No more typing reviews! Try our Samantha, our new voice AI agent.
Splunk User Behavior Analytics Logo

Splunk User Behavior Analytics pros and cons

Vendor: Splunk
4.1 out of 5
Leave a review

Pros & Cons summary

Splunk User Behavior Analytics offers valuable features such as alerts, auto report generation, and advanced analytics for detecting patterns and security threats with anomaly detection and risk scoring capabilities. Indexing and powerful search facilitate efficient data management, while technical support is highly praised. However, high data ingestion costs and complex initial setups present challenges, as does the need for machine learning updates. Splunk is also significantly more expensive compared to competitors like ArcSight or LogRhythm.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Splunk User Behavior Analytics offers valuable features like alerts and auto report generation.
It provides advanced analytics and data correlation capabilities for detecting patterns, anomalies, and security threats.
The indexing and powerful search features allow efficient data management and analysis.
Anomaly detection, behavioral profiling, and risk scoring are among its best functionalities.
Technical support from Splunk is praised for being amazing.

CONS

High data ingestion costs may pose challenges for large enterprises as Splunk charges based on data processed.
Splunk User Behavior Analytics is significantly more expensive than competitors such as ArcSight or LogRhythm, making it difficult to market.
Initial setup can be complex due to required customization in configurations.
The machine learning algorithm at the core of Splunk User Behavior Analytics requires updates as it influences all other functions.
Advanced reporting features could be improved, with current issues like latency and configuration challenges during lexical analysis.
 

Splunk User Behavior Analytics Pros review quotes

SK
Siva Kuppala
Enterprise Architect at Wipro Limited
Jun 18, 2025
The best features in Splunk User Behavior Analytics include anomaly detection, behavioral profiling, and risk scoring and prioritization functionality.
Read full review
Ahmed Naguib - PeerSpot reviewer
Ahmed Naguib
Director at Techpace
Aug 22, 2025
The dashboards are one of the very core functions of Splunk User Behavior Analytics; they are very good in dashboarding, and the dashboards themselves are nice, very good, and very helpful.
Read full review
SivaKuppala - PeerSpot reviewer
SivaKuppala
Enterprise Architect at Wipro Limited
Mar 25, 2025
Splunk User Behavior Analytics is known for its advanced analytics and data correlation capabilities, which help in detecting patterns, anomalies, and security threats.
Read full review
Buyer's Guide
Splunk User Behavior Analytics
April 2026
Free Report: Splunk User Behavior Analytics Reviews and More
Learn what your peers think about Splunk User Behavior Analytics. Get advice and tips from experienced pros sharing their opinions. Updated: April 2026.
DOWNLOAD NOW
893,221 professionals have used our research since 2012.
Subhayu Chakraborty - PeerSpot reviewer
Subhayu Chakraborty
System Engineer at Infosys
Jan 6, 2025
Features like alerts and auto report generation are valuable.
Read full review
Mohammed Hassan - PeerSpot reviewer
Mohammed Hassan
Regional Director at iSecureMind Integrated Solutions
Mar 20, 2025
Splunk's technical support is amazing.
Read full review
AnupChapalgaonkar - PeerSpot reviewer
AnupChapalgaonkar
Cloud Solution Architect at Tech Mahindra Limited
Dec 20, 2024
Splunk is highly valuable for query purposes.
Read full review
Hamada-Elewa - PeerSpot reviewer
Hamada-Elewa
Cyber Security Technical Sales Manager at Raia
Nov 11, 2024
The most effective one is the integration with other vendors.
Read full review
BD
BertDrijver
Consultant at Kienia
May 5, 2023
We are really pleased with Splunk and its features. It would be practically impossible to function without it. To provide a general overview of the system, it's important to note that the standard log files are currently around 250 gigabytes per day. It would be impossible to manually walk through these logs by hand, which is why automation is essential.
Read full review
MM
Mohammed Maaz
Software Engineer IAM at Mercedes-Benz Canada Inc.
May 10, 2024
The solution's most valuable feature is Splunk queries, which allow us to query the logs and analyze the attack vectors.
Read full review
Sharath Chander - PeerSpot reviewer
Sharath Chander
Business Transformation specialist at a tech consulting company with 10,001+ employees
Mar 10, 2023
Splunk is more user-friendly than some competing solutions we tried.
Read full review
Show 10 more reviews (out of 25)
 

