Try our new research platform with insights from 80,000+ expert users

Splunk Enterprise Security vs VMware Aria Operations for Logs comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 6, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.2
Splunk Enterprise Security enhances visibility, streamlines operations, and supports real-time decisions, improving efficiency and security in large-scale environments.
Sentiment score
5.0
VMware Aria Operations for Logs boosts ROI with cost savings and efficiency, especially in virtualization-focused environments, within two years.
I have noticed a return on investment with Splunk Enterprise Security, as it delivers substantial value for money.
Splunk's cost is justified for large environments with extensive assets.
 

Customer Service

Sentiment score
6.7
Splunk Enterprise Security support is mixed: knowledgeable at higher levels but variable with first-tier responses, praised online.
Sentiment score
4.1
VMware Aria Operations for Logs users experience mixed support quality, with slow but effective escalation to skilled experts.
If you want to write your own correlation rules, it is very difficult to do, and you need Splunk's support to write new correlation rules for the SIEM tool.
I have sought assistance from Splunk Enterprise Security support in the past, particularly during deployment, and they provide friendly and effective help.
The technical support for Splunk met my expectations.
While support staff is knowledgeable, getting access to specialists can be challenging when dealing with the limits of a product.
Customer service and support have declined.
I did not need technical support because I am a professional with VMware.
 

Scalability Issues

Sentiment score
7.7
Splunk Enterprise Security is scalable and effective for large deployments, though costs and planning are essential considerations.
Sentiment score
8.5
VMware Aria Operations for Logs is highly scalable and integrates well, though licensing and space management affect scalability.
They struggle a bit with pure virtual environments, but in terms of how much they can handle, it is pretty good.
It is easy to scale.
I find it easy to scale Splunk Enterprise Security for our environment.
Since payment is based on hardware, scalability impacts are managed more effectively than with other tools paid by data volume.
It's relatively easy to find individuals with the skills to work with VMware because it is a widely spread tool.
 

Stability Issues

Sentiment score
7.9
Splunk Enterprise Security is reliable and adaptable, handling large data volumes with minimal downtime and robust performance.
Sentiment score
7.1
VMware Aria Operations for Logs is stable, integrates with Microsoft, and is reliable, with minor issues resolved swiftly.
It provides a stable environment but needs to integrate with ITSM platforms to achieve better visibility.
It is very stable.
Managing a lot of data involves reliance on hardware and network performance, which are external factors that can affect stability.
It has been very stable, and every time I needed it, it was available and working.
VMware as a whole provides very stable tools.
 

Room For Improvement

Splunk Enterprise Security needs improved setup, GUI, user control, pricing, machine learning, and intuitive dashboards for better accessibility.
VMware Aria Operations for Logs needs better usability, integration, documentation, cost efficiency, stability, and enhanced filtering and dashboard features.
Improving the infrastructure behind Splunk Enterprise Security is vital—enhanced cores, CPUs, and memory should be prioritized to support better processing power.
What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel.
Splunk Enterprise Security would benefit from a more robust rule engine to reduce false positives.
It would be beneficial to have a roadmap for these dashboards to ensure consistent functionality.
There is also dissatisfaction with Broadcom's broader attitude, which is prompting me to search for alternatives.
VMware Aria Operations for Logs is not a cost-effective tool.
 

Setup Cost

Splunk Enterprise Security is costly but valued for features and scalability, offering significant ROI with careful data management.
VMware Aria Operations for Logs is cost-effective within bundles but pricey without, leading to mixed enterprise buyer opinions.
I saw clients spend two million dollars a year just feeding data into the Splunk solution.
The platform requires significant financial investment and resources, making it expensive despite its comprehensive features.
Splunk is priced higher than other solutions.
Splunk, often paid by the terabytes, becomes expensive quickly if not managed carefully.
The price has risen significantly, and for smaller customers, the cost can be up to ten times more than before.
VMware comes with a lot of packages, however, it remains too expensive.
 

Valuable Features

Splunk Enterprise Security enhances threat detection with fast data retrieval, customizable visualizations, and seamless third-party integration for efficient operations.
VMware Aria Operations for Logs optimizes infrastructure with dashboards, real-time notifications, and scalability, enhancing troubleshooting and cost efficiency.
This capability is useful for performance monitoring and issue identification.
They have approximately 50,000 predefined correlation rules.
The Splunk Enterprise Security's threat-hunting capabilities have been particularly useful in later releases.
This tool also provides greater insight when integrated with VMware infrastructure, making it more precise than other tools.
The most valuable features are log centralization and long-term retention for logs.
A valuable feature of VMware Aria Operations for Logs is its ability to allow personalization of dashboards and requests.
 

Categories and Ranking

Splunk Enterprise Security
Ranking in Log Management
2nd
Average Rating
8.4
Reviews Sentiment
7.6
Number of Reviews
306
Ranking in other categories
Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
VMware Aria Operations for ...
Ranking in Log Management
9th
Average Rating
8.2
Reviews Sentiment
6.4
Number of Reviews
28
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Log Management category, the mindshare of Splunk Enterprise Security is 7.4%, down from 11.1% compared to the previous year. The mindshare of VMware Aria Operations for Logs is 1.2%, down from 1.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.
LarsChristensen - PeerSpot reviewer
Efficient troubleshooting with precise log filtering and an easy setup
The tool could benefit from improved filter settings and dashboarding. While there are dashboards available, they are often created by community members and may not work after updates. It would be beneficial to have a roadmap for these dashboards to ensure consistent functionality. It would also be advantageous if the tool could process even large amounts of data faster, though this may be more related to data movement challenges rather than the software itself.
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
848,716 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
14%
Manufacturing Company
8%
Government
8%
Computer Software Company
15%
Government
13%
Financial Services Firm
11%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
What do you like most about vRealize Log Insight?
The events are notably more descriptive, aiding in security and event analysis. We've also integrated Sky Collector, providing valuable insights and solutions for troubleshooting.
What is your experience regarding pricing and costs for vRealize Log Insight?
Pricing for VMware Aria Operations for Logs can depend on several variables, including the workload and the customer. The price has risen significantly, and for smaller customers, the cost can be u...
What needs improvement with vRealize Log Insight?
It is not the main tool in my stack. I can do similar tasks using solutions like Grafana ( /products/grafana-reviews ). My focus is mainly on finding alternatives for hypervisor and automation purp...
 

Also Known As

No data available
vRealize Log Insight
 

Overview

 

Sample Customers

Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Wildlands Adventure Zoo, Medic Mobile, IBM, Seventy Seven Energy, Baystate Health, Osis, Oxford University, Columbia University, Siemens, Cardinal Health, Ashdod Port, Vasakronan, Sydney Adventist Hospital, University of Derby
Find out what your peers are saying about Splunk Enterprise Security vs. VMware Aria Operations for Logs and other solutions. Updated: April 2025.
848,716 professionals have used our research since 2012.