![]() It would be helpful to have AI so that I can explain in simple terms what I want and then the search gives that back to me. If I want to know which users have logged in between certain hours, I cannot write that query out. It's a more user-friendly process." "My biggest struggle with Splunk in general is memorizing all the commands. Setting conditions is like a multiple-choice type of thing. They can do it, but it's much easier in a solution like IBM QRadar. It's hard for a junior security engineer with only a couple of years of experience to write use cases. "Integrating tools and creating use cases could be easier. It's a never-ending story if you are trying to be sure your application is also secure." This would allow us to monitor the metric better." "They're doing vulnerability assessments of the application stack by using OneAgent. SNMP monitoring is currently not very good in this solution." "The only challenge is that it's an extensive tool that requires a significant amount of time to learn." "Support for cloud-based environments needs to be improved." "While designing the business dashboard, I encountered various bugs that impacted my work." "The solution could improve by allowing more dashboards customization. Strong end-to-end infrastructure monitoring is missing. ![]() They are mainly into the APM environment, such as network monitoring and other things. The Dynatrace dashboard needs to be more graphic." "The con of Dynatrace is that, at times, because it has so much information, it becomes difficult to see the root cause of your problem, and then you have to dig around to find the root cause." "Its infra monitoring is not that good. Creating dashboards in Dynatrace is good, but compared to Grafana, which is integrated with Broadcom DX APM, the resulting dashboard in Dynatrace isn't as clear. "What needs improvement in Dynatrace is its dashboard. ![]() This feature is important to me because it enables SOC analysts to do their job more efficiently and be able to investigate or mediate incidents at a faster pace." "The product provides visibility and enables us to correlate data and generate alerts." "The correlation searches are most valuable just because we are able to do things like RBA." "The additional vendors we've brought on board, particularly the elastic, have been quite beneficial." "The scalability is good." We have all the most important features to detect vulnerabilities or risks." "Recently, Splunk upgraded to version 9.0.02, which includes excellent data dashboards and visualization effects." "The most valuable feature is the incident dashboard, and the extensive use of correlation searches, which isn't available with a standard Splunk search package. Splunk is a very good SIEM, it’s a top solution, but the best feature is its cost of visibility. For it to reach certain compliance, we need to have some security insight. ![]() "The ability to ingest different log types from many different products in our environment is most valuable." "Splunk incorporates a lot of elements that help to reduce security risks. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |