Try our new research platform with insights from 80,000+ expert users

LogicHub SOAR+ [EOL] vs Splunk SOAR comparison

Devo and Splunk are both solutions in the Security Orchestration Automation and Response (SOAR) category. Additionally, 100% of Devo users are willing to recommend the solution, compared to 85% of Splunk users who would recommend it.
LogicHub SOAR+ [EOL]
Read 2 LogicHub SOAR+ [EOL] reviews
    100% willing to recommend
    Splunk SOAR
    Read 44 Splunk SOAR reviews
    • 4,577 Views
    • 2,761 Comparison Views
    85% willing to recommend
     

    Comparison Buyer's Guide

    Download the report
    Executive SummaryUpdated on Mar 30, 2025

    Splunk SOAR and LogicHub SOAR+ [EOL] compete in the security orchestration, automation, and response market. While Splunk SOAR is preferred for its pricing and support, LogicHub SOAR+ [EOL] is chosen for its comprehensive features, despite higher costs.

    Features: Splunk SOAR offers incident response automation, customizable playbooks, and integration capabilities. LogicHub SOAR+ [EOL] provides AI-driven threat detection, automated alert prioritization, and advanced machine learning automation.

    Ease of Deployment and Customer Service: Splunk SOAR requires detailed planning and technical expertise for deployment, compared to LogicHub SOAR+ [EOL]'s streamlined experience. LogicHub offers proactive and thorough customer support, whereas Splunk provides more generalized services.

    Pricing and ROI: Splunk SOAR has a competitive initial setup cost and effective ROI through automation and reduced response times. LogicHub SOAR+ [EOL] involves higher upfront costs but delivers long-term value and superior ROI in scenarios requiring advanced automation and machine learning.

    DOWNLOAD THE COMPLETE REPORT
    To learn more, read our detailed Security Orchestration Automation and Response (SOAR) Report (Updated: March 2025).
    Buyer's Guide
    Security Orchestration Automation and Response (SOAR)
    March 2025
    Download the complete report
    Helped 845,040 peers since 2012

    Review summaries and opinions

    We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
     

    Categories and Ranking

    LogicHub SOAR+ [EOL]
    Average Rating
    9.6
    Reviews Sentiment
    7.6
    Number of Reviews
    2
    Ranking in other categories
    No ranking in other categories
    Splunk SOAR
    Average Rating
    8.0
    Reviews Sentiment
    6.8
    Number of Reviews
    44
    Ranking in other categories
    Security Orchestration Automation and Response (SOAR) (3rd)
     

    Featured Reviews

    Reviewer32109 - PeerSpot reviewer
    Integrated with hundreds of tools, analyzes data automatically, and has few false positives
    The ability to analyze data automatically to make decisions automatically is what I like the most. It is also fully integrated with hundreds of other tools. Our SIEM has the search capability but it cannot save the dataset for me to merge with the result set of another query. In LogicHub, to join two resultant datasets is super easy because they use SQL operators that I can do left join, right join, inner join, or full cross join. Besides some reporting tools that I used in the past, no other SOAR can do this easily. We automated that whole analytic logic so I don’t need to repeat.
    Read full review
    Shubham Sinha. - PeerSpot reviewer
    Helped eliminate repetitive and redundant tasks, but custom functions and reporting need a lot of work
    The visibility of the solution’s playbook viewer depends on the right you assign to the analyst. SOAR has the flexibility to distinguish between the roles of analyst and owner. If the analyst's role is to just work on a ticket, they cannot view the playbook design platform. That is limited to the owner. That can be both a good and bad thing. A major problem I have faced in SOAR's rights distribution is roles and responsibilities. Suppose I am initially granted user rights or analyst rights, but later on, I also get admin rights. SOAR is unable to amend the limitations of my role. I raised a support ticket with Splunk about this. They said it's a bug in their 5.3.5 version. To fix this, I had to reinstall the entire platform from scratch, just to amend the rights and responsibilities of one role. This bug was not fixed. Also, the latest GUI is terrible. The previous one was better. Another point is that while using Splunk SOAR in an investigation is not difficult, there are some complex parameters. We have SOAR case management, but the licensing is going to put a big hole in your pocket. Also, there is an issue with investigation node addition. When you are doing node additions you cannot grant the entire environment to have SOAR visibility into the incident. So when you integrate it with an ITSM tool, like ServiceNow or Jira for ticketing purposes, there is a challenge. When you do nodes for investigation on a regular basis, sometimes it does not update our ServiceNow platform, which is terrible. It is a redundant activity for an analyst to update that in the case management as well as in the ITSM tool. Although SOAR provides integration, the functionality of investigation and nodes is terrible when it comes to integration. An additional area for improvement is custom function creation. It's terrible. A newbie cannot create custom functions right away. They would require a solid understanding first. Also, the reporting is really awful. If I want to do a report for a customized time period, such as the last three days or the last four days, or from the 10th to the 12th of June, that is not available in SOAR at all. That kind of feature is available in Cortex XSOAR. Reporting is a real challenge.
    Read full review

