Likelihood to Recommend Well, it's definitely suited to log in monitor most of the normal security infrastructure and collect security telemetry. It also extends well to Microsoft's entire suite with regards to data collection for things like Office 365, Power BI, power apps, and the like. It is also pretty good at collecting information from homegrown applications, especially if you're building in Azure.
Read full review [Tenable.sc (formerly SecurityCenter)] does very well for internal scanning for vulnerabilities, however it needs to be combined with
Tenable.io in order to do cloud scanning.
Read full review Pros Sentinel is by far the most efficient tool in supporting the highest number of solutions and products when it comes to data connection (or ingestion) and that too in the least complex manner possible. Most of the data connectors in Sentinel are very easy to configure and deploy. Incident Management is undoubtedly one of the main USPs of Sentinel. With an easy-to-use UI, variety of utilities (adding tasks, manual triggering of playbooks, activity logs etc.) and provision of having an investigation map from the incident details page, Sentinel clearly stands out in this area. I personally love the feature of integrating 'Threat Intelligence' to Sentinel from a free and one of the most reliable sources, Microsoft itself. This not only saves time for an analyst in checking the reputation of an entity but also allows to take actions on the suspicious entities at earliest. Read full review Vulnerability management from one place Maximum endpoint visibility Easy to set up and plan the structure Support desk quickly responses Well-prepared documentation Broad scanning type Supports various compliance standards User groups allows coordination between teams Read full review Cons It takes some time to learn how to use and install it properly, and it does not connect effectively with external PaaS systems such as Salesforce CRM, Salesforce Commerce Cloud, and so on. Microsoft can simplify the display of the logs to make them easier to study, and the user interface occasionally delays, which can also be enhanced. Read full review Centralized vulnerability management with sensors. Network health assessment and Incident response. For alerting or notification, it should also support the SMS gateway. Read full review Usability The Microsoft Azure Sentinel solution is very good and even better if you use Azure. It's easy to implement and learn how to use the tool with an intuitive and simple interface. New updates are happening to always bring new news and improve the experience and usability. The solution brings reliability as it is from a very reliable manufacturer.
Read full review Support Rating Azure Sentinel is very easy to use and configure. If you are stuck somewhere, Microsoft support is excellent in assisting and solving your issue.
Read full review On all of the occasions that I have had to reach out to Tenable for assistance, they have been extremely helpful and knowledgeable. Solutions and support are provided quickly, and they work on the issue until it is resolved.
Read full review Alternatives Considered The key advantage of using Sentinel lies in Microsoft already being a renowned name in cloud services. Hence, the Collection of data at the cloud scale across all users, devices, applications, and infrastructure, both on-premises and especially in the MS Cloud, is super easy. Additionally, leveraging Threat Intel from Microsoft itself gives a sense of security, given their years of experience in the collection of intel. The AI and Machine learning features provided by MS is one of the finest.
Read full review We decided to go with Tenable due to its robust reporting capabilities and competitive pricing vs its competitors. While all tools are very similar in regards to scanning capabilities we prefer Tenable SC's user interface. We also like the option to have both on-prem and cloud with theirs. Tenable io product as well.
Read full review Professional Services Did not use professional services
Read full review Return on Investment Less overhead on integration of cloud-native logging The KQL language is very helpful since it can be used for security and operational monitoring but as well for workbooks and dashboarding A large community developing solutions is very helpful for a quick adoption Read full review Create internal/operational efficiencies Improve compliance & risk management Cost management Solid vulnerability scanner Ease, of use, and capabilities when it comes to analyzing vulnerabilities is what makes this product stand out Read full review ScreenShots Microsoft Sentinel Screenshots