# Splunk SOAR (Security Orchestration, Automation and Response) Reviews **Vendor:** Cisco **Category:** [Security Orchestration, Automation, and Response (SOAR) Software](https://www.g2.com/categories/security-orchestration-automation-and-response-soar) **Average Rating:** 4.4/5.0 **Total Reviews:** 40 ## About Splunk SOAR (Security Orchestration, Automation and Response) Splunk SOAR provides security orchestration, automation and response capabilities that allow security analysts to work smarter by automating repetitive tasks; respond to security incidents faster with automated detection, investigation, and response; increase productivity, efficiency and accuracy; and strengthen defenses by connecting and coordinating complex workflows across their team and tools. Splunk SOAR also supports a broad range of security operations center (SOC) functions including event and case management, integrated threat intelligence, collaboration tools and reporting. ## Splunk SOAR (Security Orchestration, Automation and Response) Pros & Cons **What users like:** - Users value the **automation capabilities** of Splunk SOAR, greatly enhancing workflow efficiency through seamless integration with existing tools. (1 reviews) - Users appreciate the **ease of automation** with Splunk SOAR, streamlining their security workflows effectively. (1 reviews) - Users appreciate the **helpful customer support** during onboarding and when addressing early questions about the platform. (1 reviews) - Users highlight the **deployment ease** of Splunk SOAR, seamlessly integrating into workflows for efficient automation. (1 reviews) - Users value the **detection accuracy** of Splunk SOAR, enhancing security workflows and automating repetitive tasks effectively. (1 reviews) - Users value the **robust features** of Splunk SOAR, enhancing security automation and streamlining their workflows effectively. (1 reviews) - Users value the **smooth integrations** of Splunk SOAR, enhancing their security workflows and overall efficiency. (1 reviews) - Support (1 reviews) **What users dislike:** - Users find the **difficult learning** curve challenging, especially for those new to automation platforms and complex features. (1 reviews) - Users find the **learning curve challenging** , especially newcomers who may struggle with the platform's UI and features. (1 reviews) - Users find the **UI not intuitive** , making it challenging to get started and requiring time to learn the platform. (1 reviews) - Users find the **poor interface design** challenging, leading to a steep learning curve for new users of Splunk SOAR. (1 reviews) ## Splunk SOAR (Security Orchestration, Automation and Response) Reviews ### 1. Splunk SOAR is a good software for automation **Rating:** 5.0/5.0 stars **Reviewed by:** Dheeraj T. | Risk Analyst, Mid-Market (51-1000 emp.) **Reviewed Date:** July 25, 2024 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** The platform is packed with features and once you get used to it, building and deploying playbooks becomes a regular part of our workflow. We use it daily to automate repetitive security tasks, and it integrates smoothly with our existing tools. Support has also been helpful during onboarding and when we had questions early on. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Getting started wasn’t the easiest—there’s a bit of a learning curve at the beginning, especially if you're new to automation platforms. Some parts of the UI could be more intuitive, and while the features are powerful, it takes time to fully understand and implement them. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Splunk SOAR has such benefits and feature which makes ease in terms of work and managing, hence didn't face any challenge till date, hope to get the support from Splunk SOAR team if such situation arises ### 2. Splunk SOAR is an awesome automation and security software **Rating:** 5.0/5.0 stars **Reviewed by:** Noor Z. | icicibank, Mid-Market (51-1000 emp.) **Reviewed Date:** July 25, 2024 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Splunk SOAR is such a tool that has features and options that will make everyone's work life as easier as mine with its security, automation features, and many good implementations. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Splunk SOAR is such an implimentation and easy-to-use tool that no one can ever dislike... **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Splunk SOAR has a good and feasible support team which helps overcome if any problem arises and makes everything goes smoothly ### 3. A great tool to orchestrate, automate and respond to security threats **Rating:** 4.5/5.0 stars **Reviewed by:** Josephine C. | IT Coordinator, Small-Business (50 or fewer emp.) **Reviewed Date:** July 18, 2024 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** -Easy to analyse and detect security threats -Flexibility in orchestrating workflows and integrating with other security tools. _Easy to customize and fit our business security needs. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Its complex to learn when new to the software and its very costly for small business enterprise but the support team is very responsive. