Is there a "Splunk Enterprise" vs "Splunk Securit...

indeed_2000 · ‎06-03-2023

Hi Is there any feature or ability exist in "Splunk Enterprise" that does not exist in "Splunk Security"? Any cheat sheet or comparable list? Thanks

gcusello · ‎06-03-2023

Hi @indeed_2000,

what do you mean with "Splunk Security"?

are you meaning "Splunk Enterprise Security"?

If yes, they are two different things:

Splunk Enterprise is the log management platform (very briefly!).

Splunk Enterprise Security is a Premium App (not free), that works on Splunk Enterprise (or Splunk Cloud), that gives the feature of a SIEM, and it's one of the best in this market section (Gartner, Forrester and others sources).

In other words, if you need a SIEM, you have to but both Splunk Enterprise and Splunk Enterprise Security.

Ciao.

Giuseppe

PickleRick · ‎06-03-2023

One more thing - you can have Splunk Enterprise Security on your on-premise Splunk Enterprise installation or in Splunk Cloud.

Is there a "Splunk Enterprise" vs "Splunk Security" comparable list?

Index This | Why did the turkey cross the road?

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

Feel the Splunk Love: Real Stories from Real Customers

Are you a member of the Splunk Community?

Is there a "Splunk Enterprise" vs "Splunk Security" comparable list?

Index This | Why did the turkey cross the road?

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

Feel the Splunk Love: Real Stories from Real Customers