Splunk Light Vs. Alternatives: Cost, Functionality Compared - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Comments
Splunk Light Vs. Alternatives: Cost, Functionality Compared
Newest First  |  Oldest First  |  Threaded View
neilson9
50%
50%
neilson9,
User Rank: Apprentice
6/30/2015 | 1:26:46 PM
Re: Lots of competition emerging in the world of log file analysis
In the last 18months this market has become heavily contended. The number of products has qudrupled in the on-prem and saas space. The older on-prem alternatives like Logscape (plug) continue to evolve and try to differentiate through plugins/apps into different verticals. Splunk is now prolofic and I agree that this is largely a defensive move against ELK, their recent amazon launch and obvious grasp onto BI are all acts of a publicly traded company that need to compete on all fronts. While the market matures I still belelive that Splunk and Logcape provide the most compelling solution for On-Prem Enterprise ready operational analytics platform. Logscape now builds on user-workflows by creating contextual (web-link) links between dashboard that act to guide the analyst in their function. 
JPender
50%
50%
JPender,
User Rank: Apprentice
3/23/2015 | 3:01:20 PM
Moving beyond the SIEM to analyze data

As noted in the article, it's become an imperative for organizations to move beyond their SIEMs to efficiently analyze their data. The shear volume and amount of data can quickly become expensive when appropriately integrating not only internal data from a SIEM, but external data such as OSINT and threat feeds. However, without that integration and correlation, all of that data becomes useless. By using an application like IKANOW's, which is based on open source technologies such as Hadoop, elasticsearch, and MongoDB, and without a cost based on amount of data, we provide information security teams the flexibility and scalability needed to meet their toughest data and analytic challenges such as mapping threats  to known vulnerabilities within an organization's cyber security infrastructure, helping prioritize IT spending and bolstering the organizations overall security posture.  - Jason Pender, SVP Field Operations, IKANOW.

wgroth2
50%
50%
wgroth2,
User Rank: Apprentice
3/18/2015 | 6:54:35 PM
Log Insight: One more competitor to consider.
There is another significant product in the market that was left out of the article. VMware's vRealize Log Insight has most of the UI functionality, and some impressive Machine Learning technology, all backed by a pricing model that does not penalize you for exceeding some per-day threshold.

For more information, see the Log Insight product page at vmware.com.

Full Disclosure: I work for VMware, and do product marketing for Log Insight.
txyates
50%
50%
txyates,
User Rank: Apprentice
3/17/2015 | 8:32:47 PM
Re: Determining data volumes to collect
Have to agree, the ingest & data store functionality is rapidly becoming a commodity. This is likely to be a problem for Splunk, whose cost and complexity are well accepted issues as data volumes grow. N-tier architectures will become the norm as next-gen products are built on a premise of being data store agnostic and focusing on the user-facing analytics.  As for data sizes, in the Fortune 500 10-20 TB/day is going to be mainstream in a few years. Right now, maybe 100GB/day or so defines the mid-market.
michaelsklar
50%
50%
michaelsklar,
User Rank: Apprentice
3/17/2015 | 12:00:35 PM
Determining data volumes to collect
Doug, as you suggest, organizations need low-cost and low-risk options to tap the intelligence contained in their IT log data. One of biggest hurdles for companies is determining how much data they ultimately need to collect each day. Most first-time users start with a specific area of interest, for example, firewall logs. By the end of the first day they might have collected 5 GB of data. By midweek, they could be collecting 20 GB per day from 50% of their domain controllers. By Friday, they could be collecting 75 GB per day of logs from operating systems, databases, and all the major components of their data center. Organizations with deep budgets can choose any tool they like. For others, open source is a great alternative. There's even a hybrid model we've seen where organizations put Graylog on the front end of all log ingestions, and then use our user-defined streams to send subsets of real-time data to Splunk, a SIEM, or other commercial system for analysis. -Michael Sklar, CEO, Graylog
D. Henschen
50%
50%
D. Henschen,
User Rank: Author
3/16/2015 | 7:50:49 PM
Re: Lots of competition emerging in the world of log file analysis
I'd encourage competitors to chime in here with comparisons and contrasts on usability, user counts, capture capacties and costs.
Curt Franklin
50%
50%
Curt Franklin,
User Rank: Strategist
3/16/2015 | 3:16:05 PM
Re: Lots of competition emerging in the world of log file analysis
Splunk Light might well be a huge asset for Splunk, especially given the body of user knowledge that exists for the Splunk platform. I've used Splunk for a number of different projects and it does have ease of use on its side -- it will be very interesting to see whether its competition feels the need to change licensing or pricing strategies to keep up.
D. Henschen
50%
50%
D. Henschen,
User Rank: Author
3/16/2015 | 2:26:27 PM
Lots of competition emerging in the world of log file analysis
A head start doesn't guarantee continued leadership. I see Splunk Light as a defensive move as more and more competitors are emerging trying to get in early and cheap and spread across IT and business use cases over time. It's the old "land and expland" idea, which is what so many aggressive upstarts try to do. Splunk Light looks like an aggressive response, both in terms of low costs and a generous, five-named-user count.


2020 State of DevOps Report
2020 State of DevOps Report
Download this report today to learn more about the key tools and technologies being utilized, and how organizations deal with the cultural and process changes that DevOps brings. The report also examines the barriers organizations face, as well as the rewards from DevOps including faster application delivery, higher quality products, and quicker recovery from errors in production.
Slideshows
Data Science: How the Pandemic Has Affected 10 Popular Jobs
Cynthia Harvey, Freelance Journalist, InformationWeek,  9/9/2020
Commentary
The Growing Security Priority for DevOps and Cloud Migration
Joao-Pierre S. Ruth, Senior Writer,  9/3/2020
Commentary
Dark Side of AI: How to Make Artificial Intelligence Trustworthy
Guest Commentary, Guest Commentary,  9/15/2020
Register for InformationWeek Newsletters
Video
Current Issue
IT Automation Transforms Network Management
In this special report we will examine the layers of automation and orchestration in IT operations, and how they can provide high availability and greater scale for modern applications and business demands.
White Papers
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll