Try our new research platform with insights from 80,000+ expert users

Splunk Enterprise Security vs WhatsUp Gold comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.6
Number of Reviews
305
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
WhatsUp Gold
Average Rating
7.8
Reviews Sentiment
7.4
Number of Reviews
24
Ranking in other categories
Application Performance Monitoring (APM) and Observability (24th), Network Monitoring Software (26th), Server Monitoring (14th), IT Infrastructure Monitoring (27th)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. Splunk Enterprise Security is designed for Security Information and Event Management (SIEM) and holds a mindshare of 9.5%, down 12.8% compared to last year.
WhatsUp Gold, on the other hand, focuses on Application Performance Monitoring (APM) and Observability, holds 0.5% mindshare, up 0.4% since last year.
Security Information and Event Management (SIEM)
Application Performance Monitoring (APM) and Observability
 

Featured Reviews

ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.
Tom Condo - PeerSpot reviewer
If CPU, memory, or disk space is over-utilized, it alerts us immediately via text or email if there is an issue
When it comes to the intuitiveness of the topology mapping feature, our network architect created a vision diagram of our entire network and then created the links tied into the WhatsUp active monitoring to different spots on our topology map. It's one of the more critical functions we do here. We have the map displayed in different places in our room and help desk. We get alerted via emails but we can also see it visually. It does what it says it's going to do. We find this feature very helpful. The interactive mapping interface for scrolling, zooming, and drilling down on an element to learn about a network issue is good. When we see a network there will sometimes be a spot that has one link. You can go into a particular part of the topology map, scroll in, and see exactly which module it is. All the information is provided. This feature really helps. You can see the correlation between that link and what failed. This feature is very helpful. The interface is fairly intuitive. Some of our users used SolarWinds and Nagios, and WhatsUp is easy in comparison. Once you get set up, the look, feel, and configuration are good. Our network architect had never used it before but he was able to create the Visio and map. It was very simple. He has no problems with it.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We saw the granularity that we could get from Splunk far exceeded what we already had. We had the ability to have our security team really focus on the platform and stay within the platform, but they could correlate with a variety of other stakeholders, and our stakeholders were growing."
"We have created a few custom use cases for Splunk that have helped us detect threats faster. For example, we set up endpoint-related data models and specialized setups for various scenarios. It's more efficient than some other products I've used."
"In the past we used the different application to collect logs. We used SurfWatch and VMware to do so. But, we found that the Splunk has more capacity to do more in less time. They provide a aster speed to index all the events , and this is a huge asset."
"It allows the centralization of data and makes possible new sorts of correlations that were previously impossible using traditional SIEMs such as ArcSight or QRadar."
"The initial setup is pretty straightforward."
"It has been really good at consolidating a lot of data from different sources. It's really good at generating summaries."
"I really like the user interface and how it works."
"The most valuable feature is that it's very good for log aggregation."
"This is a good, stable network monitoring solution for devices."
"The interactive mapping interface for scrolling, zooming, and drilling down on an element to learn about a network issue is good. When we see a network there will sometimes be a spot that has one link. You can go into a particular part of the topology map, scroll in, and see exactly which module it is."
"Auto scanning is most valuable. It looks for rogue devices on your network."
"The most valuable feature of WhatsUp Gold is NetFlow and the virtualized maps."
"The product is reasonably priced."
"The documentation is very good."
"We no longer have to manually search for problems because we are alerted when something in the network goes down."
"The threshold alerting is the most valuable feature."
 

