Try our new research platform with insights from 80,000+ expert users

Splunk SOAR vs Tines comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jun 15, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Splunk SOAR
Ranking in Security Orchestration Automation and Response (SOAR)
3rd
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
47
Ranking in other categories
No ranking in other categories
Tines
Ranking in Security Orchestration Automation and Response (SOAR)
10th
Average Rating
9.0
Reviews Sentiment
7.6
Number of Reviews
4
Ranking in other categories
Threat Intelligence Platforms (TIP) (17th), AI-Powered Security Automation (1st)
 

Mindshare comparison

As of October 2025, in the Security Orchestration Automation and Response (SOAR) category, the mindshare of Splunk SOAR is 7.7%, down from 8.0% compared to the previous year. The mindshare of Tines is 7.3%, up from 4.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Orchestration Automation and Response (SOAR) Market Share Distribution
ProductMarket Share (%)
Splunk SOAR7.7%
Tines7.3%
Other85.0%
Security Orchestration Automation and Response (SOAR)
 

Featured Reviews

Mack Scott - PeerSpot reviewer
Improves response time by consolidating tools and automating threat detection
I haven't gone too far into it to see anything that needs improvement yet. We can likely include some features related to the integration with on-premises resources, rather than focusing solely on the existing automation. These are the additional features that could be included in the future. Splunk's Unified Platform does help consolidate networking security and IT observability tools. They should integrate Splunk Enterprise Security better into Splunk Cloud.
VikramSingh8 - PeerSpot reviewer
Automation simplifies workflows with no code and excellent support
Reporting and dashboards could be more advanced for deeper analysis. Tines has its own dashboard, which displays information like how many stories have been created and how many automations have taken place. However, the reporting and dashboard are not advanced; they are quite basic, with fewer customizable options. The look and feel of the dashboard could be enhanced. Another area for improvement is in terms of documentation, as every tool and company has its own knowledge base.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Splunk SOAR's quick response to incidents is the most valuable part."
"Splunk SOAR has made a huge impact across security operations and the business overall."
"The features of Splunk SOAR that I appreciate most are the integrations with all the other applications and tools."
"It helps increase efficiency and productivity."
"Technical support is helpful."
"I like the way Splunk interacts with various systems via the API. The ability to integrate Splunk with our ticketing system has been an immense help because we can maintain our workflow while blending Splunk with our support desk and other ways that we track work."
"I have found all the security automation platform features of Splunk SOAR to be good. The Automation playbook development is highly useful."
"The customization of the playbook in Splunk SOAR is very beneficial."
"The tool was vendor-neutral."
"One of the most valuable features is that it’s a low-code solution."
"The best thing is that it's no code, so it doesn't require coding knowledge."
"The best advantage is the no-code automation, excellent customer support services, and ease of integration with other tools."
 

Cons

"The UI can be more customizable for the clients."
"It could be easier to implement."
"Creating playbooks using the solution’s playbook editor, for me, is very cumbersome. There have been instances where I have said to myself that I just don't want to use this editor. I might just use a code block and write my own code within it... The functionality in the playbook editor is 80 percent there, but that 20 percent is still lacking. They could make it more efficient."
"There is a lot of room for improvement with the UI."
"The algorithm and machine learning have room for improvement and can be more user-friendly."
"It would be nice if we could put it on other search heads, not just Enterprise Security."
"In the beginning, we couldn't find any specific documents for every function. It wasn't easy to navigate to what we needed."
"It would be ideal for us if Splunk SOAR could integrate with Teams."
"Tines was a little bit more expensive than Torq."
"Reporting and dashboards could be more advanced for deeper analysis."
"They started implementing some AI, and their AI is isolated."
"Maybe Tines can add more features and demonstrations, like videos on how to use the features within the tool."
 

Pricing and Cost Advice

"Splunk SOAR is an expensive solution for an organization of our size."
"I don't know the exact price, but for my region, it is very expensive."
"The cost is high and the licensing is on an annual basis."
"In my opinion, the price is high, but if you want good products, you have to be willing to pay for them."
"It's very overpriced because it is based on the number of users. There is no bulk licensing."
"While I can't confirm the exact pricing, some colleagues have mentioned that Splunk SOAR may be on the costlier side."
"Splunk SOAR is moderately priced, neither cheap nor overly expensive."
"When we first purchased our Splunk SOAR license, it was based on an event-count model. It was based on the number of events. I had strong opinions at the time that automation should not be stifled by the amount of automation you can accomplish, so the previous structure was not as beneficial for us. Later that year, we got told or saw at a conference that they announced user-based pricing. We are now in a renewal period, so we migrated to a user-based license model, which is more appropriate for us so that we no longer have to worry about stifling our automation based on the quantity."
Information not available
report
Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
869,566 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
10%
Manufacturing Company
10%
University
7%
Financial Services Firm
13%
Computer Software Company
9%
Manufacturing Company
8%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business11
Midsize Enterprise7
Large Enterprise28
No data available
 

Questions from the Community

What do you like most about Splunk Phantom?
Splunk SOAR's quick response to incidents is the most valuable part.
What is your experience regarding pricing and costs for Splunk Phantom?
I don't have experience with costs; management handles that aspect.
What needs improvement with Splunk Phantom?
I haven't gone too far into it to see anything that needs improvement yet. We can likely include some features related to the integration with on-premises resources, rather than focusing solely on ...
What needs improvement with Tines?
Reporting and dashboards could be more advanced for deeper analysis. Tines has its own dashboard, which displays information like how many stories have been created and how many automations have ta...
What is your primary use case for Tines?
I am Vikram Singh, I work for top service based multinational brand and I am responsible for delivering Tines services. Essentially, I am working on it, and I am leading one of the source services ...
What advice do you have for others considering Tines?
When you start working with Tines, ensure you pursue the Tines certifications. They offer these free certifications when they become your partner. Overall, I would rate Tines a nine out of ten.
 

Comparisons

 

Also Known As

Phantom
No data available
 

Overview

 

Sample Customers

Recorded Future, Blackstone
Information Not Available
Find out what your peers are saying about Splunk SOAR vs. Tines and other solutions. Updated: September 2025.
869,566 professionals have used our research since 2012.