Try our new research platform with insights from 80,000+ expert users

Splunk Enterprise Security vs WhatsUp Gold comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.6
Number of Reviews
305
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
WhatsUp Gold
Average Rating
7.8
Reviews Sentiment
7.4
Number of Reviews
24
Ranking in other categories
Application Performance Monitoring (APM) and Observability (24th), Network Monitoring Software (26th), Server Monitoring (14th), IT Infrastructure Monitoring (27th)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. Splunk Enterprise Security is designed for Security Information and Event Management (SIEM) and holds a mindshare of 9.5%, down 12.8% compared to last year.
WhatsUp Gold, on the other hand, focuses on Application Performance Monitoring (APM) and Observability, holds 0.5% mindshare, up 0.4% since last year.
Security Information and Event Management (SIEM)
Application Performance Monitoring (APM) and Observability
 

Featured Reviews

ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.
Tom Condo - PeerSpot reviewer
If CPU, memory, or disk space is over-utilized, it alerts us immediately via text or email if there is an issue
When it comes to the intuitiveness of the topology mapping feature, our network architect created a vision diagram of our entire network and then created the links tied into the WhatsUp active monitoring to different spots on our topology map. It's one of the more critical functions we do here. We have the map displayed in different places in our room and help desk. We get alerted via emails but we can also see it visually. It does what it says it's going to do. We find this feature very helpful. The interactive mapping interface for scrolling, zooming, and drilling down on an element to learn about a network issue is good. When we see a network there will sometimes be a spot that has one link. You can go into a particular part of the topology map, scroll in, and see exactly which module it is. All the information is provided. This feature really helps. You can see the correlation between that link and what failed. This feature is very helpful. The interface is fairly intuitive. Some of our users used SolarWinds and Nagios, and WhatsUp is easy in comparison. Once you get set up, the look, feel, and configuration are good. Our network architect had never used it before but he was able to create the Visio and map. It was very simple. He has no problems with it.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"There are lots of free learning materials on their website."
"Splunk Enterprise Security's dashboards are a key asset."
"It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query on Splunk. The resolution time is about the same, but it took longer to discover the issue with ArcSight. Our previous solution took about an hour or more, but Splunk can do it within a few minutes or an hour at most."
"The solution's most valuable features are its ability to transact in the cloud and its ability to onboard data easily with minimum connectors."
"It has virtual visualization, and other products do not."
"Splunk works based on parsing log files."
"It's very flexible. If you look from the cloud implementation it is there. Reports are made quickly. Unlike other tools, it caters to all kinds of technical information on the front very easily. There's no need to put in any technical information. You can pull on the reports very easily, take action, and notify stakeholders."
"Aggregation searches have reduced time and difficulty of identifying trends and conditions which need to reviewed."
"Auto scanning is most valuable. It looks for rogue devices on your network."
"The interactive mapping interface for scrolling, zooming, and drilling down on an element to learn about a network issue is good. When we see a network there will sometimes be a spot that has one link. You can go into a particular part of the topology map, scroll in, and see exactly which module it is."
"The most valuable features are network bandwidth monitoring and monitoring device health."
"This is a good, stable network monitoring solution for devices."
"I use it on premises to monitor my network database. We monitor the link up/down and use the SNMP traps as well."
"The threshold alerting is the most valuable feature."
"Our local support team provides excellent service."
"The most valuable feature is the auto-discovery function."
 

