Splunk Infrastructure Monitoring Reviews

We use Splunk Infrastructure Monitoring because it is a durable solution for our environment.

Splunk Infrastructure Monitoring is easy to use.

The dashboards are good.

Splunk Infrastructure Monitoring has helped improve our operational performance and efficiency. 

Splunk Infrastructure Monitoring has helped reduce our MTTD by 90 percent.

Our MTTR is good thanks to Splunk Infrastructure Monitoring.

The most valuable feature is log reporting.

The price has room for improvement.

I have been using Splunk Infrastructure Monitoring for five years.

I would rate the stability of Splunk Infrastructure Monitoring ten out of ten.

Splunk Infrastructure Monitoring is scalable.

I have used the technical support a few times and they were good.

Positive

I would rate the price of Splunk Infrastructure Monitoring as an eight out of ten, with ten being the most expensive.

I rate Splunk Infrastructure Monitoring ten out of ten.

Splunk Infrastructure Monitoring is a good service that provides visibility into our environment.

I recommend Splunk Infrastructure Monitoring to organizations for the logs that will help identify errors in their devices and assist them in resolving the issues.

One person is required to maintain Splunk Infrastructure Monitoring.

We primarily use the solution for network monitoring and to identify threats. It is a security measure. 

If anything suspicious happens in the banking system, the solution would be able to identify the threat. We've also been able to identify malicious domains and phishing attacks. 

The product provides a lot of valuable features. 

It's helpful for identifying threats. The solution helps protect against phishing and malicious domains.

We we see any spikes in the CPU, it might be a sign of suspicious activity, and we can monitor it to protect our company. 

It's a very easy-to-use solution. It's simple to install and configure.

The solution is stable.

It is scalable.

They need to offer better endpoint protection. They don't have their own platform for endpoint protection. It would be helpful if they added something that addressed that. They need more EDR functionalities. 

Support could be faster. 

I've used the solution for five years now. 

The solution is stable. It's reliable and the performance is good. There are no bugs or glitches and t doesn't crash or freeze. 

The solution is really scalable. You can easily add more components and different vendors. 

We're an IT service provider. We don't use Splunk ourselves. However, a bank we work for has about 500 employees right now that would be leveraging Splunk. 

We tend to support our customers. We can troubleshoot for customers.

We also use Splunk technical support, and they aren't too bad. They could be faster and improve their response time. 

We also use Cisco for EDR since Splunk doesn't really have any EDR options. 

The simplicity of the setup is great. It's easy to configure. Splunk is very straightforward. 

To have the solution up and running, you can deploy it in three hours. There might be more integration that needs to be done on top of that. There are a few other items that may make the deployment a bit longer, depending on the setup. 

Installing the system is very easy. However, for it to be useful, you need to customize it to integrate with your current use cases. You might have to spend some time testing use cases. It's important to understand the use cases before doing the configurations.

We have a manager and a few engineers that can handle deployment and maintenance tasks. 

We're a service provider and can implement the solution for clients. 

We use a free version of the solution. There is also an enterprise option as well. 

The product has a fairly flexible licensing model. You buy based on your requirements, whether it is six months or a year.

We are using the latest version of the product. 

I'd rate the solution eight out of ten.

I use the solution in my company for our customers who use the tool for auditing and compliance in the area of DoD/AC. My company's customers have compliance controls, and STIG controls that they have to satisfy for their ETL processes.

The tool has helped our customer's organization in achieving compliance control. When our customer's organization has an inspection or when the DoD inspects their infrastructure, they can show their auditors that they are compliant. They can show the auditors the dashboards and verify that they are ingesting data from the sources and how all their hosts are being monitored. They can show everything to auditors, check the box, make sure that everything looks green, and then they continue to have authorization to operate.

The most valuable piece of Splunk Infrastructure Monitoring for our company's customers revolves around the data for everything. Everything produces data, and all the data can get ingested, whether it is Windows, RHEL, VMware products, Pure Storage products, or a custom product. Configuring data ingestion and performing everything in Splunk Infrastructure Monitoring is possible. At the same time, a lot of the other SIEM tools focus on a specific type of data. The benefit of Splunk Infrastructure Monitoring is that one can see all their data in one place.

There is not a lot of support for the tool's on-premises version, especially since everything is on the cloud. In my company, we had a really good demo this morning on Keynote, which touches on the APM part, and it was super cool. There was also a demo on AI assistant, which was super cool. It is hard to increase the options for a particular customer when so much of the stuff is limited to the cloud, and there is so much focus on the cloud part.

I have been using Splunk Infrastructure Monitoring for three years for my customer, who has been using it for longer than when I started to use it.

The tool's stability is great.

The tool's scalability is great. My company just moved Splunk from VMs to containers for our customers, so I would say that we have put it on Kubernetes on Tanzu, which has been great for them.

