Try our new research platform with insights from 80,000+ expert users

LogicHub SOAR+ [EOL] vs Splunk SOAR comparison

Devo and Splunk are both solutions in the Security Orchestration Automation and Response (SOAR) category. Additionally, 100% of Devo users are willing to recommend the solution, compared to 87% of Splunk users who would recommend it.
LogicHub SOAR+ [EOL]
Read 2 LogicHub SOAR+ [EOL] reviews
    100% willing to recommend
    Splunk SOAR
    Read 43 Splunk SOAR reviews
    • 5,110 Views
    • 3,052 Comparison Views
    87% willing to recommend
     

    Comparison Buyer's Guide

    Download the report
    Executive SummaryUpdated on Dec 24, 2024

    Splunk SOAR and LogicHub SOAR+ [EOL] are competing in the security operations automation category. Splunk SOAR is noted for strong customer support and extensive integrations, while LogicHub SOAR+ [EOL] delivers flexibility with its rich features, potentially providing a superior offering.

    Features: Splunk SOAR is recognized for its scalability, extensive integration options, and seamless workflow automation. LogicHub SOAR+ [EOL] offers advanced threat detection, customizable automation capabilities, and flexibility in handling various security challenges.

    Ease of Deployment and Customer Service: Splunk SOAR provides a straightforward deployment process and robust customer service, ensuring a smooth start. LogicHub SOAR+ [EOL] focuses on customization in deployment, which may take longer but results in tailored solutions fitting specific needs.

    Pricing and ROI: Splunk SOAR usually has higher initial costs but promises a comprehensive ROI over time thanks to its effective automation and operational efficiencies. LogicHub SOAR+ [EOL] offers a more economical setup and quick adaptability, leading to faster ROI, appealing to those looking for immediate financial benefits.

    DOWNLOAD THE COMPLETE REPORT
    To learn more, read our detailed Security Orchestration Automation and Response (SOAR) Report (Updated: December 2024).
    Buyer's Guide
    Security Orchestration Automation and Response (SOAR)
    December 2024
    Download the complete report
    Helped 825,399 peers since 2012
     

    Categories and Ranking

    LogicHub SOAR+ [EOL]
    Average Rating
    9.6
    Reviews Sentiment
    7.6
    Number of Reviews
    2
    Ranking in other categories
    No ranking in other categories
    Splunk SOAR
    Average Rating
    8.2
    Reviews Sentiment
    6.8
    Number of Reviews
    43
    Ranking in other categories
    Security Orchestration Automation and Response (SOAR) (3rd)
     

    Featured Reviews

    Reviewer32109 - PeerSpot reviewer
    Integrated with hundreds of tools, analyzes data automatically, and has few false positives
    The ability to analyze data automatically to make decisions automatically is what I like the most. It is also fully integrated with hundreds of other tools. Our SIEM has the search capability but it cannot save the dataset for me to merge with the result set of another query. In LogicHub, to join two resultant datasets is super easy because they use SQL operators that I can do left join, right join, inner join, or full cross join. Besides some reporting tools that I used in the past, no other SOAR can do this easily. We automated that whole analytic logic so I don’t need to repeat.
    Read full review
    Ryan Plas - PeerSpot reviewer
    Offers playbook automation that helps reduce the manual and tedious work for users
    When it comes to Splunk SOAR's ability to provide end-to-end visibility into our company's cloud-native environment, I would say that we are not using the cloud portions of it. I don't know if that's super relevant to what we are doing in our organization. I am 100 percent sure that Splunk SOAR helped reduce your mean time to resolve, but I don't have any metrics on hand but I know it has dramatically decreased. The tool has helped with the business resilience part. I think having it as a platform has been a solid portion of the product that we offer to people. Spunk SOAR has definitely saved my time in alert triage. When some of the tedious enrichment and lookup stuff happens, the analyst doesn't have to deal with such areas, and they can just jump in and see relevant data all in one pane of glass, which has been super helpful for speeding things up. The unified platform helps consolidate networking, security, and IT observability tools. The consolidation of tools impacts our organization as it just helps focus the SOC analyst on a single unified place to find information. It helps keep things streamlined and regular so they know where to look for certain stuff they want. It really helps people with training. It is a really easy tool to onboard people into because everything is right there in the product itself. The product is really great. I would love to see more SOAR innovation going into the tool, especially the on-premises version since it is what we use in our company. I feel the tool needs to encourage continuous improvements, but as a product itself, my company is really happy with the solution. I rate the tool an eight out of ten.
    Read full review