Cons

"The threat detection library needs to increase the frequency at which the playbooks are updated."
"It needs integration with a configuration management solution."
"I would like to get visibility into the data pipelines on heavy forwarders and indexers to see exactly their source and the cause of saturation when it occurs. This would help us learn even more about our high use applications."
"More training on PetaData using artificial intelligence techniques to identify the events which are not normal and exceptions that would help the organization identify threats and malware on the go with results."
"Some of the terminology can be confusing, even for seasoned vets. Renaming components at this point would be a serious undertaking. However, it might be beneficial in the long run."
"Due to its high licensing cost, Splunk is out of reach for many organizations."
"We don't have SOAR products from Splunk. I believe that's an important piece."
"The complexity could be worked on so that it's even easier and faster."
"Regional product team support is not very good."
"The point system is not clear and clarity around this would improve our understanding of the system."
"Adding on services increases the cost and on the version we have there is no option for ATM monitoring."
"WhatsUp Gold should work on real-time monitoring and configuration management. If they succeed in doing this, the solution will cover all the network troubleshooting aspects and will be a benefit."
"I would like to see them do an enhancement to the application monitoring. A lot of other products do better application monitoring so they should do some improvements to the application monitoring."
"Improvements are needed in integration, especially for WhatsApp call and messages. Our region heavily uses WhatsApp Messenger for communication, and integration with this platform would be beneficial."
"The tool should focus on increasing its market share, as it is the only area of concern where improvements are needed."
"One of the biggest things that made us start to look at another product is we're not able to have an end to end monitoring from a user perspective throughout the system and back to the user. All the monitoring is from inside out, we need something that also can give us from outside in."
 

Pricing and Cost Advice

"I have no opinion on pricing."
"The pricing can be better. We are already considering Elastic because Splunk is too expensive. You have to pay based on per-day ingestion. There should be a more flexible model for the use cases where one day you have a huge amount, and on other days, it is quite less."
"We had a yearly subscription."
"You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive."
"The price can always be lower, but it is fair at the moment. The cost efficiencies depend on the licensing and how much data we are bringing in. We have a fairly large footprint, so it is cost-effective."
"Free Splunk license for PoCs on personal machines and the ability to scale the PoC to an enterprise level app."
"It is expensive. I used to buy it early on, but then they combined it into a higher-up organization. They buy it for multiple systems now. Last time, I paid around 60K for it. There is just the licensing fee. That's all."
"Splunk is really expensive."
"There is a license needed to use WhatsUp Gold."
"The choice of version depends on the number of points, or devices, that you want to monitor, and this makes the product expensive."
"There are some subscription charges that are quite heavy. I need to pay for support every year and these charges can be quite expensive. Aside from the initial cost for the tool, you need to pay additionally for support."
"The tool's price is reasonable. WhatsUp Gold is cheaper than SolarWinds."
"The most valuable feature is the cost compared to other solutions."
"Pricing is reasonable compared to other products."
"I'm not sure, but it's expensive. We don't pay any additional fees."
"It is per device, per year. The pricing is very clear. If you have a service agreement, you get all of your major upgrades and minor upgrades. It was under $10,000 to go all-in with all of the different add-ons for it."
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
845,040 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
14%
Manufacturing Company
8%
Government
8%
Computer Software Company
13%
Financial Services Firm
12%
Manufacturing Company
9%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
What do you like most about WhatsUp Gold?
The interactive mapping interface for scrolling, zooming, and drilling down on an element to learn about a network issue is good. When we see a network there will sometimes be a spot that has one l...
What is your experience regarding pricing and costs for WhatsUp Gold?
Clients find the licensing calculator confusing, but we simplify this for them by collecting relevant information first. The licensing is based on devices, providing better cost-effectiveness than ...
What needs improvement with WhatsUp Gold?
Improvements are needed in integration, especially for WhatsApp call and messages. Our region heavily uses WhatsApp Messenger for communication, and integration with this platform would be benefici...
 

Overview

 

Sample Customers

Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Artoni Trasporti, Austin Independent School District, Banca Marche, Burke County North Carolina, Cambridge University School of Clinical Medicine, Clayco, Community Integrated Care, Desca, Deutsche Bergbau, Flexi-Van, Gropper, Hamleys, Hammonds Furniture, Knowledge IT, Idras S.P.A., Sibeg, Swann Engineering, Trivium Lindenhof
Find out what your peers are saying about Splunk Enterprise Security vs. WhatsUp Gold and other solutions. Updated: May 2023.
845,040 professionals have used our research since 2012.