Cons

"The solution has a high learning curve for users. It's a little complicated when you're trying to figure out all the features and what they do."
"Splunk Enterprise Security provides us with the relevant context to help guide our investigations, but it would be interesting to add even more context, for instance, in order to raise the level of risk."
"They should make data onboarding easier."
"Splunk is more expensive than other solutions."
"A problem that we had recently had was we licensed it based on how much data you upload to them every day. Something changed in one our applications, and it started generating three to four times as many logs and. So now, we are trying to assemble something with parts of the Splunk API to warn ourselves, then turn it off and throttle it back more. However it would be better if they had something systematically built into the product that if you're getting close to your license, then to shut things down."
"Splunk is such a large product. Allowing it to be more easily used by people who have not had a lot of training on it would be an improvement."
"The UI can be difficult to understand for non-technical people."
"The search could be improved. Now, it is a bit difficult to write search queries because they become quite long, then maintaining those long search queries is a quite challenging."
"The point system is not clear and clarity around this would improve our understanding of the system."
"The new release cadence needs to be improved. It takes a while for them to add new features and functionality. There should be a quicker turnaround with new versions."
"Integrations with other devices. I want to have a product that has full integration with my active directory so I can track user activity. I want to track my complete user activity, so I'm looking for a product to implement in the near future, which will have full integration with my network and active directory users. It became very difficult to track user activity."
"Users want SMS available via Whatsapp Gold. They don't want to go through third party SMS servers. The solution should work to make this possible."
"The tool should focus on increasing its market share, as it is the only area of concern where improvements are needed."
"One of the biggest things that made us start to look at another product is we're not able to have an end to end monitoring from a user perspective throughout the system and back to the user. All the monitoring is from inside out, we need something that also can give us from outside in."
"The pricing for this solution has gone up quite recently, which has led some of our customers to buy an alternative product."
"Importing the maps and being able to customize them could be easier."
 

Pricing and Cost Advice

"I think that most of the log analytics solutions are expensive and I'm not sure if it's worth it."
"The solution is costly."
"Most people share the same thought that the ingestion rates can get pretty pricey. There is a lot of work we do to curate the data that we send to Splunk so that it is not too noisy or too expensive."
"Splunk Enterprise Security's pricing is based on data volume, which generally suits large enterprises."
"As a team, we prefer the old pricing model with a perpetual license. We are still evaluating the whole subscription-based model."
"Splunk differs from other SIEM solutions by using a gigabyte-based pricing model, rather than the agent-based licenses common with its competitors."
"Splunk's cost is very high. They need to review the pricing. They have to go back and totally readdress the market."
"Splunk is not free."
"There are some subscription charges that are quite heavy. I need to pay for support every year and these charges can be quite expensive. Aside from the initial cost for the tool, you need to pay additionally for support."
"The pricing can be on the expensive side when considering competing products."
"I'm not sure, but it's expensive. We don't pay any additional fees."
"The price of WhatsUp Gold is good."
"Pricing is reasonable compared to other products."
"It is per device, per year. The pricing is very clear. If you have a service agreement, you get all of your major upgrades and minor upgrades. It was under $10,000 to go all-in with all of the different add-ons for it."
"The tool's price is reasonable. WhatsUp Gold is cheaper than SolarWinds."
"There is a license needed to use WhatsUp Gold."
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
842,767 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
14%
Manufacturing Company
8%
Government
8%
Computer Software Company
13%
Financial Services Firm
12%
Manufacturing Company
9%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
What do you like most about WhatsUp Gold?
The interactive mapping interface for scrolling, zooming, and drilling down on an element to learn about a network issue is good. When we see a network there will sometimes be a spot that has one l...
What is your experience regarding pricing and costs for WhatsUp Gold?
Clients find the licensing calculator confusing, but we simplify this for them by collecting relevant information first. The licensing is based on devices, providing better cost-effectiveness than ...
What needs improvement with WhatsUp Gold?
Improvements are needed in integration, especially for WhatsApp call and messages. Our region heavily uses WhatsApp Messenger for communication, and integration with this platform would be benefici...
 

Overview

 

Sample Customers

Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Artoni Trasporti, Austin Independent School District, Banca Marche, Burke County North Carolina, Cambridge University School of Clinical Medicine, Clayco, Community Integrated Care, Desca, Deutsche Bergbau, Flexi-Van, Gropper, Hamleys, Hammonds Furniture, Knowledge IT, Idras S.P.A., Sibeg, Swann Engineering, Trivium Lindenhof
Find out what your peers are saying about Splunk Enterprise Security vs. WhatsUp Gold and other solutions. Updated: May 2023.
842,767 professionals have used our research since 2012.