We performed a comparison between Elastic Observability and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."For full stack observability, Elastic is the best tool compared with any other tool ."
"Elastic APM has plenty of features, such as the Elastic server for Kibana and many additional plugins. It's a comprehensive tool when used as a logging platform."
"I have built a mini business intelligence system based on Elastic Observability."
"The solution allows us to dig deep into data."
"The solution has been stable in our usage."
"Its diverse set of features available on the cloud is of significant importance."
"Good design and easy to use once implemented."
"The price is very less expensive compared to the other solutions."
"The solution allows easy gathering and ingestion of the data."
"The most valuable feature of Splunk Enterprise Security is the comprehensive logging capabilities it provides."
"Alerts when a server is malfunctioning, monitors external attacks, and takes action to stop spreading viruses."
"It provides a risk score for each object, device, or user. We can then take action if they are at a higher risk."
"Splunk allows us to find insights that we were not able to with traditional BI tools using ETL. It allows us to dig into raw events."
"It helped us consolidate all our solutions into an easy tool to use for various employees."
"Splunk has a wide range of features that customers use to find and analyze all kinds of logs."
"We can quickly search for almost anything across many log sources in seconds."
"Elastic Observability is difficult to use. There are only three options for customization but this can be difficult for our use case. We do not have other options to choose the metrics shown, such as CPU or memory usage."
"The solution would be better if it was capable of more automation, especially in a monitoring capacity or for the response to abnormalities."
"The tool's scalability involves a more complex implementation process. It requires careful calculations to determine the number of nodes needed, the specifications of each node, and the configuration of hot, warm, and cold zones for data storage. Additionally, managing log retention policies adds further complexity. The solution's pricing also needs to be cheaper."
"Elastic Observability is an excellent product for monitoring and visibility, but it lacks predictive analytics. Most solutions are aligned with the AIOps requirements, but this piece is missing in Elastic and should be included."
"The price is the only issue in the solution. It can be made better and cheaper."
"The solution needs to use more AI. Once the product onboards AI, users would more effectively be able to track endpoints for specific messages."
"The auto-discovery isn't nearly as good. That's a big portion of it. When you drop the agent onto the JVM and you're trying to figure things out, having to go through and manually do all that is cumbersome."
"Improving code insight related to infrastructure and network, particularly focusing on aspects such as firewalls, switches, routers, and testing would be beneficial."
"Splunk can improve its third-party device application plugins."
"Splunk is not very user-friendly. It has a complex architecture in comparison to other solutions on the market."
"Splunk Enterprise Security can be improved by including backup network detection and response and safe management to the paid platform."
"There can be a bit of complexity around some fields during the initial setup."
"Being a SIEM solution with a centralized dashboard, we would like to have more options to customize it."
"We will receive alerts only for the administrators and deployment servers, but not for all servers."
"More training on PetaData using artificial intelligence techniques to identify the events which are not normal and exceptions that would help the organization identify threats and malware on the go with results."
"Its user interface for everything other than the charts can be improved. Some parts of it can be simplified a bit, such as when importing documents that have the network traffic. When you're going through the information about the network traffic, you have to have the expertise, but even if a program is supposed to be for IT support, it is good to make it user-friendly because it gets easier to train people. When something goes wrong, the more difficult a program is in terms of UI, the harder it is to fix the issue."
Elastic Observability is ranked 14th in Log Management with 22 reviews while Splunk Enterprise Security is ranked 1st in Log Management with 240 reviews. Elastic Observability is rated 7.8, while Splunk Enterprise Security is rated 8.4. The top reviewer of Elastic Observability writes "The user interface framework lets us do custom development when needed. ". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Elastic Observability is most compared with Dynatrace, New Relic, AppDynamics, Azure Monitor and Datadog, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Microsoft Sentinel. See our Elastic Observability vs. Splunk Enterprise Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.