No more typing reviews! Try our Samantha, our new voice AI agent.
Splunk Enterprise Security Logo

Splunk Enterprise Security pros and cons

Vendor: Splunk
4.2 out of 5
Badge Ranked 1
Leave a review

Pros & Cons summary

Splunk Enterprise Security reduces resolution time through robust log management and advanced threat detection while offering seamless integration with security tools. It empowers security operations with prebuilt apps but demands high expertise, potentially increasing training costs. Noted for complex setup and performance slowness with large data, its licensing costs may deter smaller organizations. Users may experience dissatisfaction due to technical support's responsiveness challenges.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Splunk Enterprise Security drastically reduces the time to resolution, investigation, and troubleshooting.
It offers a wide array of prebuilt applications and use cases that enhance security operations.
Splunk Enterprise Security provides seamless integration with other security tools and systems, enabling efficient data correlation.
Its robust log management capabilities allow for efficient handling and retention of logs over extended periods.
Splunk Enterprise Security enhances business resilience by offering advanced threat detection and incident monitoring features.

CONS

Splunk Enterprise Security requires a high level of expertise to operate effectively, which may lead to additional training costs and time investment.
Splunk Enterprise Security's licensing costs are perceived as high, making it challenging for smaller organizations to justify the investment.
Splunk Enterprise Security experiences slowness when processing large data sets, impacting performance and efficiency.
Splunk Enterprise Security has a complex setup process, which can be daunting and time-consuming for users without prior experience.
Splunk Enterprise Security's technical support is often regarded as lacking in responsiveness and effectiveness, leading to customer dissatisfaction.
 

Splunk Enterprise Security Pros review quotes

Sathis-Kumar - PeerSpot reviewer
Sathis-Kumar
Senior Manager at Bank of America
Nov 13, 2025
The integration and plugin availability are nice; the AI module is also great.
Read full review
reviewer2136243 - PeerSpot reviewer
reviewer2136243
Risk Advisory Cyber Cloud Analyst at a consultancy with 1,001-5,000 employees
Nov 14, 2025
The query functionality is very easy to use and fast to retrieve logs in comparison to other SIEM solutions.
Read full review
reviewer2701950 - PeerSpot reviewer
reviewer2701950
Splunk System Engineer at a non-tech company with 11-50 employees
May 9, 2025
It's great for finding anonymous threats.
Read full review
Buyer's Guide
Splunk Enterprise Security
April 2026
Free Report: Splunk Enterprise Security Reviews and More
Learn what your peers think about Splunk Enterprise Security. Get advice and tips from experienced pros sharing their opinions. Updated: April 2026.
DOWNLOAD NOW
893,244 professionals have used our research since 2012.
Kyle Vernham - PeerSpot reviewer
Kyle Vernham
Threat Analyst at a manufacturing company with 10,001+ employees
Sep 9, 2025
When it comes to leveraging Splunk Enterprise Security's dashboards and visualizations to communicate security posture to executives, it's pretty straightforward for any type of information.
Read full review
reviewer2704098 - PeerSpot reviewer
reviewer2704098
Security & Risk Analyst at a computer software company with 1,001-5,000 employees
May 9, 2025
The community marketplace is useful; often, you do not need to rely on Splunk Enterprise Security support due to the wealth of online documentation available—Splunk docs are truly beneficial.
Read full review
Venu Yenuganti - PeerSpot reviewer
Venu Yenuganti
Manager, Cyber Threat Management at a retailer with 10,001+ employees
Nov 26, 2025
Splunk Enterprise Security definitely improved our operations.
Read full review
Himanshu Vasoya - PeerSpot reviewer
Himanshu Vasoya
Observability Engineer at Data Elicit Solutions Pvt. Ltd.
Apr 9, 2026
What I like the most about Splunk Enterprise Security is the flexibility and customization it offers, as you can create dashboards, write custom SPL queries, and design detections exactly as per your environment while leveraging strong correlation capabilities and visualizing everything in a single place, which makes analysis easier and far better than other solutions.
Read full review
MatthewSnyder - PeerSpot reviewer
MatthewSnyder
Principal Engineer at Aviatrix
Sep 9, 2025
While it might be an initial upfront investment on data onboarding, it's going to be something that makes your life incredibly easy once you get beyond that point.
Read full review
Clay Matt - PeerSpot reviewer
Clay Matt
Dir Of Global Cyber Security Ops at a manufacturing company with 10,001+ employees
Sep 10, 2025
I would assess the stability and reliability of Splunk Enterprise Security as typically very good, with minimal downtime or crashes.
Read full review
Andry Casares - PeerSpot reviewer
Andry Casares
Security Engineer at a financial services firm with 5,001-10,000 employees
Sep 9, 2025
My security ops team takes around 30 minutes to one hour to remediate security incidents with Splunk Enterprise Security compared to a previous solution.
Read full review
Show 10 more reviews (out of 364)
 

