Cyware Cyber Fusion vs Splunk SOAR comparison

Cyware and Splunk are both solutions in the Security Orchestration Automation and Response (SOAR) category. Cyware is ranked #25 with an average rating of 7.0, while Splunk is ranked #3 with an average rating of 8.1. Cyware holds a 0.7% mindshare in SOAR, compared to Splunk’s 9.3% mindshare. Additionally, 50% of Cyware users are willing to recommend the solution, compared to 87% of Splunk users who would recommend it.

Cyware Cyber Fusion

Read 2 Cyware Cyber Fusion reviews

429 Views
284 Comparison Views

50% willing to recommend

Splunk SOAR

Read 43 Splunk SOAR reviews

5,935 Views
3,482 Comparison Views

87% willing to recommend

Cyware Cyber Fusion

Splunk SOAR

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cyware Cyber Fusion and Splunk SOAR based on real PeerSpot user reviews.

Find out in this report how the two Security Orchestration Automation and Response (SOAR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Cyware Cyber Fusion vs. Splunk SOAR Report (Updated: September 2024).

Buyer's Guide

Cyware Cyber Fusion vs. Splunk SOAR

September 2024

Download the complete report

Helped 806,727 peers since 2012

Categories and Ranking

Cyware Cyber Fusion

Ranking in Security Orchestration Automation and Response (SOAR)

25th

Average Rating

7.0

Number of Reviews

Ranking in other categories

Threat Intelligence Platforms (28th)

Splunk SOAR

Ranking in Security Orchestration Automation and Response (SOAR)

3rd

Average Rating

8.2

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of September 2024, in the Security Orchestration Automation and Response (SOAR) category, the mindshare of Cyware Cyber Fusion is 0.7%, down from 0.8% compared to the previous year. The mindshare of Splunk SOAR is 9.3%, down from 9.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Orchestration Automation and Response (SOAR)

Featured Reviews

AhmedKonsowa

Senior Pre-Sales Engineer (Commercial Sector) at Cyber Knight

Nov 8, 2023

A stable solution with excellent features and a helpful technical support team

We use the solution for cyber fusion centers The product has a lot of strong points compared to other tools. The prices must be reduced. I have been using the solution for one year. I am using the latest version of the solution. I rate the tool’s stability a nine out of ten. In my company,…

Read full review

Shubham Sinha.

Sr. Principal Info Sec Analyst at Veritas Technologies LLC

Jun 9, 2023

Helped eliminate repetitive and redundant tasks, but custom functions and reporting need a lot of work

The visibility of the solution’s playbook viewer depends on the right you assign to the analyst. SOAR has the flexibility to distinguish between the roles of analyst and owner. If the analyst's role is to just work on a ticket, they cannot view the playbook design platform. That is limited to the owner. That can be both a good and bad thing. A major problem I have faced in SOAR's rights distribution is roles and responsibilities. Suppose I am initially granted user rights or analyst rights, but later on, I also get admin rights. SOAR is unable to amend the limitations of my role. I raised a support ticket with Splunk about this. They said it's a bug in their 5.3.5 version. To fix this, I had to reinstall the entire platform from scratch, just to amend the rights and responsibilities of one role. This bug was not fixed. Also, the latest GUI is terrible. The previous one was better. Another point is that while using Splunk SOAR in an investigation is not difficult, there are some complex parameters. We have SOAR case management, but the licensing is going to put a big hole in your pocket. Also, there is an issue with investigation node addition. When you are doing node additions you cannot grant the entire environment to have SOAR visibility into the incident. So when you integrate it with an ITSM tool, like ServiceNow or Jira for ticketing purposes, there is a challenge. When you do nodes for investigation on a regular basis, sometimes it does not update our ServiceNow platform, which is terrible. It is a redundant activity for an analyst to update that in the case management as well as in the ITSM tool. Although SOAR provides integration, the functionality of investigation and nodes is terrible when it comes to integration. An additional area for improvement is custom function creation. It's terrible. A newbie cannot create custom functions right away. They would require a solid understanding first. Also, the reporting is really awful. If I want to do a report for a customized time period, such as the last three days or the last four days, or from the 10th to the 12th of June, that is not available in SOAR at all. That kind of feature is available in Cortex XSOAR. Reporting is a real challenge.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The product is stable."

"The technical support team is helpful."

"So far, the interface is very easy to use."

"The most valuable features are the Splunk SOAR apps and playbooks."

"The most valuable features of Splunk SOAR are the easy integration with other solutions, including other Splunk solutions. The most important playbooks we need on the market come already on the Frontend. However, nowadays, Splunk changed its name, it's not Frontend anymore, it's Splunk Store. This is a very strong point."

"The product provides 100% automation for certain processes."

"The most valuable feature of Splunk SOAR is the automated playbooks, which saves analysts time."

"Workflow management is most valuable. It is easily customizable"

"SOAR allows custom code to be written and integrates with various technologies through pre-built apps like Windows Remote Management or custom apps we can build ourselves like a secret retrieval app from our vault."

"Surprisingly, the mobile app is valuable because it is very convenient for our on-call analysts to respond and get alerted to security alerts and events wherever they are. We are able to harness the power of Splunk SOAR and everything that we are doing, and we are also able to alert our on-call analysts 24/7. From their mobile phone, they can respond to those alerts."

More Splunk SOAR pros

Cons

"The tool doesn't integrate well with ServiceNow."

"The prices must be reduced."

"Splunk SOAR can improve IoT/OT security-related case studies or your use cases. Their integration with identity and access management (IAM) solutions is a bit shaky. They don't have good integration with a lot of IAM solutions. They do have good capability in terms of user access management internally, but even with privileged user access, they have a good module. However, if they have to integrate with solutions, such as CyberArk or IBM IAM solutions they are lacking, the visibility of user access is not that much."

