Catchpoint vs Splunk Enterprise Security comparison

The compared Catchpoint and Splunk solutions aren't in the same category. Catchpoint is ranked #8 in DEM , with an average rating of 8.5, and holds a 0.7% mindshare in the category. Splunk is ranked #1 in SIEM , with an average rating of 8.4, and holds a 11.2% mindshare. Additionally, 100% of Catchpoint users are willing to recommend the solution, compared to 93% of Splunk users who would recommend it.

Catchpoint

Read 13 Catchpoint reviews

85 Views
48 Comparison Views

100% willing to recommend

Splunk Enterprise Security

Read 301 Splunk Enterprise Security reviews

16,171 Views
13,494 Comparison Views

93% willing to recommend

Catchpoint

Splunk Enterprise Security

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Catchpoint and Splunk Enterprise Security based on real PeerSpot user reviews.

Find out in this report how the two Digital Experience Monitoring (DEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Catchpoint vs. Splunk Enterprise Security Report (Updated: May 2023).

Buyer's Guide

Catchpoint vs. Splunk Enterprise Security

May 2023

Download the complete report

Helped 824,053 peers since 2012

Categories and Ranking

Catchpoint

Average Rating

8.4

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Application Performance Monitoring (APM) and Observability (42nd), Network Monitoring Software (54th), Cloud Monitoring Software (32nd), Digital Experience Monitoring (DEM) (8th)

Splunk Enterprise Security

Average Rating

8.4

Reviews Sentiment

7.1

Number of Reviews

301

Ranking in other categories

Log Management (1st), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. Catchpoint is designed for Digital Experience Monitoring (DEM) and holds a mindshare of 0.7%, down 1.0% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 11.2% mindshare, down 15.0% since last year.

Digital Experience Monitoring (DEM)

Security Information and Event Management (SIEM)

Featured Reviews

Carl Funk

Senior Manager at a training & coaching company with 10,001+ employees

The UI is well designed, so it's easy to get the visibility you want.

There's still too much manual involvement in getting customized test configurations out there. It's good, but it still takes a lot of effort. In other words, it's when you need to configure it to collect a specific variable and that kind of thing. The other issue is the cost. The more data you collect, the more expensive it becomes. You sell your organization by saying we can get this feature set, but then you have to walk that back because we'll need more money to run every test. This is something hard to get out in your initial scoping. You provide Catchpoint with a series of tests and get a cost estimate, not realizing all the data you might have to collect long term. That was a big deal for us because we partly switched on the promise of saving money.

Read full review

Avinash Gopu.

Associate VP & Cyber Security Specialist at US Bank

Offers good visibility into multiple environments, significantly reduces our alert volume, and speeds up our security investigations

There are limitations with Splunk not detecting all user activity, especially on mainframes and network devices. This is because Splunk relies on agents, which cannot access certain workstations. In these cases, we have to rely on application data. For example, with mainframes, manual reports are generated and sent to Splunk, limiting visibility to what's manually reported. This lack of automation for specific platforms needs improvement from Splunk. Additionally, API access is limited for other applications that rely on API calls and requests. This requires heavy customization on Splunk's end. These are the main challenges we've encountered. Monitoring multiple cloud platforms, like Azure, GCP, and AWS, with Splunk Enterprise Security presents some challenges. While Splunk provides different connectors for each provider, consolidating data from two domains across distinct cloud environments can be complex. However, leveraging pre-built templates and Splunk's data collation capabilities can help overcome these hurdles. Despite initial difficulties, I believe Splunk can effectively address this task, earning it an eight out of ten rating for its multi-cloud monitoring capabilities. While Splunk Enterprise Security offers insider threat detection capabilities, its effectiveness could be enhanced by integrating with additional tools, such as endpoint security solutions. This integrated approach is particularly crucial for financial institutions, which often require dedicated endpoint security teams. While using multiple tools is valuable, further improvements within Splunk itself are also necessary. Considering both external integration and internal development, I would rate its current insider threat detection capabilities as three out of ten. Threat detection is where Splunk falls behind. While it offers tools, other use cases require additional work. PAM is an enterprise tool that centralizes information about users, servers, and everything else. It needs real-time monitoring, which I haven't seen in any of the companies I've worked for. They only rely on Splunk for alerting, but real-time monitoring should be handled by the endpoint security team's tools. This means there's no detection or analysis at the machine or endpoint level. Additionally, threat analysis reporting is also absent.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The drill-down feature of this product was very good. It allowed us to identify the exact page or area of the site that was causing our customers an issue."

"The solution offers three different ways of slicing data to look for abnormalities."

"Catchpoint provides a great amount of information."

"Catchpoint helped us establish that something is in a provider network, so we could tell our customers to check their internet provider because the traffic is not getting to us. You need to be gentle when you tell them that, but the fact that we could do it was crucial."

"The best feature in Catchpoint is the alert or the notification my company gets frequently, in particular, every five minutes. It's the notification you get whenever a respective market has an issue. There's also a dashboard in Catchpoint that shows the markets you support, so all the markets will be highlighted graphically in the dashboard whenever there's downtime that could affect you. If there's no issue for a specific market, it will be in green, so in this way, anybody would be able to understand which market has issues and which market has no issues through Catchpoint. The tool is very useful for monitoring activities."

