Microsoft Corporation

Microsoft Sentinel

Composite Score

8.3 /10

CX Score

8.5 /10

57 Reviews Write a Review

Claim Software

What is Microsoft Sentinel?

Modernize your security operations center (SOC) with Microsoft Sentinel. Uncover sophisticated threats and respond decisively with an intelligent, comprehensive security information and event management (SIEM) solution for proactive threat detection, investigation, and response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing costs as much as 48 percent compared to legacy SIEM solutions.

Company Details

Need Assistance?

We're here to help you with understanding our reports and the data inside to help you make decisions.

Get Assistance

Awards & Recognition

Microsoft Sentinel won the following awards in the Security Information and Event Management category

Filter By

2024 Data Quadrant Gold Medalist

Latest Award, 2024

2024 Emotional Footprint Champion

2024

Product Impact

2024

2023 Data Quadrant Gold Medalist

2023

0 Top Rated Capabilities

2 Top Rated Features

2023

Microsoft Sentinel Ratings

Real user data aggregated to summarize the product performance and customer experience.
Download the entire Product Scorecard to access more information on Microsoft Sentinel.

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

86 Likeliness to Recommend

98 Plan to Renew

77 Satisfaction of Cost Relative to Value

2
Since last award

{y}

{name}

Emotional Footprint Overview

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

+85 Net Emotional Footprint

The emotional sentiment held by end users of the software based on their experience with the vendor. Responses are captured on an eight-point scale.

How much do users love Microsoft Sentinel?

2% Negative

3% Neutral

95% Positive

Pros

Performance Enhancing
Reliable
Enables Productivity
Security Protects

Feature Ratings

Average 77

Security Threat Visibility

Scalability and Network Performance

Analytics and Reporting

Incident Management and Remediation

Data Security and Retention

Threat Intelligence

Big Data Analytics

Orchestration Automation and Response (NG)

Log Collection

Artificial Intelligence / Machine Learning

Correlation

Vendor Capability Ratings

Average 76

Ease of Implementation

Breadth of Features

Ease of IT Administration

Quality of Features

Usability and Intuitiveness

Ease of Data Integration

Business Value Created

Product Strategy and Rate of Improvement

Vendor Support

Ease of Customization

Availability and Quality of Training

Microsoft Sentinel Reviews

Nilushana D.

Role: Information Technology
Industry: Technology
Involvement: IT Development, Integration, and Administration

Validated Review

Verified Reviewer

Submitted Dec 2024

The best SIEM solution ever

Likeliness to Recommend

10 /10

What differentiates Microsoft Sentinel from other similar products?

Ease of use and powerful correlation of data

What is your favorite aspect of this product?

Holistic view of whole security point of organisation and management of the security

What do you dislike most about this product?

Nothing to complain

What recommendations would you give to someone considering this product?

It’s the best

Pros

Helps Innovate
Continually Improving Product
Reliable
Performance Enhancing

Michael S.

Role: Sales Marketing
Industry: Other
Involvement: End User of Application

Validated Review

Verified Reviewer

Submitted Oct 2024

A Comprehensive Microsoft Sentinel

Likeliness to Recommend

9 /10

What differentiates Microsoft Sentinel from other similar products?

Leveraging the power of artificial intelligence and machine learning, it helps the us to detect, investigate, and overcome in real time to enhance the overall security scenario. Its user interface is intuitive and well-organized which enables us to navigate across various applications.

What is your favorite aspect of this product?

The major thing that I have experienced while using it is that although Sentinel is feature-rich software and filled with advanced tools, sentinel is capable of maintaining the balance between advancement and simplicity, thus making it usable for both the professional security team and those new in this field. Its dashboard is highly customizable, enabling our security team to concentrate on alerts and matrices.

What do you dislike most about this product?

The main downside about this product which I come across while dealing with my tasks is that it has limitations in integrating with other Microsoft tools. We have to depend upon its own features. It is also restricted in customizing options, hence finding difficulty in meeting our demands of workflow and making organizational policies.

What recommendations would you give to someone considering this product?

Anyone considering this platform, should analyze their needs and then check out how it will integrate with your device to fulfill your requirements. Also, train your team to get the best user experience and to facilitate maximum from it. By adopting this software and by considering all these recommendations, we can make the best instant decision for future strategies.

Pros

Reliable
Enables Productivity
Effective Service
Inspires Innovation

Paarth S.

Role: Information Technology
Industry: Retail
Involvement: IT Development, Integration, and Administration

Validated Review

Verified Reviewer

Submitted Sep 2024

Robust threat detection with good analytics

Likeliness to Recommend

9 /10

What differentiates Microsoft Sentinel from other similar products?

Offers a native integration with Microsoft and Azure services, great Threat Analytics and ease of Administration, also it uses KQL which is simple yet powerful language to create detection rules

What is your favorite aspect of this product?

The Threat detection and response capability via the playbooks is great , threat intelligence signals help by providing real-time data from global sources,

What do you dislike most about this product?