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** _Streamline security monitoring processes. _Improve efficiency and automation of security operations _Real-time incident reporting. _Automate repetitive tasks. ### 4. Leading log management tool **Rating:** 4.0/5.0 stars **Reviewed by:** Srinivas G. | Sr security engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** July 19, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Automated playbooks. Splunk allows you to automate security and IT actions at machine speed. This can save security analysts a lot of time and effort, and it can also help to improve the accuracy and consistency of incident response. Integration with other tools. Splunk can integrate with a wide range of other security tools, which can help to streamline your security operations. This can make it easier to get a complete view of an incident, and it can also help to automate tasks that would otherwise be manual. Visual playbook editor is the best feature **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** The current documenation avilable is not enough and the cost is also expensive **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Splunk has reduced mean time to detect the problems. This has ensure that threats are detected and mitigated more quickly and reduce the impact of an incident. Visual graphs are very useful in realtime to detect the problems ### 5. Interesting and excellent way to hunt threats using automated actions **Rating:** 4.5/5.0 stars **Reviewed by:** Anakshi C. | Technical Lead, Enterprise (> 1000 emp.) **Reviewed Date:** July 21, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** The visual playbook editor feature is the most appealing and the fact that various security technologies can be integrated into SOAR and build actions all from these under one roof. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** The user interface has a lot of information that is difficult to understand and process for a beginner. Also the cost often becomes a significant point to consider while purchasing for projects, smaller projects usually prefer inexpensive solutions. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Automating the workflows saves time and enables quick actions on threats. Use of Python makes it easier for a technical person and hence one can build from existing python knowledge. Features like input playbooks allow for a lot of customizations to existing playbooks and workflows and thus effectively automate threat handling and response. Detailed monitoring and analysis of suspicious events is provided which makes the job easier for analysts. ### 6. Are you struggling with automation in your team work? Try Splunk SOAR the best tool **Rating:** 4.0/5.0 stars **Reviewed by:** marenyane m. | Web Developer, Mid-Market (51-1000 emp.) **Reviewed Date:** June 29, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** I like the fact that I am able to track all the repeatable tasks and alerts on a schedule. It makes it easy to engage with my teammates I am able to respond to any threats that may notify me while connecting with my team **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** I think they should at least allow us a period of 2 months to try it out. It is then that I can say that I have tried fully. I wouldn't say I like things that offer a short trial period. The ends without fully realizing the capability of a product **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Team management Dealing with online threats to phish for information It helps me to deal with incidents that used to happen at my workplace. I was able to manage such incidents easily It helped to do our team work faster because of easy management capability ### 7. Enhanced our ability to respond to threats **Rating:** 4.5/5.0 stars **Reviewed by:** Diane D. | Mid-Market (51-1000 emp.) **Reviewed Date:** May 23, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** It has reduced human error in response and remediation efforts, we are able to respond more accurately to threats in our environment. The playbooks are easy to understand and use. It provides continuous and real time threats response 24/7. I like that it has flexible deployment options, we are able to deploy on site and to our cloud resources. The customer support is very knowledgeable, responsive and very helytere **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** It's a very high prices product, well much like eveyother splunk product. I also don't like that it's not possible to scale automation features . **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** It has enhanced our ability to respond to threats accurately and in real time. It has also improved our capabilities and capacity to respond to any threats or attack It has helped us reduce our MTTR, we are able to respond, repair fix any issue in much shorter time. ### 8. Splunk SOAR review **Rating:** 4.5/5.0 stars **Reviewed by:** Jay P. | Cyber Security Intern , Mid-Market (51-1000 emp.) **Reviewed Date:** July 31, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** In my opinion,Splunk is the best netwok monitoring tool which is really helpfull for me to manage my infrastucture network and security and realtime analysis. nest for my company. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** there are some several reason why i dislike this. the points is mentioned below 1. Cost is major problem because it is too high. for normal user cannot afford it. 2.complexity to use . beacuse it required full course to learn for beginners. