About Splunk Enterprise

Splunk Enterprise is a cloud-based platform designed to assist businesses with big data management and analysis of machine data. Key features include data visualization, performance metrics, data collection, real-time search, indexing, KPI tracking, reporting, and monitoring.

The application lets managers create custom dashboards, add visualizations, adjust interface components, and convert it to forms. Splunk Enterprise helps administrators conduct continuous monitoring of operational events to detect vulnerabilities and receive event-triggered alerts in real-time. With its workload management feature, users can reserve storage capacity of system resources for data import/ingestion of high-priority tasks. Splunk Enterprise also enables team members to detect system anomalies and perform data clustering to filter out corrupted data.

Splunk Enterprise offers integration with various third-party platforms including Microsoft Excel, Tableau, Okta, PingFerderate, Azure AD, CA SiteMinder, OneLogin, and Optimal IdM. The solution is suitable for businesses in industries such as aerospace, communications, healthcare, manufacturing, finance, energy, and utilities.

Pricing starting from:

US$1,800.00/year

  • Free Version
  • Free Trial
  • Subscription

Typical Customers

  • Freelancers
  • Small Businesses (2-50)
  • Mid-size Companies (51-500)
  • Large enterprises (500 and more)

Deployment

  • Cloud-based
  • On-premise

Markets

Australia, Brazil, Canada, China, Germany , France, United Kingdom, India, Japan, Mexico, Netherlands, New Zealand, Singapore, United States

Supported Languages

Chinese, English, French, German, Italian , Japanese, Korean, Portuguese, Russian, Spanish, Traditional Chinese

Pricing starting from:

US$1,800.00/year

  • Free Version
  • Free Trial
  • Subscription

Images

Splunk Enterprise Software - Splunk Enterprise dashboard
Splunk Enterprise Software - 2
Splunk Enterprise Software - Splunk Enterprise custom alerts
Splunk Enterprise Software - Splunk Enterprise workload management
View 5 more
Splunk Enterprise video
Splunk Enterprise Software - Splunk Enterprise dashboard
Splunk Enterprise Software - 2
Splunk Enterprise Software - Splunk Enterprise custom alerts
Splunk Enterprise Software - Splunk Enterprise workload management

Features

Total features of Splunk Enterprise: 141

  • AI/Machine Learning
  • API
  • Access Controls/Permissions
  • Activity Dashboard
  • Activity Monitoring
  • Activity Tracking
  • Ad hoc Analysis
  • Ad hoc Reporting
  • Alerts / Escalation
  • Alerts/Notifications
  • Anomaly/Malware Detection
  • Anti Spam
  • Anti Virus
  • Application Management
  • Application Security
  • Archiving & Retention
  • Audit Trail
  • Baseline Manager
  • Behavioural Analytics
  • Billing & Provisioning
  • CPU Monitoring
  • Capacity Analytics
  • Capacity Management
  • Change Management
  • Charting
  • Cloud Application Security
  • Compliance Management
  • Compliance Tracking
  • Configuration Management
  • Connectivity Management
  • Content Management
  • Corrective and Preventive Actions (CAPA)
  • Cost Management
  • Credential Management
  • Customisable Dashboard
  • Customisable Reports
  • Dashboard
  • Dashboard Creation
  • Data Aggregation
  • Data Analysis Tools
  • Data Discovery
  • Data Management
  • Data Mining
  • Data Security
  • Data Visualisation
  • Deep Learning
  • Demand Monitoring
  • Diagnostic Tools
  • Disaster Recovery
  • Email Alerts
  • Email Monitoring
  • Encryption
  • Endpoint Management
  • Event Analysis
  • Event Logs
  • Event Tracking
  • Event Triggered Actions
  • File Integrity Monitoring
  • Firewalls
  • For Healthcare
  • Full Transaction Diagnostics
  • High Volume Processing
  • IP Address Monitoring
  • IT Incident Management
  • IT Monitoring
  • Incident Management
  • Incident Reporting
  • Internet Usage Monitoring
  • Intrusion Detection System
  • Inventory Management
  • Investigation Management
  • Issue Auditing
  • Knowledge Management
  • License Management
  • Log Analysis
  • Log Collection
  • Log Management
  • ML Algorithm Library
  • Machine Learning
  • Maintenance Scheduling
  • Mobile Network Troubleshooting
  • Model Training
  • Modeling & Simulation
  • Monitoring
  • Multi-Cloud Management
  • Multiple Data Sources
  • Natural Language Processing
  • Network Analysis
  • Network Monitoring
  • Network Resource Management
  • OLAP
  • OSHA Compliance
  • Patch Management
  • Performance Analysis
  • Performance Metrics
  • Performance Monitoring
  • Policy Management
  • Predictive Analytics
  • Predictive Modeling
  • Real Time Analytics
  • Real Time Data
  • Real Time Monitoring
  • Real Time Notifications
  • Real Time Reporting
  • Real-time Updates
  • Relational Display
  • Remediation Management
  • Remote Access/Control
  • Reporting & Statistics
  • Reporting/Analytics
  • Resource Management
  • Risk Assessment
  • Risk Reporting
  • Root Cause Analysis
  • Safety Incident Management
  • Scheduling
  • Search/Filter
  • Self Service Portal
  • Server Logs
  • Server Monitoring
  • Service Level Agreement (SLA) Management
  • Simple Network Management Protocol (SNMP)
  • Statistical Modeling
  • Supply Monitoring
  • Task Management
  • Templates
  • Third Party Integrations
  • Threat Intelligence
  • Threshold Alerts
  • Ticket Management
  • Two-Factor Authentication
  • Uptime Reporting
  • VPN Software
  • Virtual Machine Monitoring
  • Visual Analytics
  • Visual Discovery
  • Visualisation
  • Vulnerability Protection
  • Vulnerability Scanning
  • Web Traffic Reporting
  • Workflow Approval