The Vendor Support is bit disappointing and could improve

What recommendations would you give to someone considering this product?

It's a great SIEM product , If you have Microsoft/Azure native infrastructure then it would be one of the best of option to consider.

Pros

Reliable
Performance Enhancing
Enables Productivity
Security Protects

Cons

Vendor's Interest First
Under Delivered

Microsoft Sentinel

What is Microsoft Sentinel?

Company Details

Need Assistance?

Awards & Recognition

2024 Data Quadrant Gold Medalist

2024 Emotional Footprint Champion

2023 Data Quadrant Gold Medalist

Microsoft Sentinel Ratings

86 Likeliness to Recommend

98 Plan to Renew

77 Satisfaction of Cost Relative to Value

2 Since last award

Emotional Footprint Overview

+85 Net Emotional Footprint

How much do users love Microsoft Sentinel?

Pros

Feature Ratings Average rating of all product features, some of which may not be shown below

Security Threat Visibility Integration with security technologies for monitoring, incident analysis, and data enrichment to enable tracking and analysis of related events.

Scalability and Network Performance The product's ability to scale horizontally and vertically, while employing various methods to reduce any latency impacts from CAN activities.

Analytics and Reporting Includes historical & real-time dashboard visualizations, detailed & summary reporting and easy data extraction for data analysis.

Incident Management and Remediation Detection and incident management with preset and customizable remediation capabilities, integration into workflow systems, and optional automatic remediation.

Data Security and Retention Access controls to system data, protection of SIEM data, system access monitoring, external storage integration, and efficient data compression.

Threat Intelligence Security threat intelligence feed integration with ability to update multiple uses and control updating behaviors.

Big Data Analytics Use of big data analytics through integration into purpose-built big data tools or native capabilities, incorporating advanced security methods.

Orchestration Automation and Response (NG) Reduce alert and analyst fatigue by automating response.

Log Collection Collection from firewall and network logs, IDS logs, Windows server logs, web server logs, and various syslog sources.

Artificial Intelligence / Machine Learning Profiles behaviors of your assets through machine learning (Servers, workstations, etc.)

Correlation Analyze real-time telemetry and detect attacks and other activities of interest

Vendor Capability Ratings Average rating of all vendor capabilities, some of which may not be shown below

Ease of Implementation Successfully implementing new software is necessary to realize its full value and promote end user adoption. This data indicates whether or not the product is easy to implement.

Breadth of Features Users prefer feature rich software that enables them to perform diverse series of tasks. This data expresses user satisfaction with the product's breadth of features.

Ease of IT Administration This data indicates whether IT personnel will be able to resolve issues and perform configurations efficiently and effectively.

Quality of Features Feature quality is just as important as quantity. Use this data to determine if this product will do what you're purchasing it to do, easily, intuitively, reliably, and effectively.

Usability and Intuitiveness End user learning curves cost the organization money. Pay attention to your end users' technical ability to determine how important UX is in your purchase.

Ease of Data Integration Use this data to determine whether the product will cause headaches or make data integration easy.

Business Value Created Software needs to create value for employees, customers, partners, and, ultimately, shareholders. This data expresses user satisfaction - or lack thereof - with the product's business value.

Product Strategy and Rate of Improvement Vendors who don't stay on top of emerging needs and trends won't enable you to meet your business goals. Use this data to separate innovators from imposters.

Vendor Support The importance of vendor support will vary for each organization depending on internal capabilities, but there will always be issues that only the vendor can resolve.

Ease of Customization Don't get bogged down in a difficult customization; use this data to make sure you can easily achieve the functionality you need for your particular situation.

Availability and Quality of Training Effective and readily available training enables users to get the most out of the software you've chosen. Use this section to make sure your vendor's training programs and materials measure up.

Microsoft Sentinel Reviews

Nilushana D.

The best SIEM solution ever

Likeliness to Recommend

Pros

Michael S.

A Comprehensive Microsoft Sentinel

Likeliness to Recommend

Pros

Paarth S.

Robust threat detection with good analytics

Likeliness to Recommend

Pros

Cons

Most Popular Microsoft Sentinel Comparisons

Trellix Enterprise Security Manager

Splunk Enterprise Security

IBM Security QRadar SIEM

Fortinet FortiSIEM

SolarWinds Security Event Manager

LogPoint SIEM

2
Since last award

Feature Ratings

Security Threat Visibility

Scalability and Network Performance

Analytics and Reporting

Incident Management and Remediation

Data Security and Retention

Threat Intelligence

Big Data Analytics

Orchestration Automation and Response (NG)

Log Collection

Artificial Intelligence / Machine Learning

Correlation

Vendor Capability Ratings

Ease of Implementation

Breadth of Features

Ease of IT Administration

Quality of Features

Usability and Intuitiveness

Ease of Data Integration

Business Value Created

Product Strategy and Rate of Improvement

Vendor Support

Ease of Customization

Availability and Quality of Training