"It could be easier to implement."

"The Splunk SOAR platform was not designed specifically for case management which is why this area needs improvement."

"have put a number of ideas on the ideas.splunk.com site for feature requests for the Splunk SOAR product. I posted one of them about three years ago, which finally got implemented in the latest release that just got announced, so the time to implement new features and things like that is a little bit concerning."

"Various aspects of the playbook development process itself can be optimized."

"Unfortunately, not all of our analysts are iPhone users or iOS users. The mobile app is only supported on iOS. Our analysts who have Android do not have that benefit. That would be a nice thing to have so that we can have it across the board and not just for iOS."

"The font used in the interface could be changed and made easier to read."

"The technical support for the Splunk SIEM solution was average."

More Splunk SOAR cons

Pricing and Cost Advice

Information not available

"When we first purchased our Splunk SOAR license, it was based on an event-count model. It was based on the number of events. I had strong opinions at the time that automation should not be stifled by the amount of automation you can accomplish, so the previous structure was not as beneficial for us. Later that year, we got told or saw at a conference that they announced user-based pricing. We are now in a renewal period, so we migrated to a user-based license model, which is more appropriate for us so that we no longer have to worry about stifling our automation based on the quantity."

"Splunk SOAR is an expensive solution for an organization of our size."

"The licensing cost is reasonable."

"Splunk is a fast enterprise tool, but it costs too much. At the same time, it's worth what we pay, in my opinion. We can efficiently perform all the functions and tie together the data. It's the perfect tool for our needs."

"While I can't confirm the exact pricing, some colleagues have mentioned that Splunk SOAR may be on the costlier side."

"I found the price of Splunk SOAR to be good."

"Splunk SOAR is more expensive compared to other options for SOAR."

"The cost is high and the licensing is on an annual basis."

More Splunk SOAR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.

See recommendations

806,727 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

20%

Computer Software Company

12%

Manufacturing Company

11%

Energy/Utilities Company

Computer Software Company

15%

Financial Services Firm

14%

Manufacturing Company

11%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Cyware Security Orchestration Layer?

The technical support team is helpful.

See all answers

What is your experience regarding pricing and costs for Cyware Security Orchestration Layer?

The solution is not expensive, but it is not cheap. I rate the pricing a six out of ten.

See all answers

What needs improvement with Cyware Security Orchestration Layer?

The prices must be reduced.

See all answers

What do you like most about Splunk Phantom?

Splunk SOAR's quick response to incidents is the most valuable part.

See all answers

What is your experience regarding pricing and costs for Splunk Phantom?

The cost is as expected. It can be a bit high, however, we get a better rate between us and our third party. We provide services to clients if they purchase Splunk SOAR which gives them good value.

See all answers

What needs improvement with Splunk Phantom?

I haven't had any issues with the solution so far.

See all answers

Comparisons

Palo Alto Networks Cortex XSOAR vs Cyware Cyber Fusion

Compared 30% of the time

ThreatConnect Threat Intelligence Platform (TIP) vs Cyware Cyber Fusion

Compared 28% of the time

Swimlane vs Cyware Cyber Fusion

Compared 18% of the time

More Cyware Cyber Fusion Competitors

Cortex XSIAM vs Splunk SOAR

Compared 25% of the time

Palo Alto Networks Cortex XSOAR vs Splunk SOAR

Compared 22% of the time

ServiceNow Security Operations vs Splunk SOAR

Compared 8% of the time

Swimlane vs Splunk SOAR

Compared 8% of the time

Exabeam vs Splunk SOAR

Compared 1% of the time

More Splunk SOAR Competitors

Product Reports

Buyer's Guide

Security Orchestration Automation and Response (SOAR)

August 2024

Download Cyware Cyber Fusion product report

Buyer's Guide

Splunk SOAR

August 2024

Download Splunk SOAR product report

Also Known As

CSOL, Fusion and Threat Response, Threat Intelligence eXchange, Security Orchestration and Automation (SOAR)

Phantom

Learn More

Cyware

Splunk

Overview

More than just a security automation tool, Cyber Fusion unites threat intel and SOAR to automate any security tool, orchestrate any environment, and collaborate across any boundary, to yield more intelligent threat response.

Splunk SOAR offers features like automation and orchestration of manual tasks, speeding up work, detection and response to advanced and emerging threats.

Go from overwhelmed to in-control

Automate manual tasks. Address every alert, every day. Establish repeatable procedures that allow security analysts to stop being reactive and focus on mission-critical objectives to protect your business.

Force multiply your team

Orchestrate and automate repetitive tasks, investigation and response to increase efficiency and productivity, and do more with the people you already have. Make a team of three feel like a team of 10.

From 30 minutes to 30 seconds

Work faster with Splunk SOAR. Respond to threats in seconds. Lower your mean time to respond (MTTR) by automating security tasks and workflows across all of your security tools.

End-to-end security operations made easy

Take advantage of Splunk Enterprise Security and Splunk SOAR joining forces to provide a seamless and intuitive SecOps platform to prevent, detect and respond to advanced and emerging threats.

Sample Customers

Information Not Available

Recorded Future, Blackstone

Buyer's Guide

Cyware Cyber Fusion vs. Splunk SOAR

September 2024

Free Report: Cyware Cyber Fusion vs. Splunk SOAR

Find out what your peers are saying about Cyware Cyber Fusion vs. Splunk SOAR and other solutions. Updated: September 2024.

DOWNLOAD NOW

806,727 professionals have used our research since 2012.

See our Cyware Cyber Fusion vs. Splunk SOAR report.

See our list of best Security Orchestration Automation and Response (SOAR) vendors.

We monitor all Security Orchestration Automation and Response (SOAR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.