It's been two months since this profile received a new review

Splunk User Behavior Analytics Reviews & Product Details

Splunk UBA provides advanced and insider threat detection using unsupervised machine learning helping organizations find unknown threats and anomalous user behavior across devices and applications. Splunk UBA extends the power of Splunk Enterprise Security — an analytics-driven SIEM — enabling organizations to act on high fidelity threats while optimizing threat detection for targeted incident response.

Seller

Cisco

Discussions

Splunk User Behavior Analytics Community

Product Description

Splunk User Behavior Analytics (UBA is a machine learning-driven solution designed to detect hidden threats and anomalous behaviors across users, devices, and applications. By leveraging unsupervised machine learning algorithms, UBA establishes behavioral baselines and identifies deviations, enabling organizations to uncover insider threats and advanced attacks that traditional security measures might miss. This approach enhances the efficiency of Security Operations Center (SOC analysts by providing actionable insights with risk ratings and supporting evidence, facilitating faster and more informed responses. Key Features and Functionality: - Insider Threat Detection: Utilizes out-of-the-box, extensible unsupervised machine learning algorithms to identify potential insider threats. - Anomaly Correlation: Provides context around threats through machine learning-driven anomaly correlation and visual mapping of anomalies across various phases of the attack lifecycle. - SOC Efficiency Enhancement: Increases SOC efficiency by offering rank-ordered threats accompanied by supporting evidence, allowing analysts to prioritize and address the most critical issues promptly. - Integration Capabilities: Supports bi-directional integration with Splunk Enterprise for data ingestion and correlation, and with Splunk Enterprise Security for incident scoping, workflow management, and automated response. Primary Value and Problem Solved: Splunk UBA addresses the challenge of detecting sophisticated threats that evade traditional security tools by analyzing behavioral patterns and identifying anomalies indicative of malicious activity. By automating the detection of insider threats and advanced attacks, UBA empowers organizations to proactively safeguard their digital assets, reduce the time to detect and respond to incidents, and enhance overall security posture. This proactive approach ensures that security teams can focus on genuine threats, improving operational efficiency and reducing the risk of data breaches.

Overview by

catalina radu

Top-Rated Alternatives

Palo Alto Cortex XSIAM

View All Alternatives

G2 reviews are authentic and verified.

Here's how.

RUDRA P.

Security Professional

Information Technology and Services

Enterprise (> 1000 emp.)

7/30/2024

"Splunk User Behavior Analytics Review"

5/5

What do you like best about Splunk User Behavior Analytics?

Splunk User Behavior Analytics establishes baseline behaviors for users, devices, and applications using unsupervised machine learning algorithms. It then looks for deviations to identify insider risks and unknown threats. This can be easily integrated with other tools and is easy to use. Has good customer support. Can be implemented on cloud and can be used from anywhere in current hybrid work environment. We have been using it since last 3 years. Review collected by and hosted on G2.com.

What do you dislike about Splunk User Behavior Analytics?

There is nothing which is least helpful in this tool hence i do not have any dislike for Splunk User Behavior Analytics. Review collected by and hosted on G2.com.

What problems is Splunk User Behavior Analytics solving and how is that benefiting you?

Instead of taking hours, can carry out tasks using IT and security tools in seconds. Many playbooks are included with Splunk to assist you in addressing the most important use cases. Splunk makes it easier to divide up, assign, and document tasks, which promotes a well-organized and cooperative investigation process. Review collected by and hosted on G2.com.

Sanket S.

Technical Specialist

Mid-Market (51-1000 emp.)

8/8/2024

"Navigating insider threats using Splunk"

5/5

What do you like best about Splunk User Behavior Analytics?

It uses machine learning to identify abnormal user and entity behaviour. It effectively identifies threat by analyzing patterns of behavior that are not matching with normal patterns.

It integrates well with broader splunk ecosystem, allowing users to leverage their existing splunk investment and data. Review collected by and hosted on G2.com.

What do you dislike about Splunk User Behavior Analytics?

Setting up and configuring this solution can be complex and time consuming.

It may generates false positives, especially in the early stages of deployment. Review collected by and hosted on G2.com.

Bhavin P.

Experience Manager

Enterprise (> 1000 emp.)

7/31/2024

"Great product to monitor community spams"

5/5

What do you like best about Splunk User Behavior Analytics?

It helps us montior spam post in our support community. Very realible and easy to use product. It helps our community clean and meets all our customer support needs. Very easy to implement as well Review collected by and hosted on G2.com.

What do you dislike about Splunk User Behavior Analytics?

Analytic could be improved. Overall excellent product for all B2B industires Review collected by and hosted on G2.com.

Marcial L.

IT Manager

Mid-Market (51-1000 emp.)

7/30/2024

"Excelent tool for planning a log term migration of platform to monitor the architecture closely"

5/5

What do you like best about Splunk User Behavior Analytics?

We could customize the models based on our specific processes, policies, and user roles. This flexibility enhances the accuracy and relevance of threat detection Review collected by and hosted on G2.com.