Support is an area I have not really reached out to on behalf of our customers. I usually just go to Splunk Answers or rely on my colleagues to get what I need. My company has never opened a support ticket with Splunk for our customers.

I don't know what one of my company's customers had used before Splunk Infrastructure Monitoring. They may have used some other solutions, but I have been on contract with them for three years.

In terms of ROI, I can say that I have seen a decreased amount of time spent on our company's end validating data ingested from an auditing perspective, especially when we are talking about their authorization to operate. With the tool, it is much quicker to view all your data in one place than it is to go show an auditor 15 different data sources. You can show it all together to the auditor.

Licensing cost is the biggest argument I get from those divesting from Splunk. There are those within our organization who say we are going to go to other tools since Splunk is too expensive. Till now, I have been able to ask others to look at the value Splunk adds to the company, and I have been able to convince them that it is worth it, but that might not always be the case if licensing continues to be an issue, especially if costs continue the way they are and if other solutions offer more competitive pricing for similar results.

The tool is not used to monitor multiple cloud environments.

It is not important for our company that Splunk Infrastructure Monitoring provides end-to-end visibility into your cloud-native environment.

The tool has helped improve our organization's business resilience.

The tool does the job very well. It is easy for me to use, especially as a trained person in Splunk products. The tool also does the job very well. With the tool in place, I can get Windows or RHEL. I can do things like scripted input on a forwarder. Splunk Universal Forwarder are so much more than if I just use Syslog, for example, to just get data. I can do a lot more with Splunk than just ingesting data via something like Syslog.

I rate the tool an eight out of ten.

Splunk Infrastructure Monitoring provides end-to-end visibility into our cloud-native environments. It is very important for us.

Splunk Infrastructure Monitoring has helped reduce our mean time to resolve.

It is digitalized. It has been beneficial for our IT infrastructure.

The security could be better.

I have been using Splunk Infrastructure Monitoring for 11 years.

I usually use the community site. I find that helpful.

We did not use any other solution previously.

We set it up ourselves.

I would rate Splunk Infrastructure Monitoring a ten out of ten.

Primarily, our organization uses the solution to implement proper infrastructure in our campus environment.

The solution's basic visibility is one of its most valuable features. So, it is a solution that is easy to use.

The solution's stability is an area that has room for improvement. It needs to provide constant stability to its users. Also, the price of the license for the solution could be a bit better.

I have been using Splunk Infrastructure Monitoring for ten years. Also, I am using the solution's latest version.

It is a pretty stable product. Stability-wise, I rate the solution an eight out of ten.

It is a scalable solution. Scalability-wise, I rate the solution a seven out of ten. Around fifty to a hundred people are working on the solution. Also, the solution is extensively used in my organization. Currently, our company has no plans to increase the number of users using the solution.

The solution's initial setup process was straightforward. It took our company a week to complete the deployment process.

I implemented the solution in our organization.

I have seen an ROI using the solution in my company, especially in terms of increased visibility and productivity. Also, there is a commercial cost with increased visibility.

The solution's pricing is competitive. There is a need to make yearly payments for the licensing part. I rate the solution's pricing a seven out of ten. The price of the solution could be cheaper.

I would tell those planning to use the solution that they probably need to consider setting it up in a lab before deploying it.

Overall, I rate the solution a seven out of ten.

We primarily use the solution in order to monitor the servers as well as the VM infrastructure.

We are now able to monitor our infrastructure and get the information in real-time should anything happen. In terms of the hard drive hitting the threshold, then we'll get notified and the technician can attend to it. It reduces the time to attend to the incidents and allows you to be aware of our infrastructure as the status of our infrastructure is visible via dashboards.

The monitoring and the reporting tools are great. It can monitor, get the data, and then report on the data. 

You have the dashboard to see your different items. You create the dashboard to see if there was any incident as well; it creates incident reports for you. For example, if the hard drive goes beyond a certain limit, you can get notified. You can look at your CPU utilization or memory as well. You can set thresholds and monitor for all different types of information.

The solution is stable and reliable.

Technical support is helpful. 

We have witnessed an ROI while using it. 

Overall, I cannot think of any features that are missing.

The deployment can be quite complex. 

I've been using the solution for two years now. 

The solution is stable and reliable. There are no bugs or glitches. it doesn't crash or freeze. 

We have about 100 people on the solution. Some of them don't use the solution directly, however, they benefit from the solution.

Technical support is fairly good. We are satisfied with their assistance. 

I used other solutions before, which were LiveAction, and Cisco Prime. They were used to monitor.

Currently, I'm using PRTG for network monitoring, to monitor the network devices. With Splunk, we monitor servers, and with PRTG, we monitor the network devices such as routers, IPs, and switches.

The initial setup is very straightforward. That said, the configuration and all those things you need to do to make it work according to what you want, you need to deploy some apps, and some that part is what is not straightforward about the setup.

The deployment took about three months.

There are three of us that handle deployment or maintenance. 

We are an integrator team; we actually had help from Splunk themselves to implement the solution.