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** for me and in my organisation, it is helping me to manage my internal and external network and real time vulnerability and threat alerts . so can handle the threats with in time . ### 9. Great tool for IT management, Data retrieved was pretty precise. **Rating:** 4.0/5.0 stars **Reviewed by:** Yashasvi J. | Cloud and DevOps Trainee, Small-Business (50 or fewer emp.) **Reviewed Date:** August 01, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** It's less complex provided it's scalability and it's usage as a cloud application is one of the most attractive features that would make it an interesting tool as it is pretty compatible with any platform. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Not many, maybe the price if considered as a flaw. But in terms of it's application didn't find many disadvantages. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** It makes it easy to orchestrate my Ansible playbooks as I have been developing in them for a while now. Helps me scale my Containers in a very easy manner. So far Splunk SOAR has been a really effective tool with the experience I have with DevOps and Related technologies. ### 10. Splunk SOAR Review **Rating:** 5.0/5.0 stars **Reviewed by:** Manthan G. | DevOps Engineer, Information Technology and Services, Small-Business (50 or fewer emp.) **Reviewed Date:** August 01, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** I have used Splunk in my carrier to solve the purpose of security and automation detection which helped me to fulfill my requirement as compared to the other tools available in the market. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** It is having a quite high pricing as compared to the tools available in the market also it having quite complex but the features are mostly useful so it great thing. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** I am a Cyber Security Expert and as per my role I am reviewing the complaints and threat analysis in my organization and the security system for which Splunk SOAR has provided me help to solve the purpose. ### 11. splunk Soar is best tool for industry to secure the network infrastructure. **Rating:** 4.5/5.0 stars **Reviewed by:** Jay P. | Cyber Security Intern, Mid-Market (51-1000 emp.) **Reviewed Date:** July 29, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** I like automating and handling real-time data and getting threat alerts instate which is I wanted the most. moreover, it ends to end security resolution in one tool. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** there are some disadvantages of Splunk which have been mentioned below 1. it required a lot of knowledge to operate this tool 2. cost is too high 3. dashboard and UI is not beginner friendly **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** to manage the threats and vulnerabilities and monitor the infrastructure network. and manage the real-time incidence response. more over managing the networks with real-time status ### 12. Best security tool i have ever seen **Rating:** 5.0/5.0 stars **Reviewed by:** jigar p. | DevOps Engineer, Information Technology and Services, Mid-Market (51-1000 emp.) **Reviewed Date:** August 02, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** i like it's realtime responsive ness and realtime data alert and threat alert which is most accurate.and threat visualization is the best because i am able to visualize all vulnerabilities. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** so in my opinion there is nothing to dislike but it requires some knowledge to oparete it. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** for me, it is help me to secure my company's internal network. moreover ,its incident response policy are to good and realtime analysis it way far better than others. i thankyou to the maker to make like this tool. ### 13. Useful but costly tool to use and integrate **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Education Management | Small-Business (50 or fewer emp.) **Reviewed Date:** August 22, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** The main benefits of using Splunk are the array of tools along with SOAR that it offers along with the support for integration with various third party service providers. It provides automation of simple tasks with important tasks **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** The one thing that does not fit well in the overall scheme of things is the costing of the tool for integration into internal systems and also there is no local support for implementation **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** The overall process of automating the security tasks with the help of Splunk is the ultimate benefit that we aim to establish. Another important benefit is the support from the Splunk research team on identifying potential threats and their potentials solutions ### 14. Making work more efficient but needs some minir upgrades! **Rating:** 3.0/5.0 stars **Reviewed by:** Eshan R. | Lead AVP, Enterprise (> 1000 emp.) **Reviewed Date:** August 22, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** I has helped in automation and simplification of repetitive security tasks therby saving time on manual tasks. Easy to understand and implement compared to other tools and programming languages. Captures all incidents and provides quick resolution. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Some plugins get stuck and it is diffcult to get a quick solution without a dedicated support team. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Saves time in manual repetitive tasks, nice security cover to automated incidents. makes the team more efficient. ### 15. Splunk soar **Rating:** 5.0/5.0 stars **Reviewed by:** Bhavesh N. | Senior DevOps Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** August 01, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Centralized security management and accident report management, we can customize feature according to requirement that's the best feature and we can migrate our security tools with it. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** According to me for new user it's bit complex to setup playbook and integration, sometime false positive security reports so it's sometime difficult to identify **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** for our team integrate with our security tool and save our cost, manual work is lengthy sometime but using splunk we can automate our task easily and save time. ### 16. Good SIEM product but one of complex one **Rating:** 2.5/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** June 29, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** It is good product for enterprises and large scale organizations, solution has the capability to meet the different use cases and it has ability to integrate with most of the technology and security stack. Queries can be customized. Dashboard is good and effective for security analyst. Less false positive alerts as compared to other siem tools. Different workflows can be created. Works well with different security playbooks **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Product very expensive. Not easy to implement. Complex security architecture. Skills shortage of staff. Not many partners in India who can provide support for this siem tool. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Quick incident response and recovery so that large scale security incident can be avoided. Helps in better understanding of correlation of the issue. Also one of the compliance requirement of having soar. Works well with cloud stack. ### 17. Good for monitoring **Rating:** 4.5/5.0 stars **Reviewed by:** Vishal G. | DevOps Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** August 15, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** This helps security teams manage and respond to incidents more effectively. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** the cost of the platform and the resources required for maintenance considered as potential drawbacks. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Splunk SOAR automates routine security tasks, freeing up human analysts to focus on more critical aspects of threat detection and response. By orchestrating actions across security tools, Splunk SOAR accelerates incident response, helping to mitigate threats faster and minimize potential damage. ### 18. Review for the people **Rating:** 4.5/5.0 stars **Reviewed by:** Jhonny C. | Systems Engineer, Computer Software, Small-Business (50 or fewer emp.) **Reviewed Date:** June 27, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Definitely the most I like is the automation capabilities of Splunk, a wide range of tasks can be automated. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** SOAR is a bit expensive for me, not many organizations can pay for it, also, if you are not familiar with Splunk products you could have a bad start using this app. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** I'm solving manual incidents and making faster all the work process, also, the accuracy of our responses increases so the quality of our products goes better. ### 19. Splunk SOAR Review **Rating:** 4.0/5.0 stars **Reviewed by:** Kaviraj R. | System Administrator, Mid-Market (51-1000 emp.) **Reviewed Date:** August 01, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Splunk SOAR provides real-time insight and analytics, security measures, it's support on multiple platforms. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Splunk SOAR is a complex and time-consuming process. software cost is expensive. it also required infrastructure for manage. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** it's resolved the manual process, now we do automation. reduced slow response time of when incident occurred. able to configure mutile tool at one place and manage easily. ### 20. Great automation and response actions **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.) **Reviewed Date:** July 28, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** The best thing that I like is their response actions. It provides many nativelysupported actions. Also, It provides the ability to implement the custom actions as per your requirements. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** It's quite complex for the non splunkler person. They have to understand the workflow and the all the configurations in order to use it at its best. It might need help of others for understanding. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** It provides me the daily update via mail and send me the detailed report of my task so it reduces the efforts in my daily tasks and provide the alert in case of any urgency. ### 21. Best SOAR security in market **Rating:** 5.0/5.0 stars **Reviewed by:** Niladree S. | Consulting, Small-Business (50 or fewer emp.) **Reviewed Date:** July 21, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Automation and response strategy, detection and prevention, SOAR extra features like others solution in the market, simplest architecture, strong recommendation. