Try our new research platform with insights from 80,000+ expert users
Splunk User Behavior Analytics Logo

Splunk User Behavior Analytics pros and cons

Vendor: Splunk
4.1 out of 5
Badge Leader
841 followers
Start review

Pros & Cons summary

Splunk User Behavior Analytics offers efficient data search and indexing, enhancing security with data aggregation and threat identification. It provides scalability and effective vendor integration, though on-premise scaling and the initial setup can be challenging. While advanced analytics detect patterns, the high cost and complexity may deter potential buyers. Simplified statistics and reporting are needed to resolve latency issues, with data ingestion fees posing challenges for large enterprises.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Splunk User Behavior Analytics is praised for its advanced analytics and data correlation capabilities, aiding in detecting patterns, anomalies, and security threats.
The ability to search and aggregate large amounts of data efficiently is highly valuable, enabling quick identification of threats and suggesting recommended actions.
Its scalability is highlighted, with customers often expanding their usage after installation due to ease of scaling up.
Integration with other vendors is considered highly effective, enhancing the versatility and functionality of Splunk User Behavior Analytics.
Features like alerts, auto report generation, and powerful search queries facilitate effective monitoring and analysis of attack vectors.

CONS

Splunk User Behavior Analytics is prone to occasional bugs and high data ingestion costs can pose challenges for large enterprises.
On-premise scalability is difficult compared to cloud deployment and the setup process is complex, requiring customization for certain configurations.
Splunk User Behavior Analytics lacks predefined correlation rules and use cases and needs more built-in correlation searches and a greater variety of use cases.
Pricing is a disadvantage, with Splunk User Behavior Analytics being significantly more expensive than competitors such as ArcSight and LogRhythm making it challenging to sell.
Data investigation capabilities could use enhancement to allow more complex queries, impacting advanced reporting and analytical tools.
 

Splunk User Behavior Analytics Pros review quotes

NS
Aug 18, 2019
This intelligent user behavior analytics package is easy to configure and use while remaining feature filled.
Read full review
AE
Aug 13, 2019
It's straightforward in terms of configuration and troubleshooting and log management and monitoring as well. These are the edge points in addition to it being a modular solution where you can capitalize on your current licenses with extra licensing models, which can match the customer's business requirement and it can help the customer to design or to actually plan for their own roadmap.
Read full review
BD
May 5, 2023
We are really pleased with Splunk and its features. It would be practically impossible to function without it. To provide a general overview of the system, it's important to note that the standard log files are currently around 250 gigabytes per day. It would be impossible to manually walk through these logs by hand, which is why automation is essential.
Read full review
Buyer's Guide
Splunk User Behavior Analytics
March 2025
Free Report: Splunk User Behavior Analytics Reviews and More
Learn what your peers think about Splunk User Behavior Analytics. Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
DOWNLOAD NOW
849,190 professionals have used our research since 2012.
reviewer1418904 - PeerSpot reviewer
Sep 21, 2020
The product is at the forefront of auto-remediation networking. It's great.
Read full review
AT
Aug 19, 2019
The solution is extremely scalable. Our customers are regularly scaling up after installing Splunk.
Read full review
Informat0a7b - PeerSpot reviewer
Mar 11, 2019
The most valuable feature is the ability to search through a large amount of data.
Read full review
Director5e75 - PeerSpot reviewer
May 9, 2019
The most valuable feature is being able to take data and put it into other systems so that we could see the output, and to see where we need to apply our focus.
Read full review
reviewer1934946 - PeerSpot reviewer
Aug 22, 2022
It's easily scalable.
Read full review
SivaKuppala - PeerSpot reviewer
Mar 25, 2025
Splunk User Behavior Analytics is known for its advanced analytics and data correlation capabilities, which help in detecting patterns, anomalies, and security threats.
Read full review
AnupChapalgaonkar - PeerSpot reviewer
Dec 20, 2024
Splunk is highly valuable for query purposes.
Read full review
Show 10 more reviews (out of 23)
 

Splunk User Behavior Analytics Cons review quotes

NS
Aug 18, 2019
The ability to do more complicated data investigation would be a welcome addition for pros, though the functionality now gives most people what they need.
Read full review
AE
Aug 13, 2019
The solution is much more expensive than relative competitors like ArcSight or LogRhythm. It makes it hard to sell to customers sometimes.
Read full review
BD
May 5, 2023
If the price was lowered and the setup process was less complex, I would consider rating it higher.
Read full review
Buyer's Guide
Splunk User Behavior Analytics
March 2025
Free Report: Splunk User Behavior Analytics Reviews and More
Learn what your peers think about Splunk User Behavior Analytics. Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
DOWNLOAD NOW
849,190 professionals have used our research since 2012.
reviewer1418904 - PeerSpot reviewer
Sep 21, 2020
Currently, a lot of network operations need improvement. We still need people to handle incidents. Our vision is to leverage status and convert it directly from the network devices. It would be ideal if we could take action using APIs and API code and remove manual processes.
Read full review
AT
Aug 19, 2019
They should work to add more built-in correlation searches and more use cases based on worldwide customer experiences. They need more ready-made use cases.
Read full review
reviewer1934946 - PeerSpot reviewer
Aug 22, 2022
We'd like the ability to do custom searches.
Read full review
SivaKuppala - PeerSpot reviewer
Mar 25, 2025
High data ingestion costs can be an issue, especially for large enterprises, as Splunk charges based on the amount of data processed.
Read full review
AnupChapalgaonkar - PeerSpot reviewer
Dec 20, 2024
In terms of improvements, advanced reporting could see enhancements as there are some issues with latency.
Read full review
Subhayu Chakraborty - PeerSpot reviewer
Jan 6, 2025
The dashboard part could be improved.
Read full review
Enterprise677 - PeerSpot reviewer
Dec 2, 2018
There are occasional bugs.
Read full review
Show 10 more reviews (out of 21)

