Try our new research platform with insights from 80,000+ expert users

Centreon vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Centreon
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
28
Ranking in other categories
Network Monitoring Software (25th), IT Infrastructure Monitoring (22nd), Cloud Monitoring Software (18th)
Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.6
Number of Reviews
305
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

While both are Systems Management solutions, they serve different purposes. Centreon is designed for IT Infrastructure Monitoring and holds a mindshare of 2.9%, up 2.9% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 9.5% mindshare, down 12.8% since last year.
IT Infrastructure Monitoring
Security Information and Event Management (SIEM)
 

Featured Reviews

Caulson Chua - PeerSpot reviewer
With fewer staff resources, we can identify and address issues before the system goes down
Centreon's most valuable features are preventative maintenance and cost-efficiency. Everything is monitored, and we get a log before the system fails. We have an opportunity to fix the issue and avoid downtime. The dashboard is user-friendly, and the solution provides good reporting and visibility. The layout is straightforward. You can click on the drop-down list to select the server you want. The anomaly detection feature helped us reduce our average resolution time by 30 minutes to an hour.
ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The customizable reports and dashboards are really flexible. We started this partnership with Centreon, when we were looking for a solution, because of the flexibility of the reporting. That's what we found to be most attractive in the solution. You can display the data as you want."
"You can concentrate and orchestrate several other solutions from other vendors. You can consolidate those solutions all in one place, then maintain and monitor from that single point. This creates ease of use. It is a very powerful solution from this point of view."
"We have all our tickets inside Centreon in real-time and can monitor a lot of ELP and CLN in real-time for application purposes."
"The most valuable feature is the monitoring of servers and networks, because we have a lot of them and need to maintain control."
"The most valuable feature of the solution is that most of its plug-ins are free."
"Predetermined templates allow for simple and fast service monitoring configuration."
"What we like about it is that, whereas with Nagios, by design, if you have five or six data centers, you have to open five or six web pages to see what's going on, In Centreon, this is all included in one page, a single site, one dashboard. You don't have to jump from one specific dashboard to the other."
"We have a single GUI where we can view the status of all our infrastructure."
"In the past we used the different application to collect logs. We used SurfWatch and VMware to do so. But, we found that the Splunk has more capacity to do more in less time. They provide a aster speed to index all the events , and this is a huge asset."
"Splunk is extremely flexible, which allows us to create custom visualizations along with other customizations."
"Splunk incorporates a lot of elements that help to reduce security risks. For it to reach certain compliance, we need to have some security insight. Splunk is a very good SIEM, it’s a top solution, but the best feature is its cost of visibility. We have all the most important features to detect vulnerabilities or risks."
"Splunk Enterprise Security allows us to create custom dashboards by changing fonts and modifying widgets."
"The fact that Splunk is a platform and not just a SIEM solution is a key benefit."
"It helps streamline troubleshooting and log analysis."
"Aggregation searches have reduced time and difficulty of identifying trends and conditions which need to reviewed."
"The end-to-end visibility into our environment that Splunk provides is impressive. We just need to use it better."
 

Cons

"There are improvements that they need to make to their API. When we're using different systems and we want to disable monitoring for a specific server, we still can't do that through the API. That's something that's lacking."
"The problem with the reporting is you have to configure the report, and after that, you will have the same report every month, every week, every day. You have to sync it in order to have a great report."
"Centreon introduced network discovery in the most recent update. However, it doesn't work well. Our previous monitoring tool could discover networking equipment on the network and identify the relationships between the devices."
"I would like them to improve their documentation. When I faced some issues, I was looking for more documentation on the Internet. There is official documentation on Centreon's website, which sometimes is useful. Sometimes it is not very useful, as you cannot find the information or enough examples of configuration. The answer for me was to contact the support, who helped me, but I was not able to find all the information by myself on Centreon's website. A Centreon community or blog would be helpful."
"The Home view could be improved by adding customization functions that allow users to change the size of the widgets for a more uniform layout."
"Opening a ticket on the website of Centreon can be difficult for my colleague, but not for me because my English is good. However, my colleague doesn't speak English well, as our company is in Quebec and our first language is French."
"Sometimes, when the GUI and some of the search fields are being reset, and I return to the page, then I have to set them again. Therefore, some improvement on the UI and the filtering is needed."
"I would like to see more plugins. That is something it needs. There is also room for improvement through dynamic thresholds, or self-discover thresholds. I would also like to see a discovery feature that could map the whole network environment and automatically suggest things."
"Splunk isn't appropriate for smaller companies. It's too expensive."
"It is a good product, but the Achilles heel for a lot of organizations is the cost model for it because it gets expensive. That's because the model is based on how much data it processes a day, which can be prohibitive, especially if you have a lot of data. A lot of customers may not be ready for the sticker shock on how to fully leverage the product. I realized that the reason for that is that when it was originally designed, it was kind of like a big data modeling application. If they want to have a bigger customer base, they can come out with subsets of their product that are focused on specific things and have different pricing models. It may help with the cost."
"Delays in responses from the technical team can pose challenges for both vendors and clients, especially considering that Splunk applications and machine solutions are critical assets."
"Its interface could be improved."
"I would like to see more SIEM functionality and a better ticket tool."
"​On the technical side, it would be nice to see aspects of the recent acquisition of Phantom make it into the core Splunk Enterprise, not just become a part of the premium Enterprise Security.​"
"The solution's automation could be improved."
"I would like to see an updated dashboard. The dashboard is a little out-of-date. It could be made prettier."
 