Splunk Enterprise Security Cons review quotes

Sathis-Kumar - PeerSpot reviewer
Sathis-Kumar
Senior Manager at Bank of America
Nov 13, 2025
We see quite a few issues on stability. Even last week, we faced something, and identifying bottlenecks is not easy.
Read full review
reviewer2136243 - PeerSpot reviewer
reviewer2136243
Risk Advisory Cyber Cloud Analyst at a consultancy with 1,001-5,000 employees
Nov 14, 2025
The user interface is the main area for improvement.
Read full review
reviewer2701950 - PeerSpot reviewer
reviewer2701950
Splunk System Engineer at a non-tech company with 11-50 employees
May 9, 2025
Splunk Enterprise Security can be improved mainly from the user interface regarding the visualizations. They are working on it, yet there are only five to ten very basic visualizations.
Read full review
Buyer's Guide
Splunk Enterprise Security
April 2026
Free Report: Splunk Enterprise Security Reviews and More
Learn what your peers think about Splunk Enterprise Security. Get advice and tips from experienced pros sharing their opinions. Updated: April 2026.
DOWNLOAD NOW
893,244 professionals have used our research since 2012.
Kyle Vernham - PeerSpot reviewer
Kyle Vernham
Threat Analyst at a manufacturing company with 10,001+ employees
Sep 9, 2025
One main change I would suggest is related to the incident board: when an incident is resolved, it should not appear on the incident board. It's just a rare occurrence that we open up the incident.
Read full review
reviewer2704098 - PeerSpot reviewer
reviewer2704098
Security & Risk Analyst at a computer software company with 1,001-5,000 employees
May 9, 2025
One area Splunk Enterprise Security fails to improve is the pricing aspect; while the initial pricing seems fine, the licensing cost can skyrocket over time, creating trauma for organizations.
Read full review
Venu Yenuganti - PeerSpot reviewer
Venu Yenuganti
Manager, Cyber Threat Management at a retailer with 10,001+ employees
Nov 26, 2025
Pricing is certainly an area that could use improvement. While some vendors may offer lower prices, the value we receive here truly sets this solution apart.
Read full review
Himanshu Vasoya - PeerSpot reviewer
Himanshu Vasoya
Observability Engineer at Data Elicit Solutions Pvt. Ltd.
Apr 9, 2026
Regarding pricing, Splunk Enterprise Security is on the higher side in terms of cost. It is more suitable for enterprises that can fully utilize its capabilities, and smaller organizations might find it expensive, especially when dealing with large volumes of data and licensing models.
Read full review
MatthewSnyder - PeerSpot reviewer
MatthewSnyder
Principal Engineer at Aviatrix
Sep 9, 2025
When deploying Enterprise Security, the biggest challenge or the most amount of work that you're going to spend time on is onboarding your data and getting it into a position that allows you to search it uniformly. So applying things like the common information model is the biggest time investment that you'll have in the deployment.
Read full review
Clay Matt - PeerSpot reviewer
Clay Matt
Dir Of Global Cyber Security Ops at a manufacturing company with 10,001+ employees
Sep 10, 2025
I find the process for customizing, developing, testing, deploying, and refining detections in Splunk Enterprise Security to be cumbersome.
Read full review
Andry Casares - PeerSpot reviewer
Andry Casares
Security Engineer at a financial services firm with 5,001-10,000 employees
Sep 9, 2025
We're planning to incorporate UBA and SOAR. It would be good to have everything in one place.
Read full review
Show 10 more reviews (out of 364)

Product Categories

Product Categories
Security Information and Event Management (SIEM)
Log Management
IT Operations Analytics

