Seceon Open Threat Management Platform vs Splunk Enterprise Security comparison

Seceon Open Threat Management Platform vs. Splunk Enterprise Security

Download the complete report

Helped 814,649 peers since 2012

Categories and Ranking

Seceon Open Threat Manageme...

Ranking in Security Information and Event Management (SIEM)

23rd

Average Rating

8.2

Reviews Sentiment

7.8

Number of Reviews

Ranking in other categories

No ranking in other categories

Splunk Enterprise Security

Ranking in Security Information and Event Management (SIEM)

1st

Average Rating

8.4

Number of Reviews

301

Ranking in other categories

Log Management (1st), IT Operations Analytics (1st)

Mindshare comparison

As of November 2024, in the Security Information and Event Management (SIEM) category, the mindshare of Seceon Open Threat Management Platform is 0.6%, up from 0.4% compared to the previous year. The mindshare of Splunk Enterprise Security is 10.9%, down from 14.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Dipesh Jain

Manager IT at Power Finance Corporation Ltd

Apr 12, 2024

Has the ability to categorize alerts and reporting dashboards are useful

I use Seceon Open Threat Management Platform for security monitoring. It helps me track logs and events from various devices and take action on critical issues The algorithm used in Seceon OTM is clear and logical, categorizing events as needed. This helps us identify and respond to threats…

Read full review

Sameep Agarwal.

Group manager at HCM Technologies

Oct 23, 2023

It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query

The ingestion happens quickly, so you can run up the data costs if you use the default settings. It isn't a problem for government agencies in the Saudi market, but many of the corporations in India are small or medium-sized enterprises that cannot afford that kind of ingestion system. Splunk needs to be tweaked in JSON so you can limit what is coming from the endpoints, especially the events. One needs to filter that out so that only certain events are ingested, like login failures, Active Directory changes, password reset requests, privilege modifications, etc. Each Windows machine generates about 310 KB of information per event, but we can tweak that down to about 50 KB.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable features are behaviour analytics, threat intelligence, endpoint detection, and response features."

"The most valuable feature of this solution is its artificial intelligence."

"It is effective because it has threat intelligence from across the world and constantly checks and updates for new threats."

"The main thing is the value proposition. It is one of the most sophisticated yet affordable solutions that I've come across. It is also one of the easiest-to-manage yet comprehensive solutions for a SOC analyst. Its customizations are really good, and it has a lot of integrations. It is multi-tenant and very fast to onboard. Its stability is 100%. We've never had an outage with it. It doesn't require extensive hardware resources. Its level of support is also very good. They have a very responsive technical team."

"You can use different solutions in a single platform which is very easy and attractive for customers."

"The solution is very cost-effective compared to Splunk and LogRhythm."

"The solution is stable."

"We only recently started using Seceon, so we aren't taking advantage of all its features yet. We have enabled some proactive alerts about utilization and bottlenecks from high traffic."

More Seceon Open Threat Management Platform pros

"It has been really good at consolidating a lot of data from different sources. It's really good at generating summaries."

"Positive features include replication capabilities, software development kits, and the architecture."

"The metrics and trends that Splunk Enterprise Security generates using all the data points we send allow customers to understand better what their users are doing."

"Splunk Enterprise Security's dashboards are a key asset."

"The log aggregation is great."

"The product provides visibility and enables us to correlate data and generate alerts."

"It provides a lot of analytics with the underlying AI engine, and it is a lot easier than other solutions. There are some products that do automated AI-based detection and drawing up charts, but for network monitoring and all of the monitoring aspects, it is quite a nice tool. It is very convenient for business users because they get more or less a lot of data readily available. If you're familiar with the Splunk query language, you can pretty much do whatever you want."

"The ability to quickly search logs, performance data, and other inputs has helped tremendously with troubleshooting."

More Splunk Enterprise Security pros

Cons

"For future releases, integrating incident response tools and improving communication on incident reporting could be beneficial."

"It would be better if they offered global coverage."

"It is a standalone solution now. They need to make it into a cloud-based subscription model. It needs more compatibility for co-managed solutions. It can also have more threats and deeper integration with Microsoft."

"The product should improve the triggering rate."

"The product could be improved by including sandboxing capabilities in the next release."