Pricing and Cost Advice

"It's quite expensive when you use the Enterprise version, but if you compare it to other providers, it's more like a middle-of-the-line product. It's always good to have a price that is lower, but I would say the price is okay because we get very good support and if we have any other issues we can always contact them. There has never been a time when I didn't get help from them."
"Centreon is always available to develop new plugins when needed. The most important thing is that their maintenance account yearly subscription fee includes the fact that they will maintain the new plugins that you requested them to deliver."
"The pricing starts at around 5000 euro. However, this depends on: Your environment, the size of your host, how many hosts you have, how many remote pollers you have, and if you want to use the Monitoring Business Intelligence or Centreon MAP functionalities."
"The solution is very effective, despite the low price."
"The pricing works out well for us, given our environment and where we are."
"It is perfect and very cheap if you are a little company or startup. After that, it is quite expensive for a big company."
"The pricing is acceptable."
"I would like to see improvement in the licensing model. You can purchase X number of licenses, up to 1,000 devices or 1,000 instances. Your next batch is 2,000. But what if you only need, say, 1,200? The model could be changed a little bit."
"Regarding the product's pricing, I think it has always been difficult to have a conversation with Splunk."
"The pricing can be better. We are already considering Elastic because Splunk is too expensive. You have to pay based on per-day ingestion. There should be a more flexible model for the use cases where one day you have a huge amount, and on other days, it is quite less."
"Splunk should be able to integrate with other product using the free version."
"The variables and the flexibility that Splunk provides are helpful, especially in a hybrid and multi-cloud environment."
"Pricing is pretty fair."
"The pricing is based on the volume of data fed into it, which can lead to substantial costs. This pricing model is complex and unpredictable, making cost management difficult."
"This product could use better pricing in general."
"Splunk Enterprise Security is expensive but the solution is equipped with a lot of features."
report
Use our free recommendation engine to learn which IT Infrastructure Monitoring solutions are best for your needs.
844,944 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Computer Software Company
19%
Financial Services Firm
11%
Government
10%
Comms Service Provider
7%
Financial Services Firm
15%
Computer Software Company
14%
Manufacturing Company
8%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Centreon?
Centreon's most valuable features are preventative maintenance and cost-efficiency. Everything is monitored, and we get a log before the system fails. We have an opportunity to fix the issue and av...
What needs improvement with Centreon?
The issue my company has with the tool stems from the fact that it didn't give an on-time response to us. The product collects the information, but it fails to send them via SMS, WhatsApp or Telegr...
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Overview

 

Sample Customers

Airbus, Bollore, BT, Canal Plus, Kuehne Nagel, Limagrain, LVMH, Oberthur Technologies, Orange, Darty, Addax Petroleum, Plastic Omnium, Auchan, Valeo, Saint Gobin, Clarins, Hugo Boss, JC Decaux, French Government (Defense, Justice, Environment, Agriculture), OptiComm, Thales, Zeiss.
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about Zabbix, Datadog, Auvik and others in IT Infrastructure Monitoring. Updated: March 2025.
844,944 professionals have used our research since 2012.