Try our new research platform with insights from 80,000+ expert users

BMC TrueSight Operations Management vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

BMC TrueSight Operations Ma...
Average Rating
8.2
Reviews Sentiment
6.7
Number of Reviews
50
Ranking in other categories
Application Performance Monitoring (APM) and Observability (22nd), Event Monitoring (2nd), IT Infrastructure Monitoring (26th), Cloud Monitoring Software (20th), AIOps (8th)
Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.6
Number of Reviews
305
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. BMC TrueSight Operations Management is designed for IT Infrastructure Monitoring and holds a mindshare of 0.8%, down 1.3% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 9.5% mindshare, down 12.8% since last year.
IT Infrastructure Monitoring
Security Information and Event Management (SIEM)
 

Featured Reviews

Srri G - PeerSpot reviewer
The product is reasonably priced, but the solution is a little obsolete because it is deployed on-premise
If I want custom monitoring across a very large estate of more than 50,000 units, the on-premise deployment gets quite slow. The on-premise product’s performance must be improved. The solution is a little obsolete. That is why the solution moved to Helix, a SaaS operating system. The SaaS platform has the features I like. There is no point in BMC expanding TrueSight Operations’ console. It's high time that BMC starts a demise path for the product and is associated only with Helix. If we need any additional function, we must switch to Helix. Since TrueSight is deployed on-premise, the scalability and usage of the product are mainly focused on providing basic features and not enhanced features like analytics or cost analysis. People should move to a SaaS platform because on-premise products have limited storage and capacity.
ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We're using native monitoring capabilities for all our server hardware, for visibility for applications, for URLs, for webpage response and accuracy, and for monitoring network throughput in a lot of particular instances. We're using lightweight protocols for pinging, for DNS, for LDAP."
"TSOM's ability to consolidate alerts into a single location and provide filtering of alerts is great."
"The major advantage of the product is estate management."
"The solution has a very good business event manager tool."
"The solution provides visibility to our infrastructure, how it is, the resources we are monitoring, and quick updates when it has any problems. We have integrated it with ServiceNow to open instances."
"It provides common administration, and a Single Sign-On Platform with RBAC, which eases the cross launch between multiple tools"
"The initial setup of BMC TrueSight Operations Management was easy."
"The event management part of TrueSight Operations Management, in my experience, is probably the best in the market. You have endless flexibility. You can build your own rules, you have the MRL language, and you can implement any kind of logic on the alerts. It may be correlation, abstraction, or executing something as a result of the alerts. You have almost the whole range of options available for event management using the available customization."
"Splunk's schema on demand is incredibly useful. I do not have to worry about what my users will need when we onboard their data."
"Splunk Enterprise Security stands out for its ability to integrate with existing security tools, provide informative dashboards, and offer IT Service Assurance functionality that goes beyond basic threat detection to include service performance monitoring."
"The product is adept at log mining."
"The log aggregation is great."
"It helps streamline troubleshooting and log analysis."
"Splunk helps us be more proactive. We can take predictive action to identify and block threats so that nothing harmful gets into the system."
"It provides logs in one place, so they are easy to find. It collects the logs from multiple places, then you have just one place where you see the whole flow from the front-end to the back-end."
"The most valuable feature is the custom dashboard feature."
 

Cons

"Specifically around application performance monitoring, BMC is definitely not the market leader. The Dynatraces, the New Relics and the like are more of the market leaders in that space. I would like to see them grow that space a little bit more aggressively. It has not really been their bread and butter."
"We have a unique use case because BMC typically sells this solution into enterprises that are deploying it within their IT, versus to a managed services provider like us where we're supporting thousands of customers. Multi-tenancy and the scalability have been challenges along the way, as we've grown... If anything could have gone better as we were ramping this up and adding a lot of volume to it, I would say it's the scalability. That would be one thing that could be improved."
"Reporting would be an area for improvement in TrueSight... We have almost 800 customers today on TrueSight and just under 10,000 assets. We need to be able to give a customer some information. If the customer's product fails, they'll ask us, "Did it have a problem beforehand?" We have all those events and we know all the problems it had beforehand. We have to be able to give them access to that kind of reporting. That's an enhancement that we need."
"I would really like to see out-of-the-box support for monitoring uninterruptible power supplies."
"Application performance management (APM) is an area with certain shortcomings in the solution that needs improvement. I"
"Cost is an issue with BMC TrueSight Operations Management."
"The solution could improve its price."
"The solution is a little obsolete."
"We usually have to follow up with technical support on our open cases."
"From the commercial point of view, they have to bring down their costs."
"We don't have SOAR products from Splunk. I believe that's an important piece."
"We'd like Splunk to reduce false positives."
"I would like more assistance with use cases and help with teaching us how to use it once it's installed."
"We'd like to see a more seamless cloud-based integration."
"The price of the solution could be cheaper."
"Splunk Enterprise Security offers a vast amount of information to learn and comprehend, resulting in a challenging initial learning curve."
 

