TrustRadius

Proofpoint Threat Response Auto-Pull vs. Splunk SOAR

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Proofpoint Threat Response Auto-Pull
Score 8.0 out of 10
N/A
Proofpoint Threat Response Auto-Pull (TRAP) enables messaging and security administrators to automatically retract threats delivered to employee inboxes and emails that turn malicious after delivery to quarantine. It is also a powerful solution to retract messages sent in error as well as inappropriate, malicious, or emails containing compliance violations and also follows forwarded mail and distribution lists and creates an audit-able activity trail. With Proofpoint Threat Response…N/A
Splunk SOAR
Score 9.0 out of 10
N/A
Splunk now offers a security orchestration, automation, and response (SOAR) platform via its acquisition of Phantom. Splunk Security Orchestration and Automation (Splunk SOAR) provides playbook automation and is available as a standalone solution.N/A
Pricing
Proofpoint Threat Response Auto-PullSplunk SOAR
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Proofpoint Threat Response Auto-PullSplunk SOAR
Free Trial
YesNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Proofpoint Threat Response Auto-PullSplunk SOAR
Features
Proofpoint Threat Response Auto-PullSplunk SOAR
Incident Response Platforms
Comparison of Incident Response Platforms features of Product A and Product B
Proofpoint Threat Response Auto-Pull
8.4
Ratings
4% below category average
Splunk SOAR
-
Ratings
Integration with Other Security Systems9.00 Ratings00 Ratings
Attack Chain Visualization8.00 Ratings00 Ratings
Centralized Dashboard6.00 Ratings00 Ratings
Machine Learning to Prevent Incidents9.00 Ratings00 Ratings
Live Response for Rapid Remediation10.00 Ratings00 Ratings
User Ratings
Proofpoint Threat Response Auto-PullSplunk SOAR
Likelihood to Recommend
9.0
(0 ratings)
8.1
(0 ratings)
Likelihood to Renew
-
(0 ratings)
7.5
(0 ratings)
Usability
9.0
(0 ratings)
8.2
(0 ratings)
Performance
-
(0 ratings)
8.2
(0 ratings)
Support Rating
9.0
(0 ratings)
8.2
(0 ratings)
Online Training
-
(0 ratings)
8.2
(0 ratings)
Implementation Rating
-
(0 ratings)
8.2
(0 ratings)
Configurability
-
(0 ratings)
8.2
(0 ratings)
Product Scalability
-
(0 ratings)
8.2
(0 ratings)
User Testimonials
Proofpoint Threat Response Auto-PullSplunk SOAR
Likelihood to Recommend
It is very well suited for any organization, though the pricing is more for larger organizations. Having auto pull available means you have fewer worries that phishing emails end up in users' mailboxes.
Verified User
Anonymous
Read full review
Our company has very complex and dynamic security operations because of the large number of security tools and systems that we need to manage and coordinate. Moreover, it helps us to meet many regulatory and compliance requirements because it helps us to automate and document our security operations. We also use it to streamline our security operations and improve our response to potential threats.
PK
Priya Kumar
Security Engineer
Read full review
Pros
  • Finds malicious messages in users mailboxes that were not previously detected.
  • Gives good data about messages post-detection.
  • Integrates with AD.
Verified User
Anonymous
Read full review
  • Its security orchestration and integration capability that supports multiple tools.
  • Easy coding that automates our security actions.
  • Enables us to easily collaborate and respond to security issues faster.
  • Splunk SOAR is a flexible product that is easy to deploy.
  • Efficient tracking and monitoring capability.
  • Excellent real-time reporting functionality.
Angelica Cavalli | TrustRadius Reviewer
Angelica Cavalli
Senior Software Engineer
Read full review
Cons
  • Would like an Azure virtual machine version of it. Currently, it's only supported on VMware and AWS.
  • Configuring authentication certificates on it is not easy.
  • It does not work with RSASSA-PSS signed certificates.
Chris Bash | TrustRadius Reviewer
Chris Bash
IS Systems Analyst
Read full review
  • A lack of instruction It can be difficult to contact the support staff. Limited experience from current users.
  • It takes some effort to set up and learn new technology at first. More assistance is required from the support staff. The product's price needs to go down.
  • Cost of the larger version.
Pavan sreevatsav Akula | TrustRadius Reviewer
Pavan sreevatsav Akula
Cybersecurity Analyst
Read full review
Likelihood to Renew
No answers on this topic
As we already have a lot of clients being catered with Splunk SOAR and because Splunk SOAR is robust and efficient, we are already using it, and we have understood the product to a certain extent, I feel we are personally more enticed to use and scale it to a lot of business.
Gaurav S | TrustRadius Reviewer
Gaurav S
Senior Security Specialist
Read full review
Usability
It's easy to use and requires very little administrator hands on.
Chris Bash | TrustRadius Reviewer
Chris Bash
IS Systems Analyst
Read full review
Building playbooks through the visual editor is fine for basic tasks, but once you start chaining complex logic or integrating 3rd party APIs you hit a wall that requires deep scripting knowledge.
JP
Julie Pierce
SOC Engineer
Read full review
Performance
No answers on this topic
It has APIs that are useful for integration with third party solutions as well as for absorbing large volumes of data from our servers, networks and apps. Splunk SOAR offers a variety of playbooks that we use in automating workflows for migrating data and for analyzing the data to ensure its security.
Verified User
Anonymous
Read full review
Support Rating
They are quick to respond and have talented support personnel.
Chris Bash | TrustRadius Reviewer
Chris Bash
IS Systems Analyst
Read full review
Splunk Support is always great! In addition the Community is very efficient and active.
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
In-Person Training
No answers on this topic
I never followed an in-person training, I gave my evaluation based on the online training
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Online Training
No answers on this topic
I followed training for Phantom admins and it opened a world for me
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Implementation Rating
No answers on this topic
I already said that the main key insight is the knowledge of Phantom, so a detailed training for all the people involeved.
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Alternatives Considered
TRAP had fewer false positives and caught more malicious emails. With the host of companion products, it was more complete package. It gives us the ability to pull emails using an admin-submitted CVS file of emails to pull. EOP does not have this capability.
Chris Bash | TrustRadius Reviewer
Chris Bash
IS Systems Analyst
Read full review
If you use Splunk SIEM, you might wanna use Splunk soar, too. one vendor for SIEM and SOAR, and you do not need to think about integration, etc. Easy to use if we compare to other SOARs, chat and war rooms are great, and almost every action that we need is already created in Splunk SOAR.
Muhammed Ali CETİN | TrustRadius Reviewer
Muhammed Ali CETİN
senior Security Engineer
Read full review
Scalability
No answers on this topic
me and the customers I encountered found it flexible and scalable
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Return on Investment
  • Helped mitigate the email portion of our penetration test entirely.
  • Made us aware of the amount of suspicious emails being delivered.
  • Prevented malware spreading through mail.
Fraser Clark | TrustRadius Reviewer
Fraser Clark
Network Engineer
Read full review
  • The playbooks are valuable. They are the core component. Being able to implement and build a code process to work through and scale out what we want to do is valuable
  • Before its use, analyzing each email would take at least 15 to 20 minutes, with some complex cases taking up to 30 minutes...With the automation provided by Splunk Phantom, we could significantly reduce the amount of time and human effort required to complete this task
Verified User
Anonymous
Read full review
ScreenShots