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Splunk Enterprise Security Logo
CrowdStrike Falcon vs Splunk Enterprise Security
Wazuh vs Splunk Enterprise Security Logo
Wazuh vs Splunk Enterprise Security
Datadog vs Splunk Enterprise Security Logo
Datadog vs Splunk Enterprise Security
Dynatrace vs Splunk Enterprise Security Logo
Dynatrace vs Splunk Enterprise Security
SentinelOne Singularity Endpoint vs Splunk Enterprise Security Logo
SentinelOne Singularity Endpoint vs Splunk Enterprise Security
IBM Security QRadar vs Splunk Enterprise Security Logo
IBM Security QRadar vs Splunk Enterprise Security
Microsoft Sentinel vs Splunk Enterprise Security Logo
Microsoft Sentinel vs Splunk Enterprise Security
Splunk AppDynamics vs Splunk Enterprise Security Logo
Splunk AppDynamics vs Splunk Enterprise Security
New Relic vs Splunk Enterprise Security Logo
New Relic vs Splunk Enterprise Security
Cribl vs Splunk Enterprise Security Logo
Cribl vs Splunk Enterprise Security
Elastic Security vs Splunk Enterprise Security Logo
Elastic Security vs Splunk Enterprise Security
IBM Turbonomic vs Splunk Enterprise Security Logo
IBM Turbonomic vs Splunk Enterprise Security
Palantir Foundry vs Splunk Enterprise Security Logo
Palantir Foundry vs Splunk Enterprise Security
WhatsUp Gold vs Splunk Enterprise Security Logo
WhatsUp Gold vs Splunk Enterprise Security
Grafana Loki vs Splunk Enterprise Security Logo
Grafana Loki vs Splunk Enterprise Security
See all alternatives

Product Categories

Product Categories
Security Information and Event Management (SIEM)
Log Management
IT Operations Analytics

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Splunk Enterprise Security Logo
CrowdStrike Falcon vs Splunk Enterprise Security
Wazuh vs Splunk Enterprise Security Logo
Wazuh vs Splunk Enterprise Security
Datadog vs Splunk Enterprise Security Logo
Datadog vs Splunk Enterprise Security
Dynatrace vs Splunk Enterprise Security Logo
Dynatrace vs Splunk Enterprise Security
SentinelOne Singularity Endpoint vs Splunk Enterprise Security Logo
SentinelOne Singularity Endpoint vs Splunk Enterprise Security
IBM Security QRadar vs Splunk Enterprise Security Logo
IBM Security QRadar vs Splunk Enterprise Security
Microsoft Sentinel vs Splunk Enterprise Security Logo
Microsoft Sentinel vs Splunk Enterprise Security
Splunk AppDynamics vs Splunk Enterprise Security Logo
Splunk AppDynamics vs Splunk Enterprise Security
New Relic vs Splunk Enterprise Security Logo
New Relic vs Splunk Enterprise Security
Cribl vs Splunk Enterprise Security Logo
Cribl vs Splunk Enterprise Security
Elastic Security vs Splunk Enterprise Security Logo
Elastic Security vs Splunk Enterprise Security
IBM Turbonomic vs Splunk Enterprise Security Logo
IBM Turbonomic vs Splunk Enterprise Security
Palantir Foundry vs Splunk Enterprise Security Logo
Palantir Foundry vs Splunk Enterprise Security
WhatsUp Gold vs Splunk Enterprise Security Logo
WhatsUp Gold vs Splunk Enterprise Security
Grafana Loki vs Splunk Enterprise Security Logo
Grafana Loki vs Splunk Enterprise Security
See all alternatives
Related questions
  • 116
Which would you recommend to your boss, IBM QRadar or Splunk?
  • 51
What are some of the best features and use-cases of Splunk?
  • 146
What SOC product do you recommend?
  • 91
Splunk as an Enterprise Class monitoring solution -- thoughts?
  • 416
What is the biggest difference between Dynatrace and Splunk?
  • 125
IBM QRadar is rated above competitors (McAfee, Splunk, LogRhythm) in Gartner's 2020 Magic Quandrant. Agree/Disagree?
  • 58
What are the advantages of ELK over Splunk?
  • 111
How does Splunk compare with Azure Monitor?
  • 53
New risk scoring framework in the Splunk App for Enterprise Security -- thoughts?
  • 80
Splunk vs. Elastic Stack