"The thing I like most is the tech support in this company, because they have 24/7 chat support. We can chat immediately and ask them about an issue and they keep responding. They create tickets on our behalf and respond."

"We really need the API monitoring, as well as client side session monitoring, the global synthetic monitoring, to track the availability of the systems from the customer side."

"The most valuable features of Catchpoint are basically the transaction monitors on the API and UI."

More Catchpoint pros

"It helped us consolidate all our solutions into an easy tool to use for various employees."

"The solution is very fast and succinct."

"The security part is useful as it helps secure the entire environment."

"The log aggregation is great."

"Splunk Enterprise Security quickly gives us a view of an endpoint or a user or identity. If I want to look for an identity or an asset, I just quickly go into Splunk Enterprise Security. I know where to go and get a quick analysis for a respective object."

"We can easily configure things as required in relation to our use cases."

"Its usability is the best part. It is easy for our developers to use if they want to search their logs, etc."

"Splunk is a user-friendly solution."

More Splunk Enterprise Security pros

Cons

"A room for improvement in Catchpoint is that it lacks an automated page updating feature. My company receives all the alerts and notifications it needs, but the page doesn't update automatically. You need to manually refresh the page, so every five minutes you need to refresh it to see the most updated information. If there's an automated page refresh feature, that would help my company. It's a feature that Grafana has. The page auto-refreshes in Grafana, so you don't have to manually refresh the page. If that feature is implemented in Catchpoint, it'll be useful for the users. Another area for improvement in the tool is you have to do a manual task, for example, when you have a notification for a market, you get a zip code that the user could have entered, but if the zip code is incorrect, you have to manually go into Catchpoint and update that parameter, so that manual step is another area in the tool that needs improvement."

"Catchpoint can be improved by focusing solely on network monitoring."

"if we need to do performance analysis, we have to click too many times. For example, if there is an issue that is caught by Catchpoint, we need to understand what the error is and at which step it failed, or which transaction that is impacted. To drill down, we have to click too many things to get the answer."

"A large selection of nodes are available but it is a challenge to test reliably in China and the Middle East."

"The old user version was better, it was more user-friendly."

"It would be great if Catchpoint could incorporate its alerting system instead of relying on separate tools like ServiceNow."

"We would like the script creation feature of this solution to be improved, as it currently requires a complicated manual process to update the scripts."

"The product could include global monitoring and predictive analytics to identify widespread issues and cyber threats."

More Catchpoint cons

"The GUI can be improved to include some of the capabilities that other BI solutions have."

"I think the machine learning should be emphasized. Now, it's really important to analyze Big Data, data mining. A SIEM solution, like Splunk, needs an improved data mining solution, artificial intelligence."

"Due to its high licensing cost, Splunk is out of reach for many organizations."

"It would be good if the solution had some kind of copilot to automate or help write correlation searches."

"Over time I will have more requirements and I can foresee the solution could improve the search algorithm to run and output the data faster."

"The CIM model is the method Splunk uses to normalize data and categorize its important parts, but it is quite complex."

"Splunk's reporting functionality would benefit from enhanced customization capabilities, allowing users to tailor reports to their specific needs for better data visualization and analysis."

"Splunk Enterprise Security is complicated in terms of developing specific cybersecurity use cases."

More Splunk Enterprise Security cons

Pricing and Cost Advice

"The solution's pricing is comparable to the last tool we were using."

"The price and licensing are very, very high. They have to come down on the pricing to match with the industry standard."

"The solution's pricing varies based on services and licensing models."

"In terms of licensing fees, I believe they were slightly higher."

"The pricing is based on consumption and works on a point scale. For example, let's say I want to look at www.google.com, and I'm going to test it to see if it's there. It will bring back all this data that tells me how long it took to connect and how long it took to get the first byte. It will list all the resources on the page, showing that they all work and there are no broken links. It brings that data back. That test has an assigned point value depending on what you decide to extract from that test. If all I do is check to see whether it's available, it might be one point. I don't know the exact point values off-hand. This is just an example."

"Splunk can be an expensive solution. It all depends on how we configure the alerts and the events from the endpoints. You can save some money if you do that correctly. If not, it becomes an expensive solution."

"It can be expensive, especially the licensing costs. However, there is added value in what it can do, not just log aggregation."

"I am not personally involved with the pricing of the solution."

"You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive."

"Splunk is really expensive."

"As a team, we prefer the old pricing model with a perpetual license. We are still evaluating the whole subscription-based model."

"The licensing is good, but the pricing absolutely needs some work. It is very high."

"Most people share the same thought that the ingestion rates can get pretty pricey. There is a lot of work we do to curate the data that we send to Splunk so that it is not too noisy or too expensive."

More Splunk Enterprise Security pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Digital Experience Monitoring (DEM) solutions are best for your needs.

See recommendations

824,053 professionals have used our research since 2012.