    Quotes from Members

    We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
     

    Pros

    "It has improved my detection coverage in areas lacking by the SIEM."
    "This solution allows us to easily investigate malicious events, system alerts etc."
    "Workflow management is most valuable. It is easily customizable"
    "The ability to automate Splunk SOAR and customize the playbook use cases is the most valuable feature and is very exciting for me."
    "I like the integration capabilities of Phantom. It has a lot of integrations with other products. Its searching methodologies are also good. It is also easy to understand and easy to create playbooks."
    "The most valuable feature is the API connector, depending on how it's formatted and who made the actual app offering for it. The REST API is my favorite component. It's very easy to use. The filters are also really valuable. Those are the two primary features but I enjoy using the rest of it."
    "I'm just a beginner on the solution and it's pretty easy for me to use."
    "The product provides 100% automation for certain processes."
    "The automation part of the product is great."
    "It's pretty easy when it comes to setting up assets. If you want to fetch emails or call a REST API, you can set up an asset and grab that information."
    More Splunk SOAR pros
     

    Cons

    "UI coloring can be improved."
    "We would like this solution to have a higher level of support for SaaS applications."
    "Splunk SOAR can improve IoT/OT security-related case studies or your use cases. Their integration with identity and access management (IAM) solutions is a bit shaky. They don't have good integration with a lot of IAM solutions. They do have good capability in terms of user access management internally, but even with privileged user access, they have a good module. However, if they have to integrate with solutions, such as CyberArk or IBM IAM solutions they are lacking, the visibility of user access is not that much."
    "And most of the challenges that I have faced with the solution can be found in the documentation itself."
    "In the beginning, we couldn't find any specific documents for every function. It wasn't easy to navigate to what we needed."
    "Splunk SOAR has room to improve its offering for small-sized customers. The price is not fair for smaller-sized customers."
    "We've run into a few minor issues. Some of the playbook writing is a bit complicated. We've had a few hiccups with the source control. We'd really like to use GitHub deployment keys for a dedicated account. We haven't been able to do that. I think those are some of the major ones."
    "We have playbooks written to extract these events and put them into the workflow since it wasn't structured as expected. It was a miss for us. We couldn't figure out why it broke or what actually happened there. It was something in this feed with legitimate and security events, so we tried to understand the names and what we would call them."
    "The pricing could be a bit more reasonable. It would be great if it were feasible for smaller organizations."
    "The UI can be more customizable for the clients."
    More Splunk SOAR cons
     

    Pricing and Cost Advice

    Information not available
    "The tool is not cheap."
    "When we first purchased our Splunk SOAR license, it was based on an event-count model. It was based on the number of events. I had strong opinions at the time that automation should not be stifled by the amount of automation you can accomplish, so the previous structure was not as beneficial for us. Later that year, we got told or saw at a conference that they announced user-based pricing. We are now in a renewal period, so we migrated to a user-based license model, which is more appropriate for us so that we no longer have to worry about stifling our automation based on the quantity."
    "Splunk SOAR is more expensive compared to other options for SOAR."
    "It's very overpriced because it is based on the number of users. There is no bulk licensing."
    "We renewed it this year. This year was the first time there was a dramatic increase in the price. It was kind of non-negotiable. It was just a high increase. We had internal communications, and it was definitely a surprise to us. In a short time frame, we renewed it this year. Prices are going up everywhere, but they are not always justifiable, at least not to our eyes. The pricing this year was definitely a big shock."
    "I don't know the exact price, but for my region, it is very expensive."
    "The licensing cost is reasonable."
    "Splunk SOAR is an expensive solution for an organization of our size."
    More Splunk SOAR pricing and cost advice
    report
    See which vendors are best for you
    Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
    See recommendations
    825,399 professionals have used our research since 2012.
     

    Top Industries

    By visitors reading reviews
    No data available
    Computer Software Company
    15%
    Financial Services Firm
    14%
    Manufacturing Company
    12%
    Government
    10%
     

    Company Size

    By reviewers
    Large Enterprise
    Midsize Enterprise
    Small Business
    No data available
     

    Questions from the Community

    Ask a question
    Earn 20 points
    What do you like most about Splunk Phantom?
    Splunk SOAR's quick response to incidents is the most valuable part.
    See all answers
    What is your experience regarding pricing and costs for Splunk Phantom?
    I rate Splunk SOAR two out of 10 for affordability. Splunk is a fast enterprise tool, but it costs too much. At the same time, it's worth what we pay, in my opinion. We can efficiently perform all ...
    See all answers
    What needs improvement with Splunk Phantom?
    The dashboard could be improved and some other features. SOAR should integrate network capabilities, allowing us to also monitor the WLAN network. Splunk is also expensive and difficult for beginne...
    See all answers
     

