Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Is there a "Splunk Enterprise" vs "Splunk Security" comparable list?

indeed_2000
Motivator
‎06-03-2023 12:14 AM

Hi Is there any feature or ability exist in "Splunk Enterprise" that does not exist in "Splunk Security"? Any cheat sheet or comparable list? Thanks

Labels (1)
Labels
0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎06-03-2023 01:00 AM

Hi @indeed_2000,

what do you mean with "Splunk Security"?

are you meaning "Splunk Enterprise Security"?

If yes, they are two different things:

Splunk Enterprise is the log management platform (very briefly!).

Splunk Enterprise Security is a Premium App (not free), that works on Splunk Enterprise (or Splunk Cloud), that gives the feature of a SIEM, and it's one of the best in this market section (Gartner, Forrester and others sources). 

In other words, if you need a SIEM, you have to but both Splunk Enterprise and Splunk Enterprise Security.

Ciao.

Giuseppe

0 Karma
Reply

PickleRick
SplunkTrust
SplunkTrust
‎06-03-2023 04:03 AM

One more thing - you can have Splunk Enterprise Security on your on-premise Splunk Enterprise installation or in Splunk Cloud.

0 Karma
Reply
Get Updates on the Splunk Community!

Combine Multiline Logs into a Single Event with SOCK - a Guide for Advanced Users

This article is the continuation of the “Combine multiline logs into a single event with SOCK - a step-by-step ...

Everything Community at .conf24!

You may have seen mention of the .conf Community Zone 'round these parts and found yourself wondering what ...

Index This | I’m short for "configuration file.” What am I?

May 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with a Special ...