has enabled us to easily go to the right environment and write the necessary security policy to permit such traffic. It brings about faster resolution of problems reduced with visibility.

What is most valuable?

The most valuable features in Splunk are the search function and the ability to run selected session reports. The session reports are important because I can use them to see what is going on in our environment weekly. Additionally, we can use the graph to see how often that particular event is happening.

What needs improvement?

Over time I will have more requirements and I can foresee the solution could improve the search algorithm to run and output the data faster.

For how long have I used the solution?

I have been using Splunk for approximately six months.

What do I think about the stability of the solution?

We have been satisfied with the stability of the solution.

What do I think about the scalability of the solution?

Slunk scale very well.

We have approximately 50 people in our infrastructure and applications teams using this solution in my organization.

We plan to increase usage in the future.

How are customer service and technical support?

I have not needed to open a ticket up with technical support. 

Which solution did I use previously and why did I switch?

Previously to using Splunk we only had some Syslog servers that we sent logs to. However, Syslog servers, do not analyze your logs, they only capturing them. Whereas, in Splunk, you can assess the logs and you can do other things with the log.

How was the initial setup?

I do not think the implementation is difficult.

What about the implementation team?

We have an internal team that does the maintenance of the solution.

Which other solutions did I evaluate?

I have evaluated DataDog.

What other advice do I have?

Splunk is easy to use and not having the need to log into every single network device for management is helpful.

I rate Splunk a seven out of ten.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
ITCS user
Assistant Manager ICT - Projects at a financial services firm with 1,001-5,000 employees
Real User
Top 20
Good visualization, reliable, scales well, and has good support
Pros and Cons
  • "The additional vendors we've brought on board, particularly the elastic, have been quite beneficial."
  • "The configuration had a bit of a learning curve."

What is our primary use case?

We are currently using it with SIEM, and SOAR which is Security Orchestration, Automation, and Response.

Splunk is primarily used for security, incident response, and security analytics.

How has it helped my organization?

Using Splunk, give us the visualization we need, we can easily observe things such as user behavior analytics, irregular traffic, frequency, and any spikes in unusual activity inside the network.

What is most valuable?

The additional vendors we've brought on board, particularly the Elastic, have been quite beneficial.

It's a solid platform.

What needs improvement?

Other than the pricing modules, I have no issues with the product itself.

The configuration had a bit of a learning curve.

I would like to learn more about the Cloud solution, but I'm aware that it's lacking some core applications.

If they could bring on more vendors, you would be able to monitor a larger number of applications. We could have visualization with other applications we have with the infrastructure in our organization.

For how long have I used the solution?

I did a POC, but we have recently procured it. We did a rudimentary setup to get an understanding of how it works. We are into our sixth month of using it now.

What do I think about the stability of the solution?

Splunk is a very stable solution.

What do I think about the scalability of the solution?

This solution is quite scalable.

In our organization, we have 10 users, who use this solution but we have plans to increase our usage.

How are customer service and support?

The technical support has been quite helpful.

Which solution did I use previously and why did I switch?

The previous solution was limited in its functionality. 

We were looking at the additional controls that enterprise security may have, as well as visualization, to gain greater visibility.

Splunk offered us more visibility.

How was the initial setup?

The initial setup was complex.

We had some assistance with the actual deployment, but while I was doing the POC, I was working with a vendor. There were things I had to do myself, such as the configuration, which was a bit challenging for me, it was a big learning curve.

What about the implementation team?

For the installation, we received some assistance from the vendor.

What was our ROI?

It's too early to know if there will be a return on investment.

What's my experience with pricing, setup cost, and licensing?

The pricing modules could be improved.

The licensing fees are paid on a yearly basis.

There is a standard license with provisions for more. As we are still exploring the functionality, there may be other departments that want to use it.

What other advice do I have?

Those who are interested in implementing this solution should be prepared to dig deep into their pockets.

I would rate Splunk a nine out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate

Splunk Questions

Shibu Babuchandran
Regional Manager/ Service Delivery at ASPL Info Services
Jan 20 2022

Hi dear professionals,

How would you compare Securonix and Splunk as a SIEM enterprise solution? 

1 Answer
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Dec 01 2021

Hi Everyone,

What is your primary use case for Splunk?

Thanks for sharing your thoughts with the community!

Gregg Woodcock#1 is InfoSec #2 is BI #3 is IoT
Jairo Willian PereiraBusiness indicators (KPIs) for specific (and limited) purpose together IT area… more »
92 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Nov 29 2021

Hi Everyone,

What advice do you have for others considering Splunk?

Thanks for sharing your thoughts with the community!

