Try our new research platform with insights from 80,000+ expert users

Elastic Security vs Sentinel comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 18, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
5.5
Elastic Security offers cost-effective ROI within two years despite mixed reviews on premium support and varying user experiences.
Sentiment score
7.5
Sentinel enhanced efficiency, resource allocation, productivity, and financial gains with a user-friendly interface and robust functionality.
 

Customer Service

Sentiment score
6.3
Elastic Security's community support is praised, but technical support experiences vary, with mixed reviews on responsiveness and service quality.
Sentiment score
8.0
Micro Focus technical support varies from needing multiple emails to being very good, while Microsoft's support is generally effective.
Support is prompt and helpful.
 

Scalability Issues

Sentiment score
7.3
Elastic Security scales well across environments, needing planning but suiting diverse business sizes and cloud infrastructure scalability.
Sentiment score
7.5
Sentinel's high scalability, cost-effectiveness, and seamless cloud integration make it popular among large enterprises, educational institutions, and SMBs.
 

Stability Issues

Sentiment score
7.6
Elastic Security is reliable and stable, with configuration-dependent performance; careful planning ensures stability despite occasional upgrade issues.
Sentiment score
8.5
Sentinel is highly stable and reliable, supporting 5,000 events per second, but can experience occasional region-specific outages during fixes.
In terms of stability, I would rate Elastic a solid eight out of ten.
 

Room For Improvement

Elastic Security needs better authentication, user interface, AI features, documentation, integrations, marketing, and improved scalability for user satisfaction.
Sentinel requires enhancements in scripting, integration, security, user interface, customization, vendor support, and reducing region-specific outages.
CrowdStrike and Defender have more established threat intelligence integration due to having a larger client base.
 

Setup Cost

Elastic Security is cost-effective with open-source options, offering flexible plans but may incur costs for advanced features.
The pricing is reasonable, especially for Small Medium Enterprises (SMEs), making it a viable option for businesses building their security infrastructure.
 

Valuable Features

Elastic Security offers rapid searching, scalability, visualization, machine learning, and seamless integration, making it user-friendly and cost-effective.
Sentinel excels in log monitoring, threat detection, automation, cloud security, and offers a user-friendly interface with advanced analysis tools.
Elastic Security offers good insight regarding alerts, reports, and cases.
 

Categories and Ranking

Elastic Security
Ranking in Security Information and Event Management (SIEM)
5th
Average Rating
7.6
Reviews Sentiment
6.7
Number of Reviews
62
Ranking in other categories
Log Management (5th), Endpoint Detection and Response (EDR) (16th), Security Orchestration Automation and Response (SOAR) (6th), Extended Detection and Response (XDR) (8th)
Sentinel
Ranking in Security Information and Event Management (SIEM)
16th
Average Rating
7.6
Reviews Sentiment
7.3
Number of Reviews
16
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of December 2024, in the Security Information and Event Management (SIEM) category, the mindshare of Elastic Security is 7.7%, down from 9.8% compared to the previous year. The mindshare of Sentinel is 3.3%, up from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

Gajewski Marek - PeerSpot reviewer
Provides good anomaly detection and connectivity reporting
We previously used Splunk but switched to Elastic Security because Splunk was more expensive. Feature-wise, both tools are pretty much the same. They have almost the same functions. Elastic Security has a much better AI assistant that allows you to ask questions like a normal person. With Elastic Security, I can also predict the price and how much it will cost. Splunks's pricing depends on how much data we use and the different add-ons I have to add. The pricing is much better with Elastic Security.
JaideepSingh - PeerSpot reviewer
An automated solution that helped me detect threats in less than half the time it used to take
Sentinel gave us logs to tell us what's going right and wrong in your environment so we could secure the network. We also got multiple kinds of logs. By running some queries from the logs, we could find and fix the anomalies in the environment. Sentinel's threat visibility was great at telling us if we had something going on in our environment. We had to set up alerts in our environment based on the logs. If we had the right alerts set up, we got notified about threats and where security was lacking, so we could also take care of that. Sentinel's threat intelligence helped us prepare and take proactive steps for potential threats before they hit. Having preparation before a threat has helped our security operations. When I was using it, I used to keep going into my dashboards and looking for any threats on a weekly basis, or maybe two or three times a week. Based on that, we would recommend certain changes to the server and infrastructure teams to block or allow some ports. Sentinel's threat intelligence helped plan security against risks.
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
824,053 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
10%
Government
10%
University
7%
Computer Software Company
16%
Financial Services Firm
11%
Manufacturing Company
7%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...
What do you like most about Elastic Security?
Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...
What is your experience regarding pricing and costs for Elastic Security?
Elastic Security is cost-effective compared to Defender and CrowdStrike. The pricing is reasonable, especially for Small Medium Enterprises (SMEs), making it a viable option for businesses building...
What do you like most about NetIQ Sentinel?
The solution lets us get all the logs properly and regularly monitor customer infrastructure.
What needs improvement with NetIQ Sentinel?
There are still a few vendor-specific devices for which Sentinel needs to work on integration, such as Netskope devices. Also, we often face region-wise outages during operation due to product team...
 

Also Known As

Elastic SIEM, ELK Logstash
NetIQ Sentinel, Novell SIEM
 

Learn More

 

Overview

 

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care
Faysal Bank, GaVI, Handelsbanken, ISC Mªnster, Lambeth Council, Swisscard, The Municipality of Siena, Tukes, University of Dayton, University of the Sunshine Coast
Find out what your peers are saying about Elastic Security vs. Sentinel and other solutions. Updated: December 2024.
824,053 professionals have used our research since 2012.