"It would be ideal with the processing was more manageable. Not many customers are willing to have a dedicated server with two CPUs and one TB of memory. The cost of this is huge for a smaller organization."

"The SOP they provided wasn't great. They offered training over Sherp Virtualization, and the Seceon leadership visited our location to explain everything in detail, but the documentation and training could be better. It isn't as effective as it could be. There's some room for improvement there."

"We are at the client’s end, offering services. They don’t know about security rules and benchmarks. We are working on the discovery and remediation but we don’t really have the intelligence that was available while working with other tools. Human working is also very essential for the solution. The automatic session is impossible to play since it needs to touch Redfin for further analysis. No one has breached our clients."

More Seceon Open Threat Management Platform cons

"The difficult part is related to integration with sources of data that are used to create the logs as this depends on the infrastructure of the client."

"The prices are complicated as we operate in a small third-world country."

"The threat management part is still lagging. There are some gaps in threat management. Other vendors have built-in threat management systems, but Splunk lacks the threat management component in its portal. The UEBA and everything else is perfect, but it lacks a unified threat intelligence and management part."

"Resource usage can probably be described as an area with shortcomings in the product where improvements are required."

"We had some connections issues with the solution at the beginning."

"I'd like to see more integration with more antivirus systems."

"From the commercial point of view, they have to bring down their costs."

"I would like Splunk to add more integration. QRadar has many indications with more products than Splunk."

More Splunk Enterprise Security cons

Pricing and Cost Advice

"I find Seceon OTM's pricing to be reasonable, not too high or low, just okay for the market standards. I can't disclose specific figures, we pay on a quarterly basis under a service model. I would rate it eight out of ten. As a customer, I always hope for better pricing options."

"It has a per-asset model instead of an ingestion-based model, which gives predictable pricing. In terms of price, it is in the middle to lower range of SIEMs that it competes against. It is the most affordable solution that we have implemented so far. It was much more affordable than anything else I've implemented."

"We used the solution's trial version for two months and later purchased it."

"The pricing is very competitive. It's not expensive."

"Seceon Open Threat Management Platform is cost-effective because it's a comprehensive platform that offers high availability."

"The price is quite reasonable."

"The solution is cheap and very competitive. It offers good tuning in terms of the pricing. Other solutions like Palo Alto and IBM are more expensive."

"Expensive compared to other options."

"The solution is costly."

"I am not personally involved with the pricing of the solution."

"Splunk Enterprise Security is a worthwhile investment given the comprehensive range of features it offers."

"The price is comparable."

"Splunk Enterprise Security is priced lower than competitors."

"I remember Splunk being relatively affordable. Kibana was more reasonable, but you get more with Splunk. If I was suggesting something, I would probably suggest Splunk because it is better to pay a little bit more and get a lot more."

"Splunk Enterprise becomes extremely expensive after the 20GB/month license."

More Splunk Enterprise Security pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

814,649 professionals have used our research since 2012.

Comparison Review

Vinod Shankar

Manager, Enterprise Risk Consulting at Deloitte & Touche

Feb 26, 2015

HP ArcSight vs. IBM QRadar vs. McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm

We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…

Read full review

Top Industries

By visitors reading reviews

Computer Software Company

28%

Financial Services Firm

14%

Educational Organization

Construction Company

Financial Services Firm

16%

Computer Software Company

14%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Seceon Open Threat Management Platform?

The algorithm used in Seceon OTM is clear and logical, categorizing events as needed. This helps us identify and respond to threats effectively.

What is your experience regarding pricing and costs for Seceon Open Threat Management Platform?

The pricing is in the mid-range. It's not very expensive, and it's not very cheap, but it's comparable to others. Sometimes, it's cheaper because of their beta pricing, and they give much more than...

What needs improvement with Seceon Open Threat Management Platform?

One drawback is that it becomes so easy to use that users may lose the habit of manual checks and balances. As a security person, you should always worry about potential threats. If you have a very...

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

What is a better choice, Splunk or Azure Sentinel?

It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...

How does Splunk compare with Azure Monitor?

Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...