Comparison Review

Vinod Shankar

Manager, Enterprise Risk Consulting at Deloitte & Touche

Feb 26, 2015

HP ArcSight vs. IBM QRadar vs. McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm

We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…

Read full review

Top Industries

By visitors reading reviews

Educational Organization

61%

Financial Services Firm

11%

Computer Software Company

Retailer

Financial Services Firm

15%

Computer Software Company

14%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Catchpoint?

Catchpoint is very flexible and also provides logs for troubleshooting purposes. It helps us fix issues within the SLAs signed with the end users. The tool is easy to learn.

See all answers

What is your experience regarding pricing and costs for Catchpoint?

The solution's pricing varies based on services and licensing models. Clients typically see significant operational and cost efficiencies, with time savings estimated between 30% and 40%.

See all answers

What needs improvement with Catchpoint?

The product could include global monitoring and predictive analytics to identify widespread issues and cyber threats.

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What is a better choice, Splunk or Azure Sentinel?

It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...

See all answers

How does Splunk compare with Azure Monitor?

Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...

See all answers

Comparisons

Dynatrace vs Catchpoint

Compared 23% of the time

ThousandEyes vs Catchpoint

Compared 21% of the time

Datadog vs Catchpoint

Compared 12% of the time

New Relic vs Catchpoint

Compared 7% of the time

Akamai mPulse vs Catchpoint

Compared 7% of the time

More Catchpoint Competitors

Wazuh vs Splunk Enterprise Security

Compared 10% of the time

IBM Security QRadar vs Splunk Enterprise Security

Compared 9% of the time

Dynatrace vs Splunk Enterprise Security

Compared 8% of the time

Datadog vs Splunk Enterprise Security

Compared 5% of the time

Sentinel vs Splunk Enterprise Security

Compared 4% of the time

More Splunk Enterprise Security Competitors

Product Reports

Buyer's Guide

Catchpoint

December 2024

Download Catchpoint product report

Buyer's Guide

Splunk Enterprise Security

November 2024

Download Splunk Enterprise Security product report

Learn More

Catchpoint

Splunk

Overview

Catchpoint is the Internet Resilience Company™. The top online retailers, Global2000, CDNs, cloud service providers, and xSPs in the world rely on Catchpoint to increase their resilience by catching any issues in the Internet Stack before they impact their business. Catchpoint’s Internet Performance Monitoring (IPM) suite offers synthetics, RUM, performance optimization, high fidelity data and flexible visualizations with advanced analytics. It leverages thousands of global vantage points (including inside wireless networks, BGP, backbone, last mile, endpoint, enterprise, ISPs, and more) to provide unparalleled observability into anything that impacts your customers, workforce, networks, website performance, applications, and APIs.

Learn more at: https://www.catchpoint.com/

Splunk Enterprise Security is widely used for security operations, including threat detection, incident response, and log monitoring. It centralizes log management, offers security analytics, and ensures compliance, enhancing the overall security posture of organizations.

Companies leverage Splunk Enterprise Security to monitor endpoints, networks, and users, detecting anomalies, brute force attacks, and unauthorized access. They use it for fraud detection, machine learning, and real-time alerts within their SOCs. The platform enhances visibility and correlates data from multiple sources to identify security threats efficiently. Key features include comprehensive dashboards, excellent reporting capabilities, robust log aggregation, and flexible data ingestion. Users appreciate its SIEM capabilities, threat intelligence, risk-based alerting, and correlation searches. Highly scalable and stable, it suits multi-cloud environments, reducing alert volumes and speeding up investigations.

What are the key features?

Comprehensive Dashboards: Provide a holistic view of security operations.
Flexible Data Ingestion: Supports various data sources for better analysis.
Robust Log Aggregation: Centralizes log management for easier monitoring.
Machine Learning Toolkit: Enhances threat detection and prediction capabilities.
SIEM Capabilities: Integrates security information and event management.
Threat Intelligence: Utilizes external information to improve security measures.
Risk-Based Alerting: Prioritizes alerts based on the risk they pose.
Correlation Searches: Identifies and correlates security events effectively.

What benefits or ROI should users look for?

Enhanced Visibility: Improves monitoring across endpoints, networks, and users.
Faster Incident Response: Speeds up identification and resolution of security issues.
Reduced Alert Volumes: Lowers false positives and enhances signal-to-noise ratio.
Scalability: Adapts to growing and changing security needs.
Improved Security Operations: Integrates multiple security facets into one platform.

Splunk Enterprise Security is implemented across industries like finance, healthcare, and retail. Financial institutions use it for fraud detection and compliance, while healthcare organizations leverage its capabilities to safeguard patient data. Retailers deploy it to protect customer information and ensure secure transactions.

Sample Customers

Information Not Available

Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.

Buyer's Guide

Catchpoint vs. Splunk Enterprise Security

May 2023

Free Report: Catchpoint vs. Splunk Enterprise Security

Find out what your peers are saying about Catchpoint vs. Splunk Enterprise Security and other solutions. Updated: May 2023.

DOWNLOAD NOW

824,053 professionals have used our research since 2012.

See our Catchpoint vs. Splunk Enterprise Security report.

We monitor all Digital Experience Monitoring (DEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.