    Comparisons

    No data available
    Cortex XSIAM vs Splunk SOAR Logo
    Cortex XSIAM vs Splunk SOAR
    Compared 28% of the time
    Palo Alto Networks Cortex XSOAR vs Splunk SOAR Logo
    Palo Alto Networks Cortex XSOAR vs Splunk SOAR
    Compared 18% of the time
    Fortinet FortiSOAR vs Splunk SOAR Logo
    Fortinet FortiSOAR vs Splunk SOAR
    Compared 8% of the time
    Tines vs Splunk SOAR Logo
    Tines vs Splunk SOAR
    Compared 8% of the time
    Swimlane vs Splunk SOAR Logo
    Swimlane vs Splunk SOAR
    Compared 7% of the time
    More Splunk SOAR Competitors
     

    Product Reports

    Buyer's Guide
    Security Orchestration Automation and Response (SOAR)
    December 2024
    LogicHub SOAR+ [EOL] reportDownload LogicHub SOAR+ [EOL] product report
    Buyer's Guide
    Splunk SOAR
    December 2024
    Splunk SOAR reportDownload Splunk SOAR product report
     

    Also Known As

    No data available
    Phantom
     

    Learn More

    Video not available
    Devo
    Splunk
     

    Overview

    LogicHub SOAR+ [EOL] is a streamlined security automation and orchestration platform designed for complex threat detection and response, integrating seamlessly with existing technologies to enhance cybersecurity operations.

    Designed to address the need for efficient threat management, LogicHub SOAR+ [EOL] provides users with automation and orchestration capabilities to streamline their security workflows. It optimizes response times and reduces manual efforts by automating repetitive tasks, allowing teams to focus on critical threats. Users find it valuable for enhancing response efficiency and exploring different use cases to maximize their cybersecurity strategy. There is room for improvement in integrating newer technologies and expanding its adaptability to evolving threats.

    What are the key features of LogicHub SOAR+ [EOL]?
    • Automated Playbooks: Predefined workflows that automate repetitive tasks and actions.
    • Threat Intelligence Integration: Facilitates seamless incorporation of threat data into security operations.
    • Collaboration Tools: Enables team communication and coordination within the platform.
    What benefits should users consider in reviews?
    • Reduced Response Time: Automates tasks to allow faster reaction to threats.
    • Cost Efficiency: Decreases the need for extensive manual labor with automation.
    • Scalability: Adapts to meet the growing demands of cybersecurity operations.

    Companies in industries like finance and healthcare implement LogicHub SOAR+ [EOL] to manage compliance and sensitive data protection. In manufacturing, it assists with safeguarding operational technology systems. Each sector finds value in its ability to automate and tighten security measures specific to their regulatory and operational needs.

    Splunk SOAR offers features like automation and orchestration of manual tasks, speeding up work, detection and response to advanced and emerging threats. 

    Go from overwhelmed to in-control

    Automate manual tasks. Address every alert, every day. Establish repeatable procedures that allow security analysts to stop being reactive and focus on mission-critical objectives to protect your business.

    Force multiply your team

    Orchestrate and automate repetitive tasks, investigation and response to increase efficiency and productivity, and do more with the people you already have. Make a team of three feel like a team of 10.

    From 30 minutes to 30 seconds

    Work faster with Splunk SOAR. Respond to threats in seconds. Lower your mean time to respond (MTTR) by automating security tasks and workflows across all of your security tools.

    End-to-end security operations made easy

    Take advantage of Splunk Enterprise Security and Splunk SOAR joining forces to provide a seamless and intuitive SecOps platform to prevent, detect and respond to advanced and emerging threats.

     

    Sample Customers

    motorola, McAfee, RSA, Splunk>,Anomali
    Recorded Future, Blackstone
    Buyer's Guide
    Security Orchestration Automation and Response (SOAR)
    December 2024
    Download Free Report
    Find out what your peers are saying about Microsoft, Palo Alto Networks, Splunk and others in Security Orchestration Automation and Response (SOAR). Updated: December 2024.
    DOWNLOAD NOW
    825,399 professionals have used our research since 2012.

    We monitor all Security Orchestration Automation and Response (SOAR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.