We compared Dynatrace and Splunk Enterprise Security across several parameters based on our users' reviews. After reading the collected data, you can find our conclusion below:
Features: Dynatrace is highly regarded for its advanced AI engine and ability to identify infrastructure automatically. It also offers session replay and impressive visualization features. Splunk Enterprise Security stands out for its efficiency, extensive integration options, and powerful search functionality.
Room for Improvement: Some Dynatrace reviewers feel the learning curve is a little steep, and the documentation could be clearer. Users say that Dynatrace should offer more security options and improve integration with other tools. Splunk users recommended improvements in AI capabilities, user-friendliness, and analytics.
Service and Support: Users generally found Dynatrace's customer service to be satisfactory, but some said that the response times and documentation have room for improvement. While some users found Splunk support to be responsive and helpful, others reported slow response times and a lack of expertise.
Ease of Deployment: Dynatrace's setup is simple, efficient, and requires minimal technical configuration. It takes a few hours at most. Some users thought Splunk Enterprise Security was easy to deploy, while others found it challenging and needed assistance from Splunk engineers or third-party integrators.
Pricing: Users say Dynatrace is expensive. Some noted that the licensing model is complicated and not transparent. Some said they struggled to accurately predict the number of units needed. Some users consider Splunk Enterprise Security to be expensive, but others said the price is reasonable. A few users expressed concerns about the cost of scaling up the solution and managing large volumes of data.
ROI: Dynatrace users said the solutions saved them money and reduced downtime. Users said that it’s challenging to calculate an ROI for Splunk Enterprise Security, and the return varies depending on individual circumstances. While some users have observed a substantial ROI, others have not actively explored or been engaged in ROI conversations.
"We use it to monitor over a 1000 servers in AWS."
"It has more functionality, better additional components, and better management of problems. It also has a good AI."
"PurePath gives a lot of flexibility in identifying issues and finding the flow of execution."
"I can review behaviors, trending issues, and resolve issues before they impact our clients."
"Finds issues that previously occupied people for months."
"We purchased some coaching sessions and utilized those, which were very useful."
"It gives you a great level of detail into whatever the issue is: Using troubleshooting and getting to the root cause."
"It has created total transparency between technology and business on all aspects of systems and performance as well as being a proxy for network performance through user experience monitoring. This followed a major performance degradation of our primary frontline system, which highlighted inadequacy of infrastructure focus tools, e.g., Nagios and Zabbix. It helped detect and remediate several performance issues on systems on both vendor supplied packages as well as in-house developed systems. It also improved InfraOps and development teams understanding of system behaviour and performance characteristics."
"The correlation searches are most valuable just because we are able to do things like RBA."
"The most valuable feature is the custom dashboard feature."
"Correlating data across different systems via one interface will allow you to know your environment or identify incident data in ways you never imagined."
"Low barrier to start searching with the ability to normalize data on the fly."
"The initial setup is really straightforward. It's one of the easiest installations."
"Splunk's advantage is its search capability. Its search is notably faster. With Splunk, I can search easily on keywords. That is great."
"It has reduced the time to resolution, time to investigate, and time to troubleshoot for debugging issues."
"The search lookups are useful."
"Its price, for sure, should be improved. Its price is quite high. Other than the price, there are always improvements to be made as technologies change. When we move into cloud-based technologies, Dynatrace will also have to adapt so that they can monitor those as well. It should have the adaptability to quickly transform to monitor those new technologies."
"Pretty much every month there are new features. However, its information on those new features is scarce."
"Configuration could be simpler."
"Hard to use for beginners, to setup and explore."
"If Dynatrace is capturing everything in your application, it has to "sense" that information, and that sensing needs sensors which we have to include in our applications. The more you apply sensors - the more details you want - the more you have to increase the level of sensing. If I increase the level of sensing, my application's performance goes down, because something is there that is, again and again, checking each and every thing in the application. So that load on the applications increases. So, many times my applications used to crash because Dynatrace was working on them. We had to remove some sensing; either we had to reduce the sensing or we had to remove Dynatrace immediately."
