Security PS Supervisor at a tech services company with 1,001-5,000 employees
Aug 13, 2019
It's straightforward in terms of configuration and troubleshooting and log management and monitoring as well. These are the edge points in addition to it being a modular solution where you can capitalize on your current licenses with extra licensing models, which can match the customer's business requirement and it can help the customer to design or to actually plan for their own roadmap.
We are really pleased with Splunk and its features. It would be practically impossible to function without it.
To provide a general overview of the system, it's important to note that the standard log files are currently around 250 gigabytes per day. It would be impossible to manually walk through these logs by hand, which is why automation is essential.
Learn what your peers think about Splunk User Behavior Analytics. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
Director of Technology at a insurance company with 10,001+ employees
May 9, 2019
The most valuable feature is being able to take data and put it into other systems so that we could see the output, and to see where we need to apply our focus.
Senior Security Engineer at a government with 1,001-5,000 employees
Aug 18, 2019
The ability to do more complicated data investigation would be a welcome addition for pros, though the functionality now gives most people what they need.
Learn what your peers think about Splunk User Behavior Analytics. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
Global Engineer at a financial services firm with 10,001+ employees
Sep 21, 2020
Currently, a lot of network operations need improvement. We still need people to handle incidents. Our vision is to leverage status and convert it directly from the network devices. It would be ideal if we could take action using APIs and API code and remove manual processes.
They should work to add more built-in correlation searches and more use cases based on worldwide customer experiences. They need more ready-made use cases.
We want to have an automated system for bot hunting that enables us to detect anomalies predictively based on historical data. It would be helpful if Splunk included process mining as an alternative option. We have a threat workflow, but it would be useful if we could supplement that with some process mining capabilities over time.
