Splunk Enterprise Security vs vRealize Network Insight comparison

Splunk Enterprise Security
Read 255 Splunk Enterprise Security reviews
  • 23,657 Views
  • 19,419 Comparison Views
93% willing to recommend
vRealize Network Insight
Read 44 vRealize Network Insight reviews
  • 1,665 Views
  • 953 Comparison Views
89% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Splunk Enterprise Security and vRealize Network Insight based on real PeerSpot user reviews.

Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: June 2024).
Buyer's Guide
Security Information and Event Management (SIEM)
June 2024
Download the complete report
Helped 787,061 peers since 2012
 

Categories and Ranking

Splunk Enterprise Security
Average Rating
8.4
Number of Reviews
255
Ranking in other categories
Log Management (1st), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
vRealize Network Insight
Average Rating
8.6
Number of Reviews
44
Ranking in other categories
Network Monitoring Software (22nd), IT Infrastructure Monitoring (23rd)
 

Market share comparison

As of June 2024, in the Security Information and Event Management (SIEM) category, the market share of Splunk Enterprise Security is 13.7% and it decreased by 3.4% compared to the previous year. The market share of vRealize Network Insight is 0.1% and it decreased by 55.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
Unique Categories:
Log Management
17.6%
IT Operations Analytics
28.2%
Network Monitoring Software
1.1%
IT Infrastructure Monitoring
0.7%
 

Featured Reviews

RB
May 8, 2024
Provides a centralized place to consolidate everything and start investigations
The end-to-end visibility the tool provides is not that big of a deal. They have so many tools that can do that kind of part. Splunk doesn't have to be the one place for total visibility, but at least for visibility when it consolidates on threats. Splunk has helped improve our organization's ability to ingest and normalize data. The tool pretty much consumes everything that we have. Everything from dozens of different vendor products gets ingested into Splunk. Splunk Enterprise Security is just that one central place where everything goes. Splunk Enterprise Security has helped speed up our security investigations. Something that requires someone to work on it at the beginning of the day would not take more than 15 minutes with Splunk Enterprise Security. Overall, I rate the solution an eight out of ten.
Read full review
Claudio Sousa - PeerSpot reviewer
Sep 28, 2022
Produces detailed reports of the network flow and layout using SDN
vRealize is used to help our development team by producing detailed reports of the network flow and layout. This includes details like the TCP network keys and the RTT It has helped improve our organization by directing the network traffic using SDN. The most valuable feature is the application…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature is the incident dashboard, and the extensive use of correlation searches, which isn't available with a standard Splunk search package. This feature is important to me because it enables SOC analysts to do their job more efficiently and be able to investigate or mediate incidents at a faster pace."
"It allows the centralization of data and makes possible new sorts of correlations that were previously impossible using traditional SIEMs such as ArcSight or QRadar."
"The most valuable feature of Splunk Enterprise Security is website activity monitoring."
"The dashboards are the most valuable feature. We like the ability to drill in and see what queries are under the dashboard, build new visualizations, edit the querying, and see the reports."
"One of the most valuable features is threat hunting. We can do threat hunting and identify if there is any malicious activity happening within our environment, which is a key feature for us."
"Its dashboard is valuable. If you have a good knowledge of how to create a dashboard, you can create any dashboard related to cybersecurity. If fine-tuned, the alarms that are triggered for instant review are also very valuable and useful."
"Splunk works based on parsing log files."
"it can explain to management about what kind of traffic is visiting the network. It can also explain other traffic coming in and out, along with protecting against malware."
More Splunk Enterprise Security pros
"The solution is extremely intuitive and user-friendly. When you log in to the application you are presented with a dashboard that is very reasonable for an initial user, and you can then customize it to your specific needs. But for all the data that we've found, we've only had to go through two or three drill-downs to get into that information."
"Whenever we say "valuable" with respect to the network, it's more towards the security. The firewall rule issues it shows us and the recommendations that we get from vRNI are the most valuable features because they are actually making our network more secure."
"It's a very powerful, very manageable product."
"It's user-friendly. It's similar to the GUI that most VMware products are moving to, and the consistency across those makes it easy to switch from one product to another. Also, the search bar at the top is plain text and it helps you, it guides you along with your search query, so that helps. The first day you're in there you can start building actual queries."
"The most valuable feature for us is that insight into what our network is really doing - it's a fairly complex network. Not having to go through thousands of lines of network configuration to find firewall ports that were open or closed, for various ports, was very valuable. It went out and found everything we need very quickly."
"The most valuable features are the monitoring and tracking. It's also intuitive and user-friendly. The screen looks exactly the same as the other appliances for VMware, so it's easy to navigate."
"Also, the ability to troubleshoot all the way across the NSX part of it to the physical and actually watch the packets go through and then see where the bottleneck is or where the interruption is. We run queries on the network flows within the application to find where they are in it and it graphically tells us how the packets are actually going through the system."
"The most valuable feature is the visualization. It's really handy to be able to classify network objects as with applications and see the interaction between them."
More vRealize Network Insight pros
 