Alternatives

IBM Security QRadar

4.5
#1 Alternative to Splunk Enterprise
IBM QRadar SIEM is a security information & event management software for security teams to accurately detect and...

FortiClient

4.4
#2 Alternative to Splunk Enterprise
FortiClient is an endpoint protection software that helps businesses identify malicious attacks across multiple...

Trellix Endpoint Security

4.2
#3 Alternative to Splunk Enterprise
Trellix Endpoint Security provides protection for endpoints, including laptops, PCs, and mobile devices. Its main...

Elastic Stack

4.6
#4 Alternative to Splunk Enterprise
Reliably and securely take data from any source, in any format, then search, analyze, and visualize it in real time.

Reviews

Overall rating

4.6 /5
(166)
Value for Money
4.3/5
Features
4.5/5
Ease of Use
4.1/5
Customer Support
4.3/5

Already have Splunk Enterprise?

Software buyers need your help! Product reviews help the rest of us make great decisions.

Showing 5 reviews of 166
Sachin
Overall rating
  • Industry: Computer Software
  • Company size: 10,000+ Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Splunk: A Monitoring Tool for all your needs

Reviewed on 30/4/2022

If i have put a word it would say "Fantastic". The functionalities Splunk provides eases team to...

If i have put a word it would say "Fantastic". The functionalities Splunk provides eases team to manage/monitor their IT infrastructure and internal application you will be well aware about the performance of your applications. Setup alerting and take necessary actions in stipulated time to overcome all the issues which may affect your application performance.

Pros

Splunk offers various features whether you need to setup monitoring on your server, application logs based on logs ingestion set alerts so that teams got notified on real time and take actions accordingly. In this way, it helps to monitor application which are mission critical. You can make dashboards in Splunk where you can configure various components such indexes, data inputs and schedule reports as well. To achieve additional functionalities we can install third party apps as well such as AWS Add on for cloud watch log ingestion.

Cons

From Admin perspective, I found user access management a little difficult. The roles of access management becomes complicated because some time the config files for that didn't came very handy. Other then that I think all in all Splunk provides fulfill all of the requirements.

Verified Reviewer
Overall rating
  • Industry: Health, Wellness & Fitness
  • Company size: 1,001-5,000 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Splunk Enterprise, not just a SIEM

Reviewed on 27/5/2022

We have been using Splunk Enterprise, ES, ITSI, and other Splunk parts for 6+ years in production. ...

We have been using Splunk Enterprise, ES, ITSI, and other Splunk parts for 6+ years in production. This has helped us reduce staff in some cases, increase response time in most cases, and allow non-IT teams to get data and metrics in a fast efficient way.