    Quotes from Members

    We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
     

    Pros

    "It has improved my detection coverage in areas lacking by the SIEM."
    "This solution allows us to easily investigate malicious events, system alerts etc."
    "The customizable playbook is the most valuable aspect of the solution."
    "Splunk SOAR's quick response to incidents is the most valuable part."
    "Its ability to integrate with other systems and applications in our environment is pretty easy. Sometimes if we see any complexity we try to involve a consultant to help us. Everything is through the built-in app. Splunk can connect to any assets through the built-in app. It could be in a platform, firewalls, or endpoints. It's easy if it's an app integration."
    "Technical support is helpful."
    "The playbooks are valuable. They are the core component. Being able to implement and build a code process to work through and scale out what we want to do is valuable."
    "The most valuable feature of the solution is the playbook automation just because it allows us to reduce the manual actions that SOC has to handle."
    "The solution’s dashboard is really good and customizable. It also has a good UI."
    "Scalability is the best feature of the solution."
    More Splunk SOAR pros
     

    Cons

    "We would like this solution to have a higher level of support for SaaS applications."
    "UI coloring can be improved."
    "I haven't had any issues with the solution so far."
    "Providing Splunk app developers and playbook developers Python Stub files so that way when they create custom code through their IDE, they can have IntelliCode suggestions."
    "The Splunk SOAR platform was not designed specifically for case management which is why this area needs improvement."
    "In the beginning, we couldn't find any specific documents for every function. It wasn't easy to navigate to what we needed."
    "And most of the challenges that I have faced with the solution can be found in the documentation itself."
    "have put a number of ideas on the ideas.splunk.com site for feature requests for the Splunk SOAR product. I posted one of them about three years ago, which finally got implemented in the latest release that just got announced, so the time to implement new features and things like that is a little bit concerning."
    "We have playbooks written to extract these events and put them into the workflow since it wasn't structured as expected. It was a miss for us. We couldn't figure out why it broke or what actually happened there. It was something in this feed with legitimate and security events, so we tried to understand the names and what we would call them."
    "The algorithm and machine learning have room for improvement and can be more user-friendly."
    More Splunk SOAR cons
     

    Pricing and Cost Advice

    Information not available
    "I don't know the exact price, but for my region, it is very expensive."
    "The tool is not cheap."
    "The cost is high and the licensing is on an annual basis."
    "In my opinion, the price is high, but if you want good products, you have to be willing to pay for them."
    "The licensing cost is reasonable."
    "Splunk SOAR is more expensive compared to other options for SOAR."
    "While I can't confirm the exact pricing, some colleagues have mentioned that Splunk SOAR may be on the costlier side."
    "We renewed it this year. This year was the first time there was a dramatic increase in the price. It was kind of non-negotiable. It was just a high increase. We had internal communications, and it was definitely a surprise to us. In a short time frame, we renewed it this year. Prices are going up everywhere, but they are not always justifiable, at least not to our eyes. The pricing this year was definitely a big shock."
    More Splunk SOAR pricing and cost advice
    report
    See which vendors are best for you
    Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
    See recommendations
    845,040 professionals have used our research since 2012.
     