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Need more cutome policy for detection prevention in security, UI should be simple to user performance. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** It is best as SOAR solution, Splunk features are amaze to the customers and good scope for business. ### 22. Great tool with automation capabilities **Rating:** 4.0/5.0 stars **Reviewed by:** Prakash Gupta K. | Manager, Enterprise (> 1000 emp.) **Reviewed Date:** July 10, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Great tool with the finest automation capabilities and the potentially required monitoring capabilities, which is essential for every industry. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** The cost is high. However, it has the required capabilities. I still feel the cost need to be modified. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** It helped most of the manual tasks to be converted to Automated tasks. ### 23. Security automation using Splunk SOAR **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** July 26, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Splunk SOAR helps in automating the repetitice tasks, investigate and respond to security incidents in seconds. This helps in increasing the productivity of security management. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** As such there are no flaws in using this but the cost of the product is quite high in which small organisations thinks twice while rendering the service. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** We have build it for any security or malicious attack/breach which instantly opens a bridge as part of incident response and adds the required team to it. ### 24. Great Security Orchestration Tool! **Rating:** 5.0/5.0 stars **Reviewed by:** Bala B. | Software engineer, Enterprise (> 1000 emp.) **Reviewed Date:** July 02, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** One of the best product to automate the IT security processes. It will find the security threats effectivity and automate the security incidents, which is the best part. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Cost is the most significant fact. Other than that, I don't have any dislikes. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** To automate security incidents and to revenue-driving. ### 25. Best of security action and monitoring tool in the market **Rating:** 4.5/5.0 stars **Reviewed by:** Charan Raj Y. | QA Automation Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** April 28, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** It is one of the easy and standard rule tool to set task to trigger agents accross the systems at once. Can send the multiple events of security tasks at once and can preview/analyze the triggered events. It doesn't need coding to setting up Easy of UI access and actions **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** It is costly compared to other ones in the market It would be great if they share more tutorial of tool **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Security standards Malware alert Blocking the fake/hacking events Automation ### 26. Okayish **Rating:** 2.5/5.0 stars **Reviewed by:** Verified User in Consulting | Enterprise (> 1000 emp.) **Reviewed Date:** July 28, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Easy to search through the logs that help a lot in debugging **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** The UI could be improved, to show the most frequently used things **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Helps a lot in debugging and giving me valuable insights ### 27. AWASOME Experience **Rating:** 5.0/5.0 stars **Reviewed by:** Selvamuthukumar L. | Senior Technical Consultant, Mid-Market (51-1000 emp.) **Reviewed Date:** August 06, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Easy to use and very informative and give most accurate solution **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** May get complicate answers.ans yes it's not realizer with some solutions **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Easy to filteroit the clients ### 28. Great Platform! Great Automation **Rating:** 5.0/5.0 stars **Reviewed by:** Eduardo N. | Technical Support Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** June 29, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** I like the automative tasks and how easily we can investigate and respond to security vulnerabilities **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** At first, a little confusing to use but after a bit of practice I personally recommend it **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** It helps us organize and efficiently respond to security violations and vulnerabilities ### 29. Seamless Product **Rating:** 5.0/5.0 stars **Reviewed by:** Boga Venkatesh N. | Mid-Market (51-1000 emp.) **Reviewed Date:** July 18, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Its a very robust product and has multiple features to enhance user experience **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** nothing as of now.Everything in the product is upto the mark **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Its automating our incident response process ### 30. Best Integrated end to end case solution from Splunk **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Small-Business (50 or fewer emp.) **Reviewed Date:** July 01, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** I liked the Incident management solution. Whenever an event occurs, it can integrate a Remediation solution automatically with such ease. I also appreciate the notification integrations with PagerDuty etc. are excellent add-on advantages. