TechValidate Research on Splunk

Splunk Case Study

Fortune 500 Telecommunications Services Company Automates Numerous Security Workflows, Sees Quick ROI Using Splunk SOAR


This case study of a Fortune 500 telecommunications services company is based on a March 2022 survey of Splunk customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.


The business challenges that led the profiled company to evaluate and ultimately select Splunk SOAR:

  • Managing a high volume of security alerts
  • Integrating our disparate security technologies
  • Addressing a lack of personnel on our security staff
  • Measuring the effectiveness of our security operations

Use Case

The Fortune 500 Telecommunications Services Company stated that the following were valuable:

  • Splunk Enterprise Platform
  • Splunk Cloud Platform
  • Splunk Enterprise Security (SIEM), and
  • Splunk User Behavior Analytics (UBA)

The profiled company also rated the following features as significantly better than competitive offerings:

  • Alert, Event & Case Management
  • Team Collaboration on Events and Cases
  • Ease of Use
  • Ability to Automate Our Key Use Cases
  • Ability to Integrate with Our Key Technologies
  • Building and Deploying Playbooks
  • Visualization with Dashboards and Reporting


The surveyed company achieved the following results with Splunk:

  • Able to automate multiple security workflows after deploying Splunk SOAR Within the first 3 Months.
  • Agreed with the following:
    • We are more proactive and focused on mission-critical objectives.
    • We save time triaging our most repetitive, basic security tasks by using automated security workflows.
    • We are more efficient, productive, and can do more with the staff we already have.
    • We better measure our security operations with improved reporting.
    • We improved our ability to collaborate and align responses to prioritized risks.
    • We have reduced our mean time to respond to security incidents.
  • Confirmed that since using Splunk SOAR, they are 5 times faster (e.g. a workflow that took us 30 minutes to complete now takes 6 minutes) to security events.
  • In their first 12 months of using Splunk SOAR, they experienced up to $500,000 in savings based on analyst time saved alone.

About This Data

This data was sourced directly from verified users of Splunk by TechValidate.

TechValidate verifies the identity and organizational affiliation of all participants that contribute to published research data. When research participants so desire, we also guarantee their anonymity so that they may share information honestly and freely.

More Research on Splunk