We performed a comparison between ServiceNow Cloud Observability and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out what your peers are saying about Datadog, Dynatrace, New Relic and others in Application Performance Monitoring (APM) and Observability."The solution Lightstep/ServiceNow has a couple of pretty advanced functionalities to help us investigate a deviation and help the development teams have better observability in the environment using distributed and complex services."
"The ability to create a stream based on different parameters, operation name, service name, URL, tags, and URI part, is one valuable feature."
"The UI is very intuitive."
"Our clients are easily able to modify and evolve their implementations."
"The initial setup is simple, not very complex. Initial deployment takes around 10 to 15 minutes to set up the entire base for Splunk including all three tiers."
"Splunk's advantage is its search capability. Its search is notably faster. With Splunk, I can search easily on keywords. That is great."
"Being able to track impossible travel logins and things of that nature is valuable. We can track user logins from various IPs, various countries, and at various times to see if everything adds up."
"The ability to ingest different log types from many different products in our environment is most valuable."
"Its compatibility with other SIEMS is very useful."
"The fact that Splunk is a platform and not just a SIEM solution is a key benefit."
"Splunk works based on parsing log files."
"The design of this solution is not very intuitive and probably could come with more friendly tips for beginners."
"The support team could be better. Because of the different versions of different tactics of integrating reactive code base, the documentation is not very clear if someone has to be onboard. I would rate the documentation of Lightstep a five out of ten. It could need improvement."
"The dashboard and graphics must be improved."
"Splunk Enterprise Security can be improved by including backup network detection and response and safe management to the paid platform."
"It is a hugely complicated product."
"Splunk's implementation process for managing multiple indexes can be complex, especially when dealing with a large number of components."
"A problem that we had recently had was we licensed it based on how much data you upload to them every day. Something changed in one our applications, and it started generating three to four times as many logs and. So now, we are trying to assemble something with parts of the Splunk API to warn ourselves, then turn it off and throttle it back more. However it would be better if they had something systematically built into the product that if you're getting close to your license, then to shut things down."
"The solution could improve by giving more email details."
"My company could benefit from doing more Splunk training with Splunk consultants teaching us how to use it."
"Being a SIEM solution with a centralized dashboard, we would like to have more options to customize it."
"One issue is that we are getting a lot of false positives. We are trying to reduce them by customizing the default rules, changing thresholds, and using white-listing and black-listing. It's getting better and better as a result. But they need to build components that would reduce the false positives."
ServiceNow Cloud Observability is ranked 48th in Application Performance Monitoring (APM) and Observability with 3 reviews while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 246 reviews. ServiceNow Cloud Observability is rated 7.4, while Splunk Enterprise Security is rated 8.4. The top reviewer of ServiceNow Cloud Observability writes "Provides effective observability and offers robust alerting and monitoring capabilities". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". ServiceNow Cloud Observability is most compared with Grafana, New Relic, Dynatrace, Datadog and Sentry, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel.
We monitor all Application Performance Monitoring (APM) and Observability reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.