IBM Security QRadar vs Seceon Open Threat Management Platform

Comparisons

Compared 23% of the time

ManageEngine Log360 vs Seceon Open Threat Management Platform

Compared 14% of the time

Microsoft Sentinel vs Seceon Open Threat Management Platform

Compared 12% of the time

Fortinet FortiSIEM vs Seceon Open Threat Management Platform

Compared 11% of the time

Securonix Next-Gen SIEM vs Seceon Open Threat Management Platform

Compared 9% of the time

More Seceon Open Threat Management Platform Competitors

Wazuh vs Splunk Enterprise Security

Compared 11% of the time

IBM Security QRadar vs Splunk Enterprise Security

Compared 9% of the time

Dynatrace vs Splunk Enterprise Security

Compared 8% of the time

Datadog vs Splunk Enterprise Security

Compared 4% of the time

AppDynamics vs Splunk Enterprise Security

Compared 4% of the time

More Splunk Enterprise Security Competitors

Product Reports

Seceon Open Threat Management Platform

Download Seceon Open Threat Management Platform product report

Seceon Open Threat Management Platform report

Splunk Enterprise Security

Download Splunk Enterprise Security product report

Also Known As

Seceon OTM, Seceon aiSIEM, aiSIEM, Seceon Open Threat Management

No data available

Learn More

Seceon

Splunk

Overview

Seceon Open Threat Management Platform is a comprehensive cybersecurity solution that offers real-time threat detection, analysis, and response capabilities. It leverages advanced AI and machine learning algorithms to provide proactive threat hunting and automated incident response.

With its intuitive dashboard, users can gain complete visibility into their network, applications, and endpoints, enabling them to identify and mitigate potential risks effectively. The platform integrates seamlessly with existing security infrastructure, consolidating data from various sources for centralized monitoring and analysis.

Its threat intelligence feeds and behavioral analytics enable the identification of both known and unknown threats, ensuring comprehensive protection against advanced cyber attacks. Seceon Open Threat Management Platform empowers security teams with actionable insights, enabling them to prioritize and respond to threats swiftly. With its automated remediation capabilities, it minimizes the impact of attacks and reduces response time. The platform also offers customizable reporting and compliance management features, facilitating regulatory compliance and providing stakeholders with comprehensive security status updates.

Seceon Open Threat Management Platform is a robust and scalable solution that caters to the evolving cybersecurity needs of organizations across industries.

Splunk Enterprise Security is widely used for security operations, including threat detection, incident response, and log monitoring. It centralizes log management, offers security analytics, and ensures compliance, enhancing the overall security posture of organizations.

Companies leverage Splunk Enterprise Security to monitor endpoints, networks, and users, detecting anomalies, brute force attacks, and unauthorized access. They use it for fraud detection, machine learning, and real-time alerts within their SOCs. The platform enhances visibility and correlates data from multiple sources to identify security threats efficiently. Key features include comprehensive dashboards, excellent reporting capabilities, robust log aggregation, and flexible data ingestion. Users appreciate its SIEM capabilities, threat intelligence, risk-based alerting, and correlation searches. Highly scalable and stable, it suits multi-cloud environments, reducing alert volumes and speeding up investigations.

What are the key features?

Comprehensive Dashboards: Provide a holistic view of security operations.
Flexible Data Ingestion: Supports various data sources for better analysis.
Robust Log Aggregation: Centralizes log management for easier monitoring.
Machine Learning Toolkit: Enhances threat detection and prediction capabilities.
SIEM Capabilities: Integrates security information and event management.
Threat Intelligence: Utilizes external information to improve security measures.
Risk-Based Alerting: Prioritizes alerts based on the risk they pose.
Correlation Searches: Identifies and correlates security events effectively.

What benefits or ROI should users look for?

Enhanced Visibility: Improves monitoring across endpoints, networks, and users.
Faster Incident Response: Speeds up identification and resolution of security issues.
Reduced Alert Volumes: Lowers false positives and enhances signal-to-noise ratio.
Scalability: Adapts to growing and changing security needs.
Improved Security Operations: Integrates multiple security facets into one platform.

Splunk Enterprise Security is implemented across industries like finance, healthcare, and retail. Financial institutions use it for fraud detection and compliance, while healthcare organizations leverage its capabilities to safeguard patient data. Retailers deploy it to protect customer information and ensure secure transactions.

Sample Customers

Caduceus, SUNY

Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.

Seceon Open Threat Management Platform vs. Splunk Enterprise Security