Splunk User Behavior Analytics Cons review quotes

SK
Siva Kuppala
Enterprise Architect at Wipro Limited
Jun 18, 2025
A disadvantage is that it can lead to cost overrun if not properly factored or governed.
Read full review
Ahmed Naguib - PeerSpot reviewer
Ahmed Naguib
Director at Techpace
Aug 22, 2025
The machine learning algorithm in Splunk User Behavior Analytics is actually the core thing that needs to be updated because this feeds all the other functions inside it.
Read full review
SivaKuppala - PeerSpot reviewer
SivaKuppala
Enterprise Architect at Wipro Limited
Mar 25, 2025
High data ingestion costs can be an issue, especially for large enterprises, as Splunk charges based on the amount of data processed.
Read full review
Buyer's Guide
Splunk User Behavior Analytics
April 2026
Free Report: Splunk User Behavior Analytics Reviews and More
Learn what your peers think about Splunk User Behavior Analytics. Get advice and tips from experienced pros sharing their opinions. Updated: April 2026.
DOWNLOAD NOW
893,221 professionals have used our research since 2012.
Subhayu Chakraborty - PeerSpot reviewer
Subhayu Chakraborty
System Engineer at Infosys
Jan 6, 2025
The dashboard part could be improved.
Read full review
Mohammed Hassan - PeerSpot reviewer
Mohammed Hassan
Regional Director at iSecureMind Integrated Solutions
Mar 20, 2025
I would like to see an enhancement in the automation of creating the rules.
Read full review
AnupChapalgaonkar - PeerSpot reviewer
AnupChapalgaonkar
Cloud Solution Architect at Tech Mahindra Limited
Dec 20, 2024
In terms of improvements, advanced reporting could see enhancements as there are some issues with latency.
Read full review
Hamada-Elewa - PeerSpot reviewer
Hamada-Elewa
Cyber Security Technical Sales Manager at Raia
Nov 11, 2024
Enhancing the storage model that they are using is necessary.
Read full review
BD
BertDrijver
Consultant at Kienia
May 5, 2023
If the price was lowered and the setup process was less complex, I would consider rating it higher.
Read full review
MM
Mohammed Maaz
Software Engineer IAM at Mercedes-Benz Canada Inc.
May 10, 2024
It would be good if the solution had an analytics tool that allowed us to analyze the data without writing specific queries.
Read full review
Sharath Chander - PeerSpot reviewer
Sharath Chander
Business Transformation specialist at a tech consulting company with 10,001+ employees
Mar 10, 2023
We want to have an automated system for bot hunting that enables us to detect anomalies predictively based on historical data. It would be helpful if Splunk included process mining as an alternative option. We have a threat workflow, but it would be useful if we could supplement that with some process mining capabilities over time.
Read full review
Show 10 more reviews (out of 25)

Product Categories

Product Categories
User Entity Behavior Analytics (UEBA)
Intrusion Detection and Prevention Software (IDPS)