"Addition of more statistical features, plus different time series modeling techniques, would really help for future versions."
"The solution's ability to assess the severity of anomalies based on the actual impact to users and business KPIs is great. In my opinion, it could be extended even more. I would like it to be more configurable for the end-user. It would be nice to have more business rules applicable to the severity. It's already very good as it is now. It is based on the impact on your front-end users. But it would be nice if we could configure it a bit more."
"I would like more flexible data export functions and APIs. The end user experience data is very useful to the solutions team to determine actual system usage and misuse. Flexible, easier data APIs would allow us to export the data more easily to other analytics platforms to enable this analysis as well as enable storage of this data for longer term analysis since DynaTrace only holds user data for 35 days."
"Splunk can improve regex/asset analysis as we do not want to crawl until it is done."
"I would like to see more SIEM functionality and a better ticket tool."
"When we do a rollout from the server or host or anything, we'd like to see more automation. It would save us time."
"The security can be improved."
"The configuration had a bit of a learning curve."
"Queries are not always as easy or straightforward as they might be, so it can be difficult to figure out what you need to look for."
"Splunk Enterprise Security has not helped reduce our alert volume."
"The implementation and the scanning of the logs can be difficult."
Dynatrace is ranked 4th in Log Management with 340 reviews while Splunk Enterprise Security is ranked 1st in Log Management with 227 reviews. Dynatrace is rated 8.8, while Splunk Enterprise Security is rated 8.4. The top reviewer of Dynatrace writes "AI identifies all the components of a response-time issue or failure, hugely benefiting our triage efforts". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Dynatrace is most compared with Datadog, New Relic, AppDynamics, Azure Monitor and Elastic Observability, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Microsoft Sentinel, Elastic Security and Azure Monitor. See our Dynatrace vs. Splunk Enterprise Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
As far as I know, Splunk is used as a syslog system only and DynaTrace is an application monitoring system. So you will use Splunk to collect events/logs from servers and devices and you will use DynaTrace to monitor applications and send alerts to end users, provide dashboards etc.
Dynatrace is for APM / ITOM solution. Dynatrace trace can inspect the .net, Java, PHP Program. Splunk is for Log management and SIEM which Dynatrace does not focus on.
They are two different function products.
We use Dynatrace for deep dive transaction tracking to find performance issues of applications. We use Splunk various log analysis tasks mainly in the area of security.
It really depends on the use case. Dynatrace can actually enrich the data collected by Splunk and Dynatrace has an out of the box connection to Splunk. If the goal is application performance and end-user analytics then Dynatrace is the better solution. If the goal is security and threat analytics then Splunk is the right solution.
Splunk and Dynatrace are two different solutions. Most organizations use both of them. Splunk can aggregate logs from Dynatrace. It also depends on what is the purpose of the usage. If you intend to measure end to end application performance and the application logs are instrumenting the metrics, then Splunk alone can do the job. It also allows you to correlate other events like firewall, network and other dependent applications/services.
Dynatrace and Splunk are two different solutions that provide insight from different perspectives. Dynatrace is installed on servers/applications to provide APM and Splunk is more a log and data analytics solution that processes logs (traps/syslog/Windows Events/Firewall Logs/etc.).
Dynatrace provides application performance management (APM), artificial intelligence for operations (AIOps), cloud infrastructure monitoring, and digital experience management (DEM), with products for the information technology departments and digital business owners of medium and large businesses. The company's services include performance management software for programs running on-premises and in the cloud. This software manages the availability and performance of software applications and the impact on user experience in the form of deep transaction tracing, synthetic monitoring, real user monitoring, and network monitoring.
Splunk (the product) captures, indexes, and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards, and visualizations.
Splunk makes machine data accessible across an organization by identifying data patterns, providing metrics, diagnosing problems, and providing intelligence for business operations. Splunk is a horizontal technology used for application management, security and compliance, as well as business and web analytics.
Ref - from experience, their own websites and other related sites.