Product Categories

Product Categories
User Entity Behavior Analytics (UEBA)
Intrusion Detection and Prevention Software (IDPS)

Popular Comparisons

Popular Comparisons
IBM Security QRadar vs Splunk User Behavior Analytics Logo
IBM Security QRadar vs Splunk User Behavior Analytics
Rapid7 InsightIDR vs Splunk User Behavior Analytics Logo
Rapid7 InsightIDR vs Splunk User Behavior Analytics
Cynet vs Splunk User Behavior Analytics Logo
Cynet vs Splunk User Behavior Analytics
Exabeam vs Splunk User Behavior Analytics Logo
Exabeam vs Splunk User Behavior Analytics
LogRhythm UEBA vs Splunk User Behavior Analytics Logo
LogRhythm UEBA vs Splunk User Behavior Analytics
Proofpoint Insider Threat Management vs Splunk User Behavior Analytics Logo
Proofpoint Insider Threat Management vs Splunk User Behavior Analytics
Gurucul UEBA vs Splunk User Behavior Analytics Logo
Gurucul UEBA vs Splunk User Behavior Analytics
ArcSight Intelligence vs Splunk User Behavior Analytics Logo
ArcSight Intelligence vs Splunk User Behavior Analytics
Dtex Systems vs Splunk User Behavior Analytics Logo
Dtex Systems vs Splunk User Behavior Analytics
Securonix UEBA vs Splunk User Behavior Analytics Logo
Securonix UEBA vs Splunk User Behavior Analytics
Netskope Advanced Analytics vs Splunk User Behavior Analytics Logo
Netskope Advanced Analytics vs Splunk User Behavior Analytics
ArcSight Analytics vs Splunk User Behavior Analytics Logo
ArcSight Analytics vs Splunk User Behavior Analytics
See all alternatives

Product Categories

Product Categories
User Entity Behavior Analytics (UEBA)
Intrusion Detection and Prevention Software (IDPS)

Popular Comparisons

Popular Comparisons
IBM Security QRadar vs Splunk User Behavior Analytics Logo
IBM Security QRadar vs Splunk User Behavior Analytics
Rapid7 InsightIDR vs Splunk User Behavior Analytics Logo
Rapid7 InsightIDR vs Splunk User Behavior Analytics
Cynet vs Splunk User Behavior Analytics Logo
Cynet vs Splunk User Behavior Analytics
Exabeam vs Splunk User Behavior Analytics Logo
Exabeam vs Splunk User Behavior Analytics
LogRhythm UEBA vs Splunk User Behavior Analytics Logo
LogRhythm UEBA vs Splunk User Behavior Analytics
Proofpoint Insider Threat Management vs Splunk User Behavior Analytics Logo
Proofpoint Insider Threat Management vs Splunk User Behavior Analytics
Gurucul UEBA vs Splunk User Behavior Analytics Logo
Gurucul UEBA vs Splunk User Behavior Analytics
ArcSight Intelligence vs Splunk User Behavior Analytics Logo
ArcSight Intelligence vs Splunk User Behavior Analytics
Dtex Systems vs Splunk User Behavior Analytics Logo
Dtex Systems vs Splunk User Behavior Analytics
Securonix UEBA vs Splunk User Behavior Analytics Logo
Securonix UEBA vs Splunk User Behavior Analytics
Netskope Advanced Analytics vs Splunk User Behavior Analytics Logo
Netskope Advanced Analytics vs Splunk User Behavior Analytics
ArcSight Analytics vs Splunk User Behavior Analytics Logo
ArcSight Analytics vs Splunk User Behavior Analytics
See all alternatives
Related questions
  • 47
Which is the best UEBA solution?
  • 6
Viable, Cost-Effective Competitors to Rapid7 InsightIDK
  • 181
What is your recommended cost-effective solution to detect and prevent APT attacks?
  • 32
Looking for recommendations and a pros/cons template for software to detect insider threats
  • 435
What are the main differences between UEBA and SIEM solutions?
  • 5
Monitoring Web Hosted Servers for unwanted guests
  • 50
Why is User Entity Behavior Analytics - UEBA important for companies?
  • 0
When evaluating User Behavior Analytics, what aspect do you think is the most important to look for?
  • 7
Which is the best UEBA solution?
  • 6
What are the different types of insider threats that UEBA solutions help to detect?