Splunk Enterprise Security vs. Zenduty

Splunk Enterprise Security

Zenduty

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Splunk Enterprise Security	Score 9.6 out of 10	N/A	Splunk Enterprise Security is an analytics-driven SIEM that helps to combat threats with actionable intelligence and advanced analytics at scale.	N/A
Zenduty	Score 9.0 out of 10	Small Businesses (1-50 employees)	Zenduty is presented as a collaborative, end-to-end incident management system for the management of always-on services, helping teams orchestrate incident response for creating better user experiences and brand value. Zenduty centralizes critical alerts through predefined notification rules to ensure that the right people are notified at the right time and respond to and resolve incidents before it impacts customers. Zenduty supports over 100+ integrations and alert sources where IT…	$6 per month per user

Pricing

Splunk Enterprise Security

Zenduty

Editions & Modules

No answers on this topic

Starter: $6
per month per user
Growth: $16
per month per user
Enterprise: $25
per month per user

Offerings

Pricing Offerings
Splunk Enterprise Security	Zenduty
Free Trial
No	Yes
Free/Freemium Version
No	Yes
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

Additional Details

—

Discount available for annual pricing.

More Pricing Information

Features

Splunk Enterprise Security

Zenduty

Security Information and Event Management (SIEM)

Comparison of Security Information and Event Management (SIEM) features of Product A and Product B
	Splunk Enterprise Security 8.4 Ratings 8% above category average	Zenduty - Ratings
Centralized event and log data collection	9.30 Ratings	00 Ratings
Correlation	8.60 Ratings	00 Ratings
Event and log normalization/management	8.50 Ratings	00 Ratings
Deployment flexibility	8.30 Ratings	00 Ratings
Integration with Identity and Access Management Tools	7.80 Ratings	00 Ratings
Custom dashboards and workspaces	9.20 Ratings	00 Ratings
Host and network-based intrusion detection	7.90 Ratings	00 Ratings
Data integration/API management	8.40 Ratings	00 Ratings
Behavioral analytics and baselining	7.70 Ratings	00 Ratings
Rules-based and algorithmic detection thresholds	8.50 Ratings	00 Ratings
Response orchestration and automation	7.00 Ratings	00 Ratings
Reporting and compliance management	8.60 Ratings	00 Ratings
Incident indexing/searching	9.20 Ratings	00 Ratings

Incident Response Platforms

Comparison of Incident Response Platforms features of Product A and Product B
	Splunk Enterprise Security - Ratings	Zenduty 9.5 Ratings 8% above category average
Company-wide Incident Reporting	00 Ratings	10.00 Ratings
Integration with Other Security Systems	00 Ratings	10.00 Ratings
Attack Chain Visualization	00 Ratings	9.00 Ratings
Centralized Dashboard	00 Ratings	10.00 Ratings
Machine Learning to Prevent Incidents	00 Ratings	9.00 Ratings
Live Response for Rapid Remediation	00 Ratings	9.00 Ratings

User Ratings
	Splunk Enterprise Security	Zenduty
Likelihood to Recommend	8.8 (0 ratings)	9.0 (0 ratings)
Likelihood to Renew	9.0 (0 ratings)	- (0 ratings)
Usability	7.5 (0 ratings)	- (0 ratings)
Availability	9.1 (0 ratings)	- (0 ratings)
Performance	8.2 (0 ratings)	- (0 ratings)
Support Rating	6.6 (0 ratings)	- (0 ratings)
In-Person Training	9.1 (0 ratings)	- (0 ratings)
Online Training	8.2 (0 ratings)	- (0 ratings)
Implementation Rating	9.1 (0 ratings)	- (0 ratings)
Configurability	7.3 (0 ratings)	- (0 ratings)
Ease of integration	6.4 (0 ratings)	- (0 ratings)
Product Scalability	9.3 (0 ratings)	- (0 ratings)
Vendor post-sale	8.2 (0 ratings)	- (0 ratings)
Vendor pre-sale	8.2 (0 ratings)	- (0 ratings)