    Top Industries

    By visitors reading reviews
    No data available
    Computer Software Company
    14%
    Financial Services Firm
    13%
    Manufacturing Company
    11%
    Government
    9%
     

    Company Size

    By reviewers
    Large Enterprise
    Midsize Enterprise
    Small Business
    No data available
     

    Questions from the Community

    Ask a question
    Earn 20 points
    What do you like most about Splunk Phantom?
    Splunk SOAR's quick response to incidents is the most valuable part.
    See all answers
    What is your experience regarding pricing and costs for Splunk Phantom?
    Splunk SOAR is affordable cost-wise only, but not competitive from a technical perspective compared to Palo Alto SOAR and FortiSOAR.
    See all answers
    What needs improvement with Splunk Phantom?
    The creation of playbooks is complex in Splunk SOAR ( /categories/security-orchestration-automation-and-response-soar ), and the number of integrations needs enhancement. Although it enhances alert...
    See all answers
     

    Comparisons

    No data available
    Cortex XSIAM vs Splunk SOAR Logo
    Cortex XSIAM vs Splunk SOAR
    Compared 24% of the time
    Palo Alto Networks Cortex XSOAR vs Splunk SOAR Logo
    Palo Alto Networks Cortex XSOAR vs Splunk SOAR
    Compared 19% of the time
    Tines vs Splunk SOAR Logo
    Tines vs Splunk SOAR
    Compared 10% of the time
    Fortinet FortiSOAR vs Splunk SOAR Logo
    Fortinet FortiSOAR vs Splunk SOAR
    Compared 9% of the time
    Torq vs Splunk SOAR Logo
    Torq vs Splunk SOAR
    Compared 8% of the time
    More Splunk SOAR Competitors
     

    Product Reports

    Buyer's Guide
    Security Orchestration Automation and Response (SOAR)
    March 2025
    LogicHub SOAR+ [EOL] reportDownload LogicHub SOAR+ [EOL] product report
    Buyer's Guide
    Splunk SOAR
    March 2025
    Splunk SOAR reportDownload Splunk SOAR product report
     

    Also Known As

    No data available
    Phantom
     

    Overview

    LogicHub SOAR+ [EOL] is a streamlined security automation and orchestration platform designed for complex threat detection and response, integrating seamlessly with existing technologies to enhance cybersecurity operations.

    Designed to address the need for efficient threat management, LogicHub SOAR+ [EOL] provides users with automation and orchestration capabilities to streamline their security workflows. It optimizes response times and reduces manual efforts by automating repetitive tasks, allowing teams to focus on critical threats. Users find it valuable for enhancing response efficiency and exploring different use cases to maximize their cybersecurity strategy. There is room for improvement in integrating newer technologies and expanding its adaptability to evolving threats.

    What are the key features of LogicHub SOAR+ [EOL]?
    • Automated Playbooks: Predefined workflows that automate repetitive tasks and actions.
    • Threat Intelligence Integration: Facilitates seamless incorporation of threat data into security operations.
    • Collaboration Tools: Enables team communication and coordination within the platform.
    What benefits should users consider in reviews?
    • Reduced Response Time: Automates tasks to allow faster reaction to threats.
    • Cost Efficiency: Decreases the need for extensive manual labor with automation.
    • Scalability: Adapts to meet the growing demands of cybersecurity operations.

    Companies in industries like finance and healthcare implement LogicHub SOAR+ [EOL] to manage compliance and sensitive data protection. In manufacturing, it assists with safeguarding operational technology systems. Each sector finds value in its ability to automate and tighten security measures specific to their regulatory and operational needs.

    Devo

    Splunk SOAR offers features like automation and orchestration of manual tasks, speeding up work, detection and response to advanced and emerging threats. 

    Go from overwhelmed to in-control

    Automate manual tasks. Address every alert, every day. Establish repeatable procedures that allow security analysts to stop being reactive and focus on mission-critical objectives to protect your business.

    Force multiply your team

    Orchestrate and automate repetitive tasks, investigation and response to increase efficiency and productivity, and do more with the people you already have. Make a team of three feel like a team of 10.

    From 30 minutes to 30 seconds

    Work faster with Splunk SOAR. Respond to threats in seconds. Lower your mean time to respond (MTTR) by automating security tasks and workflows across all of your security tools.

    End-to-end security operations made easy

    Take advantage of Splunk Enterprise Security and Splunk SOAR joining forces to provide a seamless and intuitive SecOps platform to prevent, detect and respond to advanced and emerging threats.

    Splunk
     

    Sample Customers

    motorola, McAfee, RSA, Splunk>,Anomali
    Recorded Future, Blackstone
    Buyer's Guide
    Security Orchestration Automation and Response (SOAR)
    March 2025
    Download Free Report
    Find out what your peers are saying about Microsoft, Palo Alto Networks, Splunk and others in Security Orchestration Automation and Response (SOAR). Updated: March 2025.
    DOWNLOAD NOW
    845,040 professionals have used our research since 2012.

    We monitor all Security Orchestration Automation and Response (SOAR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.