Azure Sentinel Pros and Cons

Azure Sentinel Pros

KP
System Engineer at a computer software company with 5,001-10,000 employees
In Azure Sentinel, we have found, they do have a store in their capability. AI and intelligence features. We found that to be very helpful for us because some other things we do need to integrate again or find another vendor for the store
View full review »
TL
Senior Microsoft 365 Consultant at The Collective Consulting
Sentinel uses Azure Logic Apps for automation, which is really powerful. This allows us to easily automate responses to incidents.
View full review »
Principal Cloud Architect at Viria Security Oy
The UI-based analytics are excellent.
View full review »
Learn what your peers think about Azure Sentinel. Get advice and tips from experienced pros sharing their opinions. Updated: July 2021.
521,637 professionals have used our research since 2012.
RK
SOC Analyst at a wholesaler/distributor with 10,001+ employees
The pricing of the product is excellent.
View full review »
IG
Domain Architect at a government with 5,001-10,000 employees
Free ingestion for Azure logs (with E5 licence)
It is easy to implement (turn on) - does need a skilled analyst to develop queries and playbooks.
It has basic out-of-the-box integrations with multiple log sources.
View full review »
CEO at Danastar Professional Services, LLC
We have no complaints about the features or functionality.
View full review »

Azure Sentinel Cons

KP
System Engineer at a computer software company with 5,001-10,000 employees
They could use some kind of workbook. There is some limitation doing the editing and creating the workbook.
View full review »
TL
Senior Microsoft 365 Consultant at The Collective Consulting
The solution should allow for a streamlined CI/CD procedure.
View full review »
Principal Cloud Architect at Viria Security Oy
The on-prem log sources still require a lot of development.
View full review »
Learn what your peers think about Azure Sentinel. Get advice and tips from experienced pros sharing their opinions. Updated: July 2021.
521,637 professionals have used our research since 2012.
RK
SOC Analyst at a wholesaler/distributor with 10,001+ employees
The interface could be more user-friendly. It''s a small improvement that they could make if they wanted to.
View full review »
IG
Domain Architect at a government with 5,001-10,000 employees
They should integrate it with many other software-as-a-service providers and make connectors available so that you don't have to do any sort of log normalization.
Add more out-of-the-box connectors with other SaaS platforms/applications.
They should just add more and more out-of-the-box connectors. It is quite a new product, and it has a lot of connectors, and even more would be good.
There is a wider thing called Jupyter Notebooks, which is around the automation side of things. It would be good if there are playbooks that you can utilize without having to have the developer experience to do it in-house. Microsoft could provide more playbooks or more Jupyter Notebooks around MITRE ATT&CK Framework.
View full review »
CEO at Danastar Professional Services, LLC
I would like to be able to monitor applications outside of the Azure Cloud.
View full review »
Learn what your peers think about Azure Sentinel. Get advice and tips from experienced pros sharing their opinions. Updated: July 2021.
521,637 professionals have used our research since 2012.