Engineercb47Make sure it fits your use case. Be clear about what you want to achieve, get… more »
Tomi JuslinSplunk's website is quite useful. You can find a lot of information on it. I… more »
Gavan McLaughlinIt works well when searching logs. If you looked to try to do things beyond… more »
70 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)
Nov 29 2021

Hi Everyone,

What needs improvement with Splunk?

Thanks for sharing your thoughts with the community!

Shaveta DattaI would like to see them develop integration with the help of a rack rest API… more »
it_user762567The tool itself is very difficult to configure. It's great for its number of… more »
Mui TranIf possible, we would like to have not only a log monitoring system but a… more »
95 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Nov 29 2021

Hi Everyone,

What is your experience regarding pricing and costs for Splunk?

Thanks for sharing your thoughts with the community!

Jairo Willian PereiraCost versus volume in the medium/long term are heavy. It is a great tool but you… more »
47 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)
Nov 29 2021

Hi Everyone,

What do you like most about Splunk?

Thanks for sharing your thoughts with the community!

88 Answers
Netanya Carmi
Content Manager
PeerSpot (formerly IT Central Station)
Nov 17 2021

Which is better and why?

Shibu BabuchandranHi @Netanya Carmi​, Below are some comparisons on features and Integrations.… more »
2 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Oct 28 2021

If you were talking to someone whose organization is considering Splunk User Behavior Analytics, what would you say?

How would you rate it and why? Any other tips or advice?

8 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Oct 28 2021

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

8 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)
Oct 28 2021

Please share with the community what you think needs improvement with Splunk User Behavior Analytics.

What are its weaknesses? What would you like to see changed in a future version?

8 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Oct 28 2021

Hi,

We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

7 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Oct 28 2021

Hi Everyone,

What do you like most about Splunk User Behavior Analytics?

Thanks for sharing your thoughts with the community!

8 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Sep 09 2021

If you were talking to someone whose organization is considering Splunk Cloud, what would you say?

How would you rate it and why? Any other tips or advice?

7 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Sep 09 2021

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

7 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)
Sep 09 2021

Please share with the community what you think needs improvement with Splunk Cloud.

What are its weaknesses? What would you like to see changed in a future version?

7 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Sep 09 2021

Hi,

We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

6 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Sep 09 2021

Hi Everyone,

What do you like most about Splunk Cloud?

Thanks for sharing your thoughts with the community!

7 Answers
Netanya Carmi
Content Manager
PeerSpot (formerly IT Central Station)
Sep 01 2021

Why?

David SwiftIt would really depend on (1) which logs you need to ingest and (2) what are… more »
1 Answer
Navin Rehnius
Security Engineer at a tech services company with 201-500 employees
Aug 10 2021

Hi community members,

I'm a security engineer at a Tech Services company and I'm currently exploring SOC solutions, such as Rapid7 InsightIDR, Splunk, IBM QRadar and ArcSight Analytics.

Based on your experience, which SOC tool/solution would you recommend and why?

Kumar MahadevanI haven't used these big-name ones like Splunk etc. but I feel they're… more »
Jack CallaghanFor tools I’d recommend:  -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing… more »
Jairo Willian PereiraApache Metron, ELK, OSSIM, Splunk and Qradar (in cost/benefit order for… more »
12 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)

If you were talking to someone whose organization is considering Splunk Phantom, what would you say?

How would you rate it and why? Any other tips or advice?

5 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

5 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)

Please share with the community what you think needs improvement with Splunk Phantom.

What are its weaknesses? What would you like to see changed in a future version?

4 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)

Hi,

We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

4 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)

Hi Everyone,

What do you like most about Splunk Phantom?

Thanks for sharing your thoughts with the community!

5 Answers
William Milton
User at VAE-MARMARA8

Hi, I'm looking for a technical comparison between Splunk Phantom SOAR and FireEye SOAR solutions.

Can anyone help with insights?

Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)

If you were talking to someone whose organization is considering Splunk IT Service Intelligence (ITSI), what would you say?

How would you rate it and why? Any other tips or advice?

4 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

4 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)

Please share with the community what you think needs improvement with Splunk IT Service Intelligence (ITSI).

What are its weaknesses? What would you like to see changed in a future version?

4 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)

Hi Everyone,

What do you like most about Splunk IT Service Intelligence (ITSI)?

Thanks for sharing your thoughts with the community!

4 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)

If you were talking to someone whose organization is considering Splunk IT Service Intelligence (ITSI), what would you say?

How would you rate it and why? Any other tips or advice?

4 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

4 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)

Please share with the community what you think needs improvement with Splunk IT Service Intelligence (ITSI).

What are its weaknesses? What would you like to see changed in a future version?

4 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)

Hi Everyone,

What do you like most about Splunk IT Service Intelligence (ITSI)?

Thanks for sharing your thoughts with the community!

4 Answers