What do you dislike about Splunk User Behavior Analytics?

If your company has limited IT resources then running Splunk UBA can be resource-intensive, requiring substantial computational power and storage. Review collected by and hosted on G2.com.

Verified User in Computer & Network Security

Mid-Market (51-1000 emp.)

8/2/2024

"Splunk User Behavior Analytics next solution to cybersecurity"

4.5/5

What do you like best about Splunk User Behavior Analytics?

Uses unsupervised machine learning to identify abnormal behaviors that may indicate insider threats or external attacks.

Identifies suspicious activities from employees, contractors, or partners that could pose risks to the organization.

Seamlessly integrates with Splunk Enterprise and other security tools, enhancing existing security operations with advanced analytics. Review collected by and hosted on G2.com.

What do you dislike about Splunk User Behavior Analytics?

Organizations should be prepared for the complexities of implementation and the resource requirements associated with deploying such an advanced system Review collected by and hosted on G2.com.

Verified User in Telecommunications

Enterprise (> 1000 emp.)

7/30/2024

"Splunk user behavior"

3/5

What do you like best about Splunk User Behavior Analytics?

It's great because it uses smart technology to spot unusual behavior from users that might signal security issues. It helps find potential threats early and reduce false alarms, making it easier for security teams to focus on real problems. Review collected by and hosted on G2.com.

What do you dislike about Splunk User Behavior Analytics?

it can be complex and require a lot of setup. Review collected by and hosted on G2.com.

Verified User in Automotive

Enterprise (> 1000 emp.)

4/26/2024

"Simple and powerful tool"

4.5/5

What do you like best about Splunk User Behavior Analytics?

its powerful tool in simple words and Splunk is giving the best outputs Review collected by and hosted on G2.com.

What do you dislike about Splunk User Behavior Analytics?

there is nothing to say disadvantages about splunk Review collected by and hosted on G2.com.

Mansi S.

Software Engineer TDP-ll

Small-Business (50 or fewer emp.)

6/13/2023

"Effective User Behavior Analytics with Splunk"

4/5

What do you like best about Splunk User Behavior Analytics?

It has been helpful in identifying suspicious behavior and potential security threats. The interface is very user-friendly, making it easy for non-tech users to navigate the data. Overall it is great for protecting sensitive information. Review collected by and hosted on G2.com.

What do you dislike about Splunk User Behavior Analytics?

Although it has great features but to utilize its full capabilities, one may need additional training. Maintenance cost is also expensive for me. Storage issues also arise due to limited infrastructure. Review collected by and hosted on G2.com.

What problems is Splunk User Behavior Analytics solving and how is that benefiting you?

I use it for mainly threat management as it helps solve the problem of identifying potential insider threats and abnormal user behavior inside my organization. This is good for the early detection of any security risks.

By using Splunk User Behavior Analytics, I can ensure compliance with regulations and safeguard the sensitive data Review collected by and hosted on G2.com.

Verified User in Information Technology and Services

Mid-Market (51-1000 emp.)

4/7/2023

"Splunk User Behavior Analytics"

4/5

What do you like best about Splunk User Behavior Analytics?

Splunk User Behavior Analytics is a state-of-the-art UBA solution that augments Splunk's existing tools like SIEM and provides fantastic results regarding User Behaviour and Analytics.

It integrates natively with Splunk's Data Lake and works naturally in the overall Splunk eco-system. Review collected by and hosted on G2.com.

What do you dislike about Splunk User Behavior Analytics?

Nothing much really, apart from the fact that the detections can be more advanced and the administrative options can be a bit more comprehensive. While Splunk User Behavior Analytics does give the administrator various options to create/tune detections, at times, the administrator ends up feeling a little underwhelmed with the options being presented. Review collected by and hosted on G2.com.

What problems is Splunk User Behavior Analytics solving and how is that benefiting you?

Splunk User Behavior Analytics augments the existing SIEM detection capabilities to provide edge when it comes to delivering Managed Security Services to various customers. It helps find needle in the haystack by working on large sets of data to understand the underlying patterns based on Machine Learning and AI Models, which are practically impossible to be detected using the traditional static logic based detections. Review collected by and hosted on G2.com.

Verified User in Security and Investigations

Enterprise (> 1000 emp.)

3/7/2022

"Very useful for user activity monitoring"

5/5

What do you like best about Splunk User Behavior Analytics?

The detection power and customisation possibilities. Very helpful to identify any suspicious activities in the environment within no time. Review collected by and hosted on G2.com.

What do you dislike about Splunk User Behavior Analytics?

Nothing so far. I'm really happy with its performance Review collected by and hosted on G2.com.

Recommendations to others considering Splunk User Behavior Analytics:

I have tried other user behaviour tools as well but really happy with splunk as it is one solution for multiple problems Review collected by and hosted on G2.com.

What problems is Splunk User Behavior Analytics solving and how is that benefiting you?

Majorly User behaviour thigns are been taken care by splunk user behaviour analytics tool.. Review collected by and hosted on G2.com.