Cons

"The level of scalability depends on the license you have. You can expand or reduce it based on the environment. It does cost more money to scale, however."
"It is a good product, but the Achilles heel for a lot of organizations is the cost model for it because it gets expensive. That's because the model is based on how much data it processes a day, which can be prohibitive, especially if you have a lot of data. A lot of customers may not be ready for the sticker shock on how to fully leverage the product. I realized that the reason for that is that when it was originally designed, it was kind of like a big data modeling application. If they want to have a bigger customer base, they can come out with subsets of their product that are focused on specific things and have different pricing models. It may help with the cost."
"Splunk could be improved by reducing the cost. The cost is one of the biggest challenges for us in keeping to our production requirements."
"The documentation is in definite need of improvement."
"Splunk is query-based, which is not the case with most cybersecurity tools. It is based on search queries and can be difficult to use. It would be good if they can make it easier to understand how to create search queries. They can improve the knowledge base for better understanding. To create your dashboard, you need to have a search query. We have multiple firewalls in our company, and we need a dashboard for them. It would be helpful if a default firewall dashboard is included in Splunk to make monitoring easier. If a dashboard is available for a security device, the operation part will be more efficient. We won't have to follow a manual process for this."
"The GUI could be improved to include some of the capabilities that other BI solutions have. The layout is a little restrictive where you can’t resize all the panels to exactly how you would like them without tweaking some XML code."
"The complexity could be worked on so that it's even easier and faster."
"The biggest problem is data compression. Splunk is an outstanding product, but it is a resource hog. There should be better data compression for being able to maintain our data repositories. We end up having to buy lots of additional storage just to house our Splunk data. This is my only complaint about it."
More Splunk Enterprise Security cons
"The solution is very much viewer centric and it would be nice if it would transcend just the virtual infrastructure."
"The solution can be improved by making it more compatible with other brands, allowing for better integration."
"The only reason I would not give it a nine or a 10 is for cost reasons. It seems to be one of those things that really belongs as part of the product inherently and not as an add-on. That would be my only concern."
"I would like to see more interoperability on the firewall and low balancer sides."
"I would like to see application identification. That would be cool."
"If it had some kind of plugins with vSphere, more effective plugins with Horizon View or other VMWare products, if it had interconnectivity, I think it would be more effective than it is today."
"There is room for improvement when it comes to pricing because we pay here in Brazil, and all the costs are based on the dollar."
"I would like to see them expand the capabilities to infrastructure types other than just VMware."
More vRealize Network Insight cons
 

Pricing and Cost Advice

"I believe that Splunk Enterprise Security is worth the price, but it is expensive."
"Splunk is expensive based on our current requirements, but it's obviously worth what we pay."
"Unlike other security tools, Splunk provides a fixed amount of gigabytes per day, and we are required to pay for any additional usage beyond that limit, in addition to our monthly cost."
"The solution is costly."
"It can be tough to determine if you are getting all of the value out of your investment at times."
"I think the price could be improved."
"Splunk Enterprise Security is cheaper than competitors, but I do not know whether it is just our contract."
"We have an unlimited one, and we pay yearly, but I don't know how much it costs. Previously, I worked for a startup, and when they started building it up, it was complicated for them because they didn't have the budget for that many licenses. It was very costly for them. So, startups might find it a little bit problematic because of the licensing, but for bigger companies, there is no issue."
More Splunk Enterprise Security pricing and cost advice
"The solution has reduced the time that we spend on other products. For example, with NSX, we were able to quickly find things that we would normally spend days trying to figure out."
"The solution has helped us to reduce time, increase performance, reduce costs, and even easily manage networks. We are probably seeing 10 to 20 percent labor savings because we are able to be very specific and focused on what we want to do. It ends up saving the customer money and makes us be more efficient on our cost deliveries."
"Cost always has room for improvement, you could always make it cheaper. But I think it's a good value for what you pay for it."
"vRealize Network Insight is expensive."
"They should include the product in NSX because it's important to have it for deployment."
"We have spent less time investigating network flows, so it is absolutely cost-effective."
"It's a little expensive, but for what you're getting out of the product, you often see the trade-off. It depends on the type of licensing you have. It might be a little too pricey for some."
"It's an expensive product because we have a lot of nodes."
More vRealize Network Insight pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
787,061 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
14%
Government
9%
Manufacturing Company
8%
Financial Services Firm
16%
Computer Software Company
13%
Government
11%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
See all answers
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
See all answers
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
See all answers
What do you like most about vRealize Network Insight?
The tool's ease of configuration and use and the availability of information and artifacts through professional services and the web are key factors that customers find valuable.
See all answers
What is your experience regarding pricing and costs for vRealize Network Insight?
I rate vRealize Network Insight's pricing a seven point five out of ten.
See all answers
What needs improvement with vRealize Network Insight?
The IT infrastructure industry is expected to evolve towards a hybrid cloud model in the next five to ten years. In this model, most of the customer's resources reside on-premise within a private c...
See all answers
 

