Splunk Enterprise Security is praised for its threat intelligence, analytics, and monitoring capabilities, as well as its customizable features. Users acknowledge the need for improvements in user interface, query language, alerting, and performance. The pricing is considered high but worth the investment, with positive feedback on operational efficiency and customer support. On the other hand, Honeycomb.io is appreciated for its advanced visualization, query support, and collaborative tools. Users cite challenges with integrations, interface complexity, pricing, and support resources. The ROI is positive, with users highlighting improved performance and productivity. Customer service is highly praised for its helpfulness and responsiveness.
Features: Splunk Enterprise Security excels in threat intelligence, analytics, and scalability. It offers real-time monitoring, user-friendly interface, and detailed reporting. Honeycomb.io stands out with advanced visualization, high cardinality query support, flexible querying, and collaborative features for real-time sharing and discussion.
Pricing and ROI: Splunk Enterprise Security typically has higher setup costs compared to Honeycomb.io, but users find the value justifies the investment. Honeycomb.io offers competitive pricing and straightforward setup, with flexible licensing options to suit different needs and budgets. Splunk Enterprise Security boasts enhanced operational efficiency, threat detection, incident response, and security event visibility. In comparison, Honeycomb.io focuses on valuable insights, troubleshooting efficiency, and cost savings.
Room for Improvement: Splunk Enterprise Security users desire a more user-friendly interface and simplified search queries. They also seek enhanced alerting/reporting features and improved performance. Conversely, Honeycomb.io users want better integrations, simpler UI, more affordable pricing, and improved support/documentation.
Deployment and customer support: Some users reported varying timelines for deployment and setup with Splunk, while users had mixed feedback on the timeframe for implementing Honeycomb.io, emphasizing the importance of considering the context in which these terms are used. Splunk Enterprise Security's customer service is commended for prompt responses, knowledgeable staff, and helpful solutions. In contrast, Honeycomb.io excels in clear communication, expert assistance, and responsiveness, enhancing the overall user experience.
The summary above is based on 140 interviews we conducted recently with Splunk Enterprise Security and Honeycomb.io users. To access the review's full transcripts, download our report.
"The solution's initial setup process was straightforward since we were getting enough support from Honeycomb.io's team."
"The technical support is among the best in the market."
"I have not seen any outages in the product in the past two years that it has been running in our company, so I think it is good when it comes to the stability part."
"The breadth of the data sources that Splunk can ingest data from is broad and deep and it does an exemplary job at handling structured data."
"The correlation searches are most valuable just because we are able to do things like RBA."
"The scalability is good."
"I like Splunk's automated threat detection and orchestration capabilities. Splunk offers a single solution for analyzing, aggregating, correlating, monitoring, reporting, visualizing, etc. You can get all of these capabilities in one place. On top of that, it provides a cloud, testing, on-premise, and hybrid solution, giving customers more flexibility for their use cases."
"It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query on Splunk. The resolution time is about the same, but it took longer to discover the issue with ArcSight. Our previous solution took about an hour or more, but Splunk can do it within a few minutes or an hour at most."
"One of the most valuable features is threat hunting. We can do threat hunting and identify if there is any malicious activity happening within our environment, which is a key feature for us."
"The process of log scraping gets delayed on Honeycomb.io. At times, it gives false alerts to the application team."
"Splunk should have more regional data centers in the Middle East."
"The solution could use a different licensing model."
"It does not give us permission to implement on-premise so we implement them on the cloud."
"Free-floating panels in the dashboards are like a glass table."
"Professional support is great, but too expensive."
"Splunk Enterprise Security incurs a significant cost because of the amount of data we send, but we are fine with the value we're getting for that price."
"It works as intended for us, and we are getting everything that we need out of it. If anything, its initial setup can be improved a bit."
"Splunk can be an expensive solution. Technical support could be improved as well."
Honeycomb.io is ranked 36th in Application Performance Monitoring (APM) and Observability with 1 review while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 255 reviews. Honeycomb.io is rated 8.0, while Splunk Enterprise Security is rated 8.4. The top reviewer of Honeycomb.io writes "A valuable solution for application teams to identify downtime and SLO-related issues". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Honeycomb.io is most compared with Grafana, Sentry, Datadog, Chronosphere and Observe, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel.
We monitor all Application Performance Monitoring (APM) and Observability reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.