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** i do not find much cons in the Framework offered by Splunk SOAR, its always going to improve from what we have now may even become powerful with the AI **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Incident management & Auto Remidiations automation playbooks & Notifications ### 31. Review for Splunk **Rating:** 5.0/5.0 stars **Reviewed by:** Tejas P. | IT Manager, Enterprise (> 1000 emp.) **Reviewed Date:** June 27, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** The Security related Incidents, Events on the Dashboard **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Nothing at this moment to dislike about this product **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Security related Incident logging and immediate automated response ### 32. Splunk Soar is a great tool for modern SOCs **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** July 14, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Up to date with the zero day challenging threads. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Nothing as such, it is a great tool as of now. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Mainly incident response, blocking and notifying about attacks ### 33. Notifications **Rating:** 3.0/5.0 stars **Reviewed by:** Shatavisa A. | Assistant Consultant, Mid-Market (51-1000 emp.) **Reviewed Date:** May 02, 2023 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Certificate expired notification and if any alerts **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** It supports REST api to configure automation **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** To automate incidents ### 34. Splunk SOAR Review **Rating:** 4.0/5.0 stars **Reviewed by:** Manzar A. | Software Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** May 09, 2022 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** The Splunk SOAR is quite a capable SOAR platform from Splunk. What I liked most is the level of automation that can be achieved with Splunk SOAR. Also, this tool is good for both the users who know python and who do not. Most of the automation can be achieved without any coding effort but if SOAR engineer is having python knowledge a lot of custom automation can be achieved. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Integration is quite easy within the Splunk ecosystem but integration with other tools outside Splunk Ecospace is a little tedious job to do and also the documentation is not as reach as it should be. **Recommendations to others considering Splunk SOAR (Security Orchestration, Automation and Response):** I would recommend to do POC with Splunk and Cortex XDR and then decide which one you want to use. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Automated investigation and Response. A lot of time consuming things can be automated and thus reducing the overall effort and time invested by the SOC Analysts. It improves the overall SLA and also reduce the cost of SOC as less number of SOC Analysts are required. ### 35. Great tool with features to monitoring logs and resolving threats/issues **Rating:** 5.0/5.0 stars **Reviewed by:** Ajith K. | Specialist programmer, Mid-Market (51-1000 emp.) **Reviewed Date:** September 14, 2022 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Simple and Good UI for monitoring audit logs, identifying threats, and creating automated scripts for resolution. Features to create dashboards and pivots to visualise data collected. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** The tool is expensive as the usage cost will be based on the number of log files it indexes and retrieves the data. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** The tool solves problems in threat management, including monitoring and identifying threats, and resolves them with the help of automation by configuring predefined scripts. ### 36. Splunk SOAR beginner review **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** August 26, 2022 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** splunk useful tool to move the logs to single space and analyse digitalize like SOAR will provide seamless automation with logs and you can create a runbook **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** since I am beginner I cannot comment on this. However I am going to start evaluatioin on this on my free time becaus splunk is essential for us and it is alreay there so using SOAR I am trying to value add **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Since I am staring to read about this i can understand it can provide automation on top of our logs ### 37. Splunk SOAR review **Rating:** 5.0/5.0 stars **Reviewed by:** Animesh R. | Founder, Computer & Network Security, Small-Business (50 or fewer emp.) **Reviewed Date:** July 19, 2022 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** the automated playbook makes the life little bit easier on job. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** nothing so far, some plugins are still little complicated to configure **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** security automation, less human interaction for basic task monitoring ### 38. Easy Automation with no coding approach **Rating:** 4.5/5.0 stars **Reviewed by:** Mohit G. | Asst. Vice President - Information Security , Enterprise (> 1000 emp.) **Reviewed Date:** September 16, 2021 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** It is a flexible product with many essential and useful features, which along with outstanding customer support, brings the SOC environment to the next level. The no-code approach to integrations and the ease of setting up playbooks make it stand out. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Little expensive, and API and third-party applications integration have room to improve. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** • Improve business process agility • Create internal/operational efficiencies • Improve business process outcomes • Enhance decision making • Reduce the time and effort of the analyst for making an informed decision on potential attacks. ### 39. Turnaround to Business **Rating:** 4.5/5.0 stars **Reviewed by:** Abhishek V. | Associate, Information Technology and Services, Enterprise (> 1000 emp.) **Reviewed Date:** August 06, 2019 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** It holds nerve center of the security ecosystem, giving teams the insight to quickly detect and respond to internal and external attacks, simplify threat management minimizing risk, A great product to use for security any organization at any level. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** Expensive, as it logs size based, more you index more money you have to spend, should be lower in price, there is less to dislike about this product, its all win win for us. **Recommendations to others considering Splunk SOAR (Security Orchestration, Automation and Response):** Splunk Enterprise Security is the nerve center of the security ecosystem, giving teams the insight to quickly detect and respond to internal and external attacks, simplify threat management minimizing risk. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** It Enable us process malware email alerts in seconds and more important to rectify the fake accounts and transactions on bank sites. ### 40. Great product to orchestrate security related events and other **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** August 09, 2019 **What do you like best about Splunk SOAR (Security Orchestration, Automation and Response)?** Easy to use GUI , you can have with you own add-ons, Many integrations in existing solutions and tools.It is a great orchestration toll which can be used for any kind of orchestration not only security. **What do you dislike about Splunk SOAR (Security Orchestration, Automation and Response)?** GUI logic not intuitive. You need to understand the logic before you can use it successfully. Sometime it is too security word focused. **Recommendations to others considering Splunk SOAR (Security Orchestration, Automation and Response):** automation and orchestration will be key for the future. Phantom is a great solution to get there. **What problems is Splunk SOAR (Security Orchestration, Automation and Response) solving and how is that benefiting you?** Fast reaction to identified security events, automation of standard SIEM events and action handling, repeating actions based on events improve time to resolution ## Splunk SOAR (Security Orchestration, Automation and Response) Discussions - [What is Splunk SOAR (Security Orchestration, Automation and Response) used for?](https://www.g2.com/discussions/what-is-splunk-soar-security-orchestration-automation-and-response-used-for) - [View Splunk SOAR (Security Orchestration, Automation and Response) pricing details and edition comparison](https://www.g2.com/products/splunk-soar-security-orchestration-automation-and-response/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-21+04%3A04%3A46+-0500&secure%5Bsession_id%5D=3fb2e692-a553-4d65-8a57-79e4a18d9b2b&secure%5Btoken%5D=b95f2de81799f944f40a5517ebbea0e305d0fa6065d1683d37c72c207022e486&format=llm_user) ## Splunk SOAR (Security Orchestration, Automation and Response) Features **Threat Detection & Triage - AI SOC Agents** - Anomaly Detection & Correlation - False‑Positive Suppression - AI‑Driven Alert Triage **Response** - Resolution Automation - Resolution Guidance - System Isolation - Threat Intelligence - Incident Investigation **Automation** - Workflow Mapping - Workflow Automation - Automated Remediation - Log Monitoring **Investigation & Enrichment - AI SOC Agents** - Autonomous Case Investigation - Contextual Enrichment from Multiple Sources - Attack Path Mapping **Records** - Incident Logs - Incident Reports **Orchestration** - Security Orchestration - Data Collection - Threat Intelligence - Data Visualization **Response & Remediation - AI SOC Agents** - Mean Time Reduction Metrics - Playbook‑Free Dynamic Workflows - Automated Response Execution **Management** - Incident Alerts - Incident Case Management - Workflow Management **Response** - Alerting - Performance Baselin - High Availability/Disaster Recovery **InfoSec Experience & Governance - AI SOC Agents** - Conversational Analyst Interface - Manual Feedback Learning Loop - Explainability & Audit Trail **Generative AI** - AI Text Generation - AI Text Summarization ## Top Splunk SOAR (Security Orchestration, Automation and Response) Alternatives - [Tines](https://www.g2.com/products/tines/reviews) - 4.7/5.0 (392 reviews) - [Torq AI SOC Platform](https://www.g2.com/products/torq-ai-soc-platform/reviews) - 4.8/5.0 (149 reviews) - [Palo Alto Networks Cortex XSOAR](https://www.g2.com/products/palo-alto-networks-cortex-xsoar/reviews) - 4.6/5.0 (27 reviews)