User Testimonials
	Splunk Enterprise Security	Zenduty
Likelihood to Recommend	Well-Suited Scenarios: Real-Time Threat Response: ES excels in swiftly detecting and responding to security threats through data correlation. Compliance Management: ES streamlines compliance with detailed logs and reports, ideal for regulated industries. User Behavior Analytics: Effective in monitoring user and entity behavior, particularly for insider threat detection. Large-Scale Environments: Valuable for organizations with diverse data sources and high volumes of data. Incident Investigation: ES aids in post-incident analysis, reconstructing events to understand root causes. Less Appropriate Scenarios: Smaller Organizations: For simpler setups, ES may be complex and costly. Static Environments: In low-risk settings, ES's advanced features may be unnecessary. Limited Resources: Tight budgets or sparse IT resources may hinder effective ES use. Lack of In-House Expertise: Without security experts, optimizing ES can be challenging. Budget Constraints: ES may be cost-prohibitive for budget-conscious organizations, prompting consideration of more affordable alternatives. Incentivized Verified User Anonymous Read full review	Zenduty helps manage the incident alerts end to end. It can e integrated with Slack to alert the team. It's an easy to configure platform that trigger alerts such as Datadog, aws cloudwatch, GCP, etc. Zenduty leverages data to perform rapid RCAs and helps reduce future incidents. It also helps in automated communications for accelerated and frictionless collaboration between support staff and subject matter experts. Incentivized YG Yatin Garg Product Manager Read full review
Pros	Its best feature is its user interface, which is easy to navigate and understand. All you need is a little tutorial on how to use the Splunk query language and you're done. Logs can be easily uploaded or shared across multiple platforms and display a highly insightful graphical representations of data using graphs, tables, and many other formats. Incentivized Verified User Anonymous Read full review	Real time alerts on critical events Incidents management Tasks delegations and personalised communications Incentivized YG Yatin Garg Product Manager Read full review
Cons	To identify User Behaviour analysis is lacking component which we get in Splunk UBA. The documentation part is hard to work on because if the new user tries to learn ES then the documentation is not user-friendly. ES must ass more Knowledge objects by default to make security-related aspects more reliable and enhance the details. Incentivized Verified User Anonymous Read full review	Escalation option is limited, only straightforward top down even after re-assigning Override interface is confusing Lack of mobile app alerts and notifications Incentivized YG Yatin Garg Product Manager Read full review
Likelihood to Renew	We are very happy with Splunk and would advise anyone to take a serious look at it. It might look pricey but the rewards Splunk offers seem endless. Incentivized Verified User Anonymous Read full review	No answers on this topic
Usability	You definitely need to learn how to use Splunk to get the most of the tool. There are many courses available for free to get up to speed on the usability of the tool but it's not that simple. It will take time to digest all the data and to understand how to query for what you are looking for. Incentivized Verified User Anonymous Read full review	No answers on this topic
Reliability and Availability	I'm not an ES user, but, in my implementation I usually try to prevent all service stops to guarantee High availability to the final customers. Incentivized Giuseppe Cusello GRC Director Read full review	No answers on this topic
Performance	ES requires a very performant infrastructure: if it has it's performant, otherwise not. I had situation with a very performant infrastructure and I didn't notized that it was a distributed architecture, it seemed that there ware few data on my PC, othewise I experienced less performant infrastructures with less performaces. Incentivized Giuseppe Cusello GRC Director Read full review	No answers on this topic
Support Rating	It's good when it's responsive, but I've had times where I had to wait quite a while for a response. But these are typically the exceptions rather than the rule. When you do get a response it is always well-informed and appropriate. I would say they've been trending better over time with this. Incentivized AE Allan Crittenden Edwards Security Analyst Read full review	No answers on this topic
In-Person Training	I experienced only on-line training, but the trainers were very professional and competent. Maybe it could be more useful if they also have an experience in projects because sometimes they didn't have a real project experience to communicate to the students. Anyway, it was very interesting and I learned many thing that's very difficoult (or maybe impossible!) to have by myself, aven if I have more than 10 years of Splunk activity experience. Incentivized Giuseppe Cusello GRC Director Read full review	No answers on this topic
Online Training	It was very interesting and I learned many thing that's very difficoult (or maybe impossible!) to have by myself. The only problem was that, when I worked with the Splunk Professional Services, I found some difference between the training contents and the information from PS. In addition is required a long experience on Splunk Enterprise for the data ingestion part, in other words I'm able to work with ES because I'm worling on Splunk since 11 years, otherwise I'd some problem. Incentivized Giuseppe Cusello GRC Director Read full review	No answers on this topic
Implementation Rating	It's a fantatic product and it was very useful the presence of Splunk Professional Services for the Design Phase and the final Health Check. Incentivized Giuseppe Cusello GRC Director Read full review	No answers on this topic
Alternatives Considered	LogRhythm is good for a team comprising mostly non-technical IT users. Unlike Splunk, it has a GUI log search and a good ticketing system. Splunk is better than Logrhythm for me as it provides me with the ultimate flexibility to write custom queries. Scalyr is a good tool and quite frankly lot faster than Splunk. However, I prefer Splunk because of its better Dashboards and panel customization abilities. Elastic is another amazing tool. It is hard to choose between the two especially because both have different sets of logs on them. I use both. Elastic for internal server logs, Splunk for everything else. Incentivized Verified User Anonymous Read full review	Zenduty helps realise tangible impact of the incident resolution by detailed demos. Zenduty pricing is highly competitive and customised compared to other competitors. Zenduty tech support team is easily reachable and helps address any queries/ concerns on priority. Zenduty integration is super quick and easy. Zenduty can also be integrated with other tools such as Slack, gmail for real time updates. Incentivized YG Yatin Garg Product Manager Read full review
Scalability	We have on prem splunk and it’s mostly east to setup, but we have issues keeping data separated between customer splunk deployments while at the same time only having to look at one SIEM to address events in every environment Incentivized Verified User Anonymous Read full review	No answers on this topic
Return on Investment	We have a 100% success rate on all our ES implementations due to the amazing documentation and Splunk enablement on the subject. Our Splunk ES business has grown 100% YoY for the last 3 years. In terms of long term management and maintenance, ES has been highly stable and predictable, reducing our overhead on costly services team for ad hoc maintenance work. Verified User Anonymous Read full review	Decreased incidents by 40% Decrease in incident resolution and escalation time by 50% Increase in CSAT score by 40% Incentivized YG Yatin Garg Product Manager Read full review
ScreenShots		Zenduty Screenshots