Comparisons

Wazuh vs Splunk Enterprise Security Logo
Wazuh vs Splunk Enterprise Security
Compared 14% of the time
IBM Security QRadar vs Splunk Enterprise Security Logo
IBM Security QRadar vs Splunk Enterprise Security
Compared 8% of the time
Dynatrace vs Splunk Enterprise Security Logo
Dynatrace vs Splunk Enterprise Security
Compared 8% of the time
Elastic Security vs Splunk Enterprise Security Logo
Elastic Security vs Splunk Enterprise Security
Compared 4% of the time
Microsoft Sentinel vs Splunk Enterprise Security Logo
Microsoft Sentinel vs Splunk Enterprise Security
Compared 4% of the time
More Splunk Enterprise Security Competitors
ThousandEyes vs vRealize Network Insight Logo
ThousandEyes vs vRealize Network Insight
Compared 11% of the time
NETSCOUT vSTREAM vs vRealize Network Insight Logo
NETSCOUT vSTREAM vs vRealize Network Insight
Compared 8% of the time
AppNeta by Broadcom vs vRealize Network Insight Logo
AppNeta by Broadcom vs vRealize Network Insight
Compared 8% of the time
Zabbix vs vRealize Network Insight Logo
Zabbix vs vRealize Network Insight
Compared 7% of the time
ExtraHop Reveal(x) for IT Operations vs vRealize Network Insight Logo
ExtraHop Reveal(x) for IT Operations vs vRealize Network Insight
Compared 5% of the time
More vRealize Network Insight Competitors
 

Product Reports

Buyer's Guide
Splunk Enterprise Security
May 2024
Splunk Enterprise Security reportDownload Splunk Enterprise Security product report
Buyer's Guide
vRealize Network Insight
May 2024
vRealize Network Insight reportDownload vRealize Network Insight product report
 

Also Known As

No data available
Arkin
 

Learn More

Splunk
VMware
 

Overview

Splunk Enterprise Security is a SIEM, log management, and IT operations analytics tool. The solution provides users with the ability to secure their information and manage their data in the cloud, data centers, or other applications. Splunk Enterprise Security also offers visibility from different areas, levels, and devices, rather than from a single system, thus, providing its users with flexibility. Splunk Enterprise Security can monitor data and analyze, detect, and prevent intrusions. This benefits users as it provides alerts to possible intrusions, helps users to be proactive, and reduces risk factors. 

Full visibility across your environment

Break down data silos and gain actionable intelligence by ingesting data from multicloud and on-premises deployments. Get full visibility to quickly detect malicious threats in your environment.

Fast threat detection

Defend against threats with advanced security analytics, machine learning and threat intelligence that focus detection and provide high-fidelity alerts to shorten triage times and raise true positive rates.

Efficient investigations

Gather all the context you need and initiate flexible investigations with security analytics at your fingertips. The built-in open and extensible data platform boosts productivity and drives down fatigue.

Open and scalable

Built on an open and scalable data platform, you can stay agile in the face of evolving threats and business needs. Splunk meets you where you are on your cloud journey, and integrates across your data, tools and content.

VMware vRealize Network Insight delivers intelligent operations for software-defined networking and security. It helps customers build an optimized, highly-available and secure network infrastructure across multi-cloud environments. It accelerates micro-segmentation planning and deployment, enables visibility across virtual and physical networks and provides operational views to manage and scale VMware NSX deployments.
 

Sample Customers

Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
NTTi3, VCIX-NV, VMware Networking and Security Business Unit, Illumio, CompuNet
Buyer's Guide
Security Information and Event Management (SIEM)
June 2024
Download Free Report
Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM). Updated: June 2024.
DOWNLOAD NOW
787,061 professionals have used our research since 2012.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.