Try our new research platform with insights from 80,000+ expert users

Splunk Enterprise Security vs eG Enterprise comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

eG Enterprise
Average Rating
8.2
Number of Reviews
20
Ranking in other categories
Application Performance Monitoring (APM) and Observability (42nd), Network Monitoring Software (50th), IT Infrastructure Monitoring (45th)
Splunk Enterprise Security
Average Rating
8.4
Number of Reviews
301
Ranking in other categories
Log Management (1st), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. eG Enterprise is designed for Application Performance Monitoring (APM) and Observability and holds a mindshare of 0.3%, down 0.3% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 10.9% mindshare, down 14.3% since last year.
Application Performance Monitoring (APM) and Observability
Security Information and Event Management (SIEM)
 

Featured Reviews

HK
Jun 30, 2021
Great visibility, easy to set up, and has very responsive technical support
The visibility and the ability to monitor user behavior are very useful to us. So is the fact that we have diagnostic capabilities. We divided the usage of these two parts - one for our business team and one for our support team where they can see the availability, performance, and application or service updates from a customer perspective. We appreciate that the team can understand the issue from our application, database, code, data integration, et cetera. We like that two different teams can use it and it fits each of their individual needs. Sometimes when we face issues with the new technologies or very old technologies where we cannot enhance the service, they move to work with us directly and start doing some development on this area which is very good for us. The initial setup is pretty simple. The solution can scale. Technical support has been great.
Sameep Agarwal. - PeerSpot reviewer
Oct 23, 2023
It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query
The ingestion happens quickly, so you can run up the data costs if you use the default settings. It isn't a problem for government agencies in the Saudi market, but many of the corporations in India are small or medium-sized enterprises that cannot afford that kind of ingestion system. Splunk needs to be tweaked in JSON so you can limit what is coming from the endpoints, especially the events. One needs to filter that out so that only certain events are ingested, like login failures, Active Directory changes, password reset requests, privilege modifications, etc. Each Windows machine generates about 310 KB of information per event, but we can tweak that down to about 50 KB.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Enormous capability to monitor Citrix environments."
"The topology view which provides a visual representation of a service and quickly allows identification of errors or degraded performance."
"Sometimes when we face issues with the new technologies or very old technologies where we cannot enhance the service, they move to work with us directly and start doing some development on this area which is very good for us."
"Its ability to monitor failures and to restart a Windows service when it fails."
"The ability to see what the end user response is, so I can get a better understanding of what the end user is seeing when they connect to the Citrix servers."
"It gives good insight into inside of what's going on with Exchange."
"eG Enterprise has a single pane of glass for observability and monitoring."
"EG monitors all infrastructure elements (all OS, all database, storage, network, and web server) from a single console."
"Being able to track impossible travel logins and things of that nature is valuable. We can track user logins from various IPs, various countries, and at various times to see if everything adds up."
"Splunk is extremely flexible, which allows us to create custom visualizations along with other customizations."
"Splunk Enterprise Security gives us a single pane of glass so that we can use just one tool instead of having to use different tools."
"The most valuable function is the notable events. When I joined the team, I asked them what they could currently see, and they said nothing. I was pretty shocked. I know for a fact that they're using Enterprise Security or at least they had purchased it. I told them that there are several dashboards within Splunk that we can leverage. There is also notable events where we can see potential incidents or potential alerts about the infrastructure and the network itself."
"We saw the granularity that we could get from Splunk far exceeded what we already had. We had the ability to have our security team really focus on the platform and stay within the platform, but they could correlate with a variety of other stakeholders, and our stakeholders were growing."
"It provides a risk score for each object, device, or user. We can then take action if they are at a higher risk."
"The ability to ingest different log types from many different products in our environment is most valuable."
"The scalability of the solution is amazing because it can collect a lot of data and you can have your own structure to monitor this data."
 

Cons

"The UI looks a little dated and could do with a refresh."
"Application TCP latency is an area with room for improvement, but I believe this is already on the roadmap."
"Needs to improve the networking monitor capabilities."
"Their dashboards could use some improvement. The ability to customize them a bit more."
"The solution should improve on the security side and include some more API integrations into wider application platforms."
"Back-end configuration is not easy to implement."
"eG Enterprise's licensing could be cheaper. Even compared to Dynatrace, I think the price is quite expensive considering the APM functionalities, even though they have other benefits such as info monitoring."
"Dashboards are difficult to create, and not so useful."
"There are new services which are coming up. If Splunk can catch up with the speed of Amazon, and with the integration, instead of us waiting for another year or so, that would be good."
"The product was difficult to back up the first time."
"It would be nice if they had a wizard to construct searches, including more complex searches that include math or statistics."
". Having a trial version or more training on Splunk would be helpful."
"The support that is included with the standard licensing fee is very bad."
"Splunk Enterprise Security can be improved by including backup network detection and response and safe management to the paid platform."
"I have concerns about the architecture as well since I can see it is not very well defined."
"The configuration could be better."
 

Pricing and Cost Advice

"The cost for eG Enterprise is almost $100,000 for one hundred and fifty services. It's subscription-based and the payment is yearly."
"There are two licensing options: Perpetual and SaaS-based. The main offering, in terms of what eG prefers to offer, is the subscription-based rather than the Perpetual License. The price could be cheaper."
"They gave us a good price, when they were found out we were looking at other products because their price was very high. We were looking at another solution, then we came back to them was because they brought the price down. We selected them for three years."
"It is not expensive."
"It'd be nice if the price was lower. That would be an improvement."
"If using eG for virtual desktops, carefully calculate whether per named user, per concurrent user, or per server"
"They are aligned with other enterprise solutions."
"You may get some monitoring products with certain licensing you may own. Some of these can take ages to configure and setup, along with needing a license to drive the software."
"Splunk Enterprise Security is expensive."
"Our ROI is high."
"As a team, we prefer the old pricing model with a perpetual license. We are still evaluating the whole subscription-based model."
"Splunk Enterprise Security's pricing is pretty competitive."
"Splunk's costing is a little more difficult. The pricing method is complicated, and the way that costing is calculated in Splunk is a little more difficult."
"You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive."
"The price of Splunk Enterprise Security is reasonable, falling somewhere in the middle range."
"The pricing and licensing of the product are quite high."
report
Use our free recommendation engine to learn which Application Performance Monitoring (APM) and Observability solutions are best for your needs.
814,763 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
13%
Manufacturing Company
11%
Healthcare Company
9%
Financial Services Firm
16%
Computer Software Company
14%
Government
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Any advice about APM solutions?
Could you please share your requirements ? There are a lot tools can be added to the list. I spent almost 6 months to test and check many tools then I select eG enterprise.
Do you recommend eG Enterprise? Why or why not?
I feel that eG Enterprise is one of the top APM tools available on the market. Out of the solutions I have tried, it is the best for monitoring, diagnosis, analytics, and reporting of key IT servic...
What do you like most about eG Enterprise?
eG Enterprise has a single pane of glass for observability and monitoring.
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Overview

 

Sample Customers

20th Century Fox, Allscripts, Anthem Blue Cross and Blue Shield, Aviva, AXA, Biogen, Cox Communications, Denver Health, eBay, JP Morgan Chase, PayPal, Southern California Edison, Samsung, and many more.
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about Splunk Enterprise Security vs. eG Enterprise and other solutions. Updated: May 2023.
814,763 professionals have used our research since 2012.