Overview
Product Information on Microsoft Sentinel
What is Microsoft Sentinel?
Microsoft Sentinel Pricing
Overall experience with Microsoft Sentinel
“Microsoft Sentinel Eases Threat Detection-Response”
“Integration with Microsoft Smooth, Third-Party and Querying Hinder Experience”
About Company
Company Description
Microsoft enables digital transformation for the era of an intelligent cloud and an intelligent edge. Its mission is to empower every person and every organization on the planet to achieve more. Microsoft is dedicated to advancing human and organizational achievement. Microsoft Security helps protect people and data against cyberthreats to give peace of mind.
Company Details
Do You Manage Peer Insights at Microsoft?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
Reviewer Insights for: Microsoft Sentinel
Microsoft Sentinel Likes & Dislikes
Integration with Microsoft products (M365, Azure, Defender, etc.) is very smooth. Its smart threat detection, automatic response capabilities, and ability to reduce false positives are highly appreciated. KQL queries allow users to better visualize the data and investigate potential threats.
It is easu to integrate with Microsoft envioronments, both cloud and on-premise
1) It has access and ability to adopt with Microsoft ecosystem Microsoft Sentinel can easily integrate with Azure, Microsoft 365 and many more Microsoft products and services. This will ensure better data correlation among all the products and services. 2) Seamless automation with playbooks - SOAR capabilities You can easily create automated incident response workflows using Microsoft Azure Logic Apps. 3) It has an advanced threat detection system Sentinel contains Microsoft's threat detection intelligence and a wide set of analytics rules to detect complex threats.
Sentinel can become expensive if not configured properly, especially with high data ingestion volumes. Like other Microsoft products, pricing and licensing complexity are common concerns. Although KQL makes investigation much easier, it is another learning curve to tackle.
What I dont like at all is the thir-party integration, the associated costs when integrating new sources, and keeping in mind that every GB used must be included in the budget. On the other hand, theres the issue of queries, for which you must have knowledge of KQL
1) Need to learn KQL Kusto Query Language is powerful, but beginners need more time to learn it. So, new teams need more technical resource people to start this. 2) Initial configuration is a bit complex In the initial stage, setup new data connectors and defining detection rues may be a bit hard to beginners. 3) Cost Management Sentinel typically pricing based on data ingestion. The bill can be high if it is not well optimized.
Top Microsoft Sentinel Alternatives
Peer Discussions
Microsoft Sentinel Reviews and Ratings
- IT SECURITY & RISK MANAGEMENT ASSOCIATE50M-1B USDServices (non-Government)Review Source
Microsoft Sentinel Eases Threat Detection-Response
Microsoft Sentinel is a robust and powerful SIEM and SOAR solution. Its seamless integration with the Microsoft ecosystem made the implementation process very smooth. Its automation and threat detection features are making the life of a cyber security engineer a lot easier. Highly recommended - Test Automation Engineer50M-1B USDSoftwareReview Source
Sentinel is a Powerful, Scalable SIEM for Cloud-First Organizations
As a user, my overall experience with Microsoft Sentinel has been very positive. It fits very well with our cloud-first strategy. As someone who is involved in the product selection process as well as user it is working smoothly from the beginning and appreciate the balance between deep functionality and usability as a powerful SEIM solution. - IT Security & Risk Management Associate<50M USDRetailReview Source
Cloud-Native Flexibility Meets SAP Log Integration Hurdles With Microsoft Sentinel
Using Microsoft Sentinel as a SAP security software can be proven really useful as it provides centralized thread monitoring via its log management and real-time threat detection using AI analytics. - IT MANAGER<50M USDServices (non-Government)Review Source
Microsoft Sentinel Offers Seamless Infrastructure Management With Custom Dashboards
Microsoft Sentinel has significantly improved our organization's security structure. It integrates well with Microsoft 365 & all our AVD users. - Officer<50M USDBankingReview Source
Microsoft Sentinel Offers Flexibility but Demands Technical Expertise for Effective Use
Our overall experience with Microsoft Sentinel has been generally positive, but there is a learning curve. Its a powerful tool with great potential, though it requires a certain level of expertise to take full advantage of its capabilities.