Splunk enterprise is best next GEN SIEM solution
What do you like best about the product?
Splunk is a multipurpose tool, which can be used for Visulizing the data in the form of Dashboards with dynamic drill downs, UBA, Incident review Dashboard, wide variety of integration support with existing Add-ons.
What do you dislike about the product?
Bundle replication & dispatch directories are two main reasons for Splunk Enterprise crash, these are not being addressed since long.
What problems is the product solving and how is that benefiting you?
Preventing the organisation from CyberAttacks with the existing usecase library to alert when there is a suspicious activity identified.
Dashboards that allows customers to visualize the data the way they want.
Multi correlation that allows to correlate & create the best usecase to minimise false positives.
Dashboards that allows customers to visualize the data the way they want.
Multi correlation that allows to correlate & create the best usecase to minimise false positives.
There are no comments to display