Popular Comparisons

Popular Comparisons
Fortinet FortiGate vs Splunk User Behavior Analytics Logo
Fortinet FortiGate vs Splunk User Behavior Analytics
Darktrace vs Splunk User Behavior Analytics Logo
Darktrace vs Splunk User Behavior Analytics
IBM Security QRadar vs Splunk User Behavior Analytics Logo
IBM Security QRadar vs Splunk User Behavior Analytics
Varonis Platform vs Splunk User Behavior Analytics Logo
Varonis Platform vs Splunk User Behavior Analytics
Rapid7 InsightIDR vs Splunk User Behavior Analytics Logo
Rapid7 InsightIDR vs Splunk User Behavior Analytics
Vectra AI vs Splunk User Behavior Analytics Logo
Vectra AI vs Splunk User Behavior Analytics
Cynet vs Splunk User Behavior Analytics Logo
Cynet vs Splunk User Behavior Analytics
Anomali vs Splunk User Behavior Analytics Logo
Anomali vs Splunk User Behavior Analytics
Exabeam vs Splunk User Behavior Analytics Logo
Exabeam vs Splunk User Behavior Analytics
KerioControl vs Splunk User Behavior Analytics Logo
KerioControl vs Splunk User Behavior Analytics
TrendAI Tipping Point vs Splunk User Behavior Analytics Logo
TrendAI Tipping Point vs Splunk User Behavior Analytics
ExtremeCloud IQ vs Splunk User Behavior Analytics Logo
ExtremeCloud IQ vs Splunk User Behavior Analytics
Palo Alto Networks Advanced Threat Prevention vs Splunk User Behavior Analytics Logo
Palo Alto Networks Advanced Threat Prevention vs Splunk User Behavior Analytics
Dtex Systems vs Splunk User Behavior Analytics Logo
Dtex Systems vs Splunk User Behavior Analytics
Lumu vs Splunk User Behavior Analytics Logo
Lumu vs Splunk User Behavior Analytics
See all alternatives

Product Categories

Product Categories
User Entity Behavior Analytics (UEBA)
Intrusion Detection and Prevention Software (IDPS)

Popular Comparisons

Popular Comparisons
Fortinet FortiGate vs Splunk User Behavior Analytics Logo
Fortinet FortiGate vs Splunk User Behavior Analytics
Darktrace vs Splunk User Behavior Analytics Logo
Darktrace vs Splunk User Behavior Analytics
IBM Security QRadar vs Splunk User Behavior Analytics Logo
IBM Security QRadar vs Splunk User Behavior Analytics
Varonis Platform vs Splunk User Behavior Analytics Logo
Varonis Platform vs Splunk User Behavior Analytics
Rapid7 InsightIDR vs Splunk User Behavior Analytics Logo
Rapid7 InsightIDR vs Splunk User Behavior Analytics
Vectra AI vs Splunk User Behavior Analytics Logo
Vectra AI vs Splunk User Behavior Analytics
Cynet vs Splunk User Behavior Analytics Logo
Cynet vs Splunk User Behavior Analytics
Anomali vs Splunk User Behavior Analytics Logo
Anomali vs Splunk User Behavior Analytics
Exabeam vs Splunk User Behavior Analytics Logo
Exabeam vs Splunk User Behavior Analytics
KerioControl vs Splunk User Behavior Analytics Logo
KerioControl vs Splunk User Behavior Analytics
TrendAI Tipping Point vs Splunk User Behavior Analytics Logo
TrendAI Tipping Point vs Splunk User Behavior Analytics
ExtremeCloud IQ vs Splunk User Behavior Analytics Logo
ExtremeCloud IQ vs Splunk User Behavior Analytics
Palo Alto Networks Advanced Threat Prevention vs Splunk User Behavior Analytics Logo
Palo Alto Networks Advanced Threat Prevention vs Splunk User Behavior Analytics
Dtex Systems vs Splunk User Behavior Analytics Logo
Dtex Systems vs Splunk User Behavior Analytics
Lumu vs Splunk User Behavior Analytics Logo
Lumu vs Splunk User Behavior Analytics
See all alternatives
Related questions
  • 59
Which is the best UEBA solution?
  • 37
Viable, Cost-Effective Competitors to Rapid7 InsightIDK
  • 200
What is your recommended cost-effective solution to detect and prevent APT attacks?
  • 74
Looking for recommendations and a pros/cons template for software to detect insider threats
  • 69
What are the main differences between UEBA and SIEM solutions?
  • 32
Monitoring Web Hosted Servers for unwanted guests
  • 137
Why is User Entity Behavior Analytics - UEBA important for companies?
  • 42
When evaluating User Behavior Analytics, what aspect do you think is the most important to look for?
  • 32
Which is the best User Entity Behavior Analytics (UEBA) solution?
  • 33
What are the different types of insider threats that UEBA solutions help to detect?