Microsoft Sentinel and Google Chronicle Suite are prominent cybersecurity solutions. Microsoft Sentinel seems to have the upper hand based on user satisfaction with its feature set, while Google Chronicle Suite excels in data handling capabilities.
Features: Microsoft Sentinel users note the automation, integration, and versatility of features. Google Chronicle Suite users value extensive data ingestion, scalability, and data handling capabilities.
Room for Improvement: Microsoft Sentinel could benefit from enhanced reporting, simplified rule creation, and faster query performance. Google Chronicle Suite requires more intuitive investigative processes, improved user interface, and better integration with other tools.
Ease of Deployment and Customer Service: Microsoft Sentinel's deployment is commended for cloud integration despite some customer service concerns. Google Chronicle Suite offers robust customer support but has a more complex initial setup.
Pricing and ROI: Microsoft Sentinel is praised for competitive pricing and perceived ROI. Google Chronicle Suite is viewed as costlier yet considered valuable for its price by users.
Microsoft Azure was not fitting for short-term cost savings but promised a better ROI over three to five years for medium to large companies.
They are slow, and the initial responses often require more information rather than providing helpful solutions.
The technical support I’ve received is rated an eight out of ten.
Their solutions' integration simplifies resolving issues compared to those caused by third-party products.
When my team needs to escalate issues to Microsoft, especially for Microsoft Sentinel, the response is fast through their French entity.
Working with a Sentinel engineer helped us tune settings effectively.
I rate the scalability of Google Chronicle Suite as ten out of ten.
Chronicle Suite is fully scalable with a rating of seven or eight out of ten in scalability.
Office 365 and Exchange are running on it, covering about 35,000 users efficiently.
As our organization uses Microsoft Azure and Defender, everything grows together, and we can integrate various features seamlessly.
I rate the stability of Google Chronicle Suite as a nine, as I have not encountered any stability issues.
So far, we have not experienced any issues, and it has been stable from the beginning.
In the past two years, our team hasn't encountered any issues with the stability of Microsoft Sentinel from an operations perspective.
Sentinel's stability is great.
The graphical user interface could be improved to enhance user experience.
The UI is the primary challenge in need of improvement.
We have some tools, such as our off-site Meraki firewalls, that have not fully integrated with Sentinel.
Currently, we are happy to have a way in the middle with not so much cost, but it would be nice to have the ability to enhance the automation of workflows based on learned incidents.
We are not using it for some features, mainly for cost-related reasons and our company policy.
It's neither expensive nor cheap, and I believe it is a justified price for the features offered.
I experience Chronicle as less expensive and less complicated than Azure.
Microsoft Sentinel offers more capabilities than Bastion, with a more intuitive experience.
We already had the necessary licensing for Sentinel, so we didn't need to spend extra money.
The threat intelligence, especially continuous IOC feeds, is a standout feature.
They also combine their source solution into one product, allowing for out-of-the-box playbook creation and incident response.
It is also cost-effective, charged based on use per second rather than data volume.
Custom workbooks are valuable. It is one of the crucial points in dealing with potential security threats in an automated way without requiring too much manpower.
The most valuable features for us include threat collection, threat detection, response, and the knowledge base for investigation.
Organizations primarily leverage Google Chronicle Suite for centralized log management, threat intelligence, and endpoint security, addressing MDR requirements with continuous monitoring.
Google Chronicle Suite supports storage, security, and alert checking. Utilizing log information to generate alerts and integration with search engines, it monitors network and login issues. It is a choice for consultants on client projects, and partners handle its global resale and implementation.
What are the key features of Google Chronicle Suite?Industries employ Google Chronicle Suite for its robust security measures and log management. It is especially vital for IT, finance, healthcare, and any sector needing stringent security and compliance. Consultants find it essential for tailoring security protocols in client projects, while partners ensure seamless implementation across regions.
Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:
- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds
- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft
- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft
- Respond to incidents rapidly with built-in orchestration and automation of common tasks
To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