Pros

The versatility is amazing. The same data in logs, such as IIS, can be used for Security, Application performance, and even error handling. This allows us to use one log to help multiple teams. This is just one example.

Cons

Start up takes someone who has had some training. While searching and output is easy, its the onboarding of custom apps that takes the know how.

Alternatives Considered

Sumo Logic

Reasons for Switching to Splunk Enterprise

Versatility with custom applications we create in house.
Chetan
Overall rating
  • Industry: Information Technology & Services
  • Company size: 11-50 Employees
  • Used Daily for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 8.0 /10

Splunk the best analytic tool

Reviewed on 5/10/2022

It gives best Return on Investment as analyzing the data and giving proper insights in form of...

It gives best Return on Investment as analyzing the data and giving proper insights in form of Dashboards and notifying with help of Alerts if any kind of threat running in infrastructure and apart from that Deployment and use is very easy.

Pros

There are lot of features which Splunk offers -
1) We can onboard data from any server, device or system using Universal Forwarder
2) Onboarded data are later stored in Indexers and searched further in Search Head for analyzing the internal logs
3) Using the data we can create customizable Dashboards and get proper insights of data and create Alerts to identify any kind of Threat or anomalies running in environment
4) Deployment is very easy on-prem servers
5) We can also use Hybrid Deployment on Cloud as well.

Cons

1) As it give large amount of features but licensing is too high
2) There are lot of other Open Source software which can be used as alternative of Splunk as Analytic tool because Splunk is paid one.

Patrick
Overall rating
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Ease of Use

Spunk Review

Reviewed on 17/5/2017

Pros

It allows me to bring a lot of information into one friendly view. It's a great security audit tool.

Cons

It has limited functionality. It is a very memory intensive system. It does not integrate with Lennox.

Davis
Overall rating
  • Industry: Computer Software
  • Company size: 11-50 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 8.0 /10

The most expensive tool, requiring highly-skilled employees, capable of limitless value

Reviewed on 19/9/2022

Splunk's SPL is a flexible, straight forward query-language with aspects of SQL, R, Python, and...

Splunk's SPL is a flexible, straight forward query-language with aspects of SQL, R, Python, and Bash. The fact that an analyst can learn to be an engineer through using the platform provides ease of growth. It is unmatched in its automation to make data actionable, while providing reporting and visualization capabilities.

Pros

Splunk is provides a single tool for log aggregation, log analysis, and visualizations. Threat hunting, applying threat intelligence, and incident response are easily repeatable; pushing organizations to proactive security processes.

Cons

Splunk is expensive, especially when an organizations is exploring and building new security or data use cases. It also requires a lot of engineering maintenance, making the quality of the data highly-dependent on the skill(s) of those supporting it. Many organizations do not maximize its benefit because it is poorly managed or supported by low-skilled employees.

Alternatives Considered

Elastic Stack

Reasons for Switching to Splunk Enterprise

Splunk scales in all aspects except price. Organizations that are serious about security and SIEM tools will see the value in their investment almost immediately. The insights from the analytics and development capabilities are not available in other tools with this level of ease.
Showing 5 reviews of 166 Read all reviews

Splunk Enterprise FAQs

Below are some frequently asked questions for Splunk Enterprise.

Splunk Enterprise offers the following pricing plans:

  • Starting from: US$1,800.00/year
  • Pricing model: Free Version, Subscription
  • Free Trial: Available

Contact Splunk for detailed pricing information.

Splunk Enterprise has the following typical customers:

51-200, 201-500, 501-1,000, 1,001-5,000

Splunk Enterprise supports the following languages:

Chinese, English, French, German, Italian, Japanese, Korean, Portuguese, Russian, Spanish, Traditional Chinese

Splunk Enterprise supports the following devices:

Android (Mobile), iPhone (Mobile)

Splunk Enterprise integrates with the following applications:

Amazon S3, Azure Active Directory, Microsoft Excel, Okta, OneLogin, PingFederate, Tableau

Splunk Enterprise offers the following support options:

Email/Help Desk, FAQs/Forum, Knowledge Base, Phone Support, Chat

Related categories

See all software categories found for Splunk Enterprise.