Pricing and Cost Advice

"We're end-of-lifeing it now. Overall, the licensing costs of BMC are a challenge for us in that they're hard costs, whereas open-source monitoring has soft costs, where it's harder to line-item."
"The only possible additional cost that I can mention, that you might not be aware of, is that it uses Oracle partitioning, if you use Oracle. There are Oracle partitioning fees that go with that."
"BMC TrueSight Operations Management is not on the cheaper side, but its pricing is on a case by case basis. Its licensing model is simple and based on the number of devices."
"There is a big upfront cost when you buy the license, then there is annual maintenance. We look at, if I bought a license and paid for maintenance for five years, then average it out, what would be my monthly cost. We have had some of the competing tools come in around four dollars. This is coming in as a premium, which is why I don't have it deployed as I would like it. Therefore, we're in negotiations right now. If I can get it down to the four dollar range, I will triple my deployment in a year and a half."
"It is a relatively inexpensive solution."
"The price of BMC TrueSight Operations Management is very high. If there was more flexibility with the sizing of the licensing it would be helpful, especially during the pandemic. We have wanted to expend but the licensing cost is too high."
"Pricing is all volume-driven. I think we were paying between $80 and $85 per license. That's per unit, for a perpetual license. You pay it one time and then, every year, you pay 20 percent of that for annual maintenance and support. But now that we've grown, we've purchased tens of thousands of licenses and the cost per license has gone down to something like less than $30..."
"The solutions are not the cheapest but are robust and stable. License model is rather complex and BMC do often change the model."
"Setup cost is cheap: It is free, it is user-friendly, and it is fast."
"The pricing depends on the bandwidth of an organization and is good compared to some SIEM tools. IBM, for example, is quite costly. But Microsoft Sentinel is notably cheaper."
"It's more expensive than the other tools, but it's worth it. Every penny is worth it."
"Truly evaluate the data you want to ingest and go slow. Pulling in data that can provide no use to your mission only wastes data against your license."
"While some clients find the cost of Splunk Enterprise Security to be on the higher end, its pricing is comparable to other SIEM solutions."
"The licensing is good, but the pricing absolutely needs some work. It is very high."
"The solution is a little expensive."
"Although Splunk is an expensive product, it is designed to be utilized across your organization in order to maximize your ROI and lower your TCO."
report
Use our free recommendation engine to learn which IT Infrastructure Monitoring solutions are best for your needs.
844,944 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
25%
Computer Software Company
15%
Manufacturing Company
7%
Government
7%
Financial Services Firm
15%
Computer Software Company
14%
Manufacturing Company
8%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about BMC TrueSight Operations Management?
The solution provides visibility to our infrastructure, how it is, the resources we are monitoring, and quick updates when it has any problems. We have integrated it with ServiceNow to open instances.
What is your experience regarding pricing and costs for BMC TrueSight Operations Management?
Though I have no clue about the tool's actual price, I know that it is astronomical.
What needs improvement with BMC TrueSight Operations Management?
Cost is an issue with BMC TrueSight Operations Management. Though I am not responsible for the budget, I know that it is an expensive tool set when used only for event management. The tool's issue ...
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Also Known As

ProactiveNet, TrueSight Operations Management
No data available
 

Overview

 

Sample Customers

Ensono, Transamerica, Boston Scientific, Park Place Technologies, inContact, TD Ameritrade, PNC Bank
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about BMC TrueSight Operations Management vs. Splunk Enterprise Security and other solutions. Updated: May 2023.
844,944 professionals have used our research since 2012.