We have seen an ROI.

It's affordable when you compare it to HPSA - the HP Server Administration.

You get the things according to your data - the data that you need to report on. The capacity of the data that you need to report on. Right now, it's set to 100GBs. We've got the license for 100GBs.

There are different companies or customers that we support within the company. Whichever product they have that's what we go with. For example, we might use AlgoSec, Cisco Prime, or LiveAction as the customer that was using it. We don't evaluate other solutions, we use what is already there.

I did not handle the choice of Splunk. I got into the stage where the system or the application was already implemented. I did not participate in the stage where we had to choose which solution to pick or how to implement it.

We partner with Splunk. We use the product to deliver it to our customers. We're an integrator. We're just using the product to service our customers.

I'd advise new users that it is a very good product, however, you need to have some knowledge and do some training on the product in order to gather knowledge so that you can understand and implement it effectively. 

I'd rate the solution a nine out of ten.

We primarily use the solution for event management. We have a baseline that we monitor, and if anything goes wrong, we manage it.

I haven't really used the solution too much, so I'm not sure if I can speak to the best features on the solution.

Without having used the solution too much, I don't really have any suggestions for feature improvement.

It would be useful if they provided some help pages. If you don't know too much about the tool, there should be more documentation readily available. It would be useful if they had a help button embedded in the solution so you could ask questions and get answers.

The solution should provide for some entry-level training.

We have a customer working on the solution. I haven't used the solution that much myself.

I haven't seen any issues with stability, however, I don't use it too much, so I wouldn't be able to make a very good judgement on if it was extremely stable or not.

I've never been in touch with technical support. I don't know how reliable they are, and would not be able to rate them.

The initial setup was straightforward. We didn't find it to be too complex.

I was able to handle the implementation myself. I didn't need the assistance of an integrator or consultant.

I did compare a few other tools, however, we are using Splunk because that is what the customer preferred. They made the decision after I described this solution and a few other tools to them.

I would definitely recommend the solution. I'd rate it eight out of ten.

I don't believe we have a business relationship with Splunk, but we do have a large number of licenses with them.

The solution is primarily used as security correlation and event correlation. It's a place for all of your logs to go so that you can have all those logs co-ordinated during security events. 

The solution brings all the events into one platform so that you don't have to hunt down multiple sources to figure out what's going on.

The ability to create custom dashboards is one of the best features and that's typically why most people deploy Splunk. Users can create dashboards for just about anything.

The solution has been improving its offering for the past year. It's in constant development.

The cost needs to be re-examined. It's extremely expensive to run. It's also expensive to expand. That's the number one complaint all of my customers have when it comes to Splunk. It's way too expensive compared to other solutions.

The integration of their cloud solution, which came out a couple of years ago, and the ability to now integrate Phantom, needs to be improved. 

It would be ideal if there was a more automated process for finding and identifying data sources that a user wants to bring into the solution. Right now, it's all manual.

I've been selling the solution for quite a long time. I'd say I've sold it for five years. I've been involved in deployments and I've been involved in configuring it and managing it, but I don't actually use it for my company.

The solution is extremely stable. We haven't run into issues that would make us concerned.

The solution is very scalable. However, companies must be aware that expanding the solution is very expensive.

I'd rate technical support eight out of ten. They're responsive due to the fact that clients need to pay in order to access technical support.

The initial setup is not straightforward. It's quite complex. 

The storage backend requires touching all of your events sources. It requires a lot of planning and configuration. It's not something you just put out there and deploy. You have to have someone who's an expert in it.

The deployment typically takes, from beginning to end, less than three months. However, it really depends. It depends upon how many log sources you have, if you have staff on-site that are capable of actually running it, or if you have to make network configuration changes, etc. There's a whole list of things that you have to go through to figure it out. 

The number of people needed to deploy the solution varies upon the size of an organization and the use cases. You're going to want at least two dedicated people to deploy at a medium-sized organization.

These individuals have to understand searching and creating dashboards. They have to have network skills and security skills. There is a wide range of things they have to be a part of. Most people who become Splunk Engineers start off doing something else in their business and they learn about networking, and then security and programming. When they start to deploy Splunk, they become experts.

The solution requires the assistance of a specialist. There needs to be an expert involved to help implement it.

Licensing is paid on a yearly basis.

We work with a few different solutions. As a SIEM, there are many other solutions out there and which is best really depends upon what the company wants to achieve.  As a logging server, there really aren't any other really good solutions that compete as well with Splunk. LogLogic might be the closest.

We're a Splunk partner and reseller.

Typically, the solution is on-prem for the most part because it requires a very heavy lift in storage and the storage is very expensive. Most companies deploy it on-premise and then add on the cloud solution as well later on.

I'd warn other organizations that want to use the solution that they need to be prepared to spend a lot of money.

I'd rate the solution seven out of ten due to the fact that it's extremely complex to run and deploy.