Try our new research platform with insights from 80,000+ expert users

IBM Resilient vs Microsoft Sentinel comparison

IBM and Microsoft are both solutions in the Security Orchestration Automation and Response (SOAR) category. IBM is ranked #8 with an average rating of 7.5, while Microsoft is ranked #1 with an average rating of 8.4. IBM holds a 2.7% mindshare in SOAR, compared to Microsoft’s 21.0% mindshare. Additionally, 75% of IBM users are willing to recommend the solution, compared to 93% of Microsoft users who would recommend it.
IBM Resilient
Read 18 IBM Resilient reviews
  • 1,582 Views
  • 984 Comparison Views
75% willing to recommend
Microsoft Sentinel
Read 89 Microsoft Sentinel reviews
  • 13,392 Views
  • 7,903 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 5, 2024

IBM Resilient and Microsoft Sentinel are leaders in incident response and security management. Microsoft Sentinel often has the upper hand due to its native integration within the Microsoft ecosystem, which enhances its performance and holistic threat management.

Features: IBM Resilient offers flexibility and customization with its dynamic playbooks and automation, apt for comprehensive incident management. Microsoft Sentinel excels in AI capabilities, data connectors, and provides a single-pane view that integrates effortlessly with Microsoft products, enhancing real-time threat detection.

Room for Improvement: IBM Resilient needs enhanced integration with third-party tools and a streamlined cost structure for easier initial setup. Microsoft Sentinel's complex pricing model could improve alongside its integration with non-Microsoft products. Both solutions should focus on better support and documentation for easier deployment.

Ease of Deployment and Customer Service: IBM Resilient’s on-premises deployment leads to complex setups, although its technical support is generally responsive. Microsoft Sentinel’s cloud-based architecture allows for quick deployment, but documentation and support responsiveness need improvement.

Pricing and ROI: IBM Resilient’s high pricing model can negatively impact ROI, with costs accumulating based on users and additional platform fees. Microsoft Sentinel’s consumption-based pricing could become expensive with high data ingestion, yet it typically offers better ROI due to absence of on-premises maintenance costs and efficient cloud-based features.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed IBM Resilient vs. Microsoft Sentinel Report (Updated: October 2024).
Buyer's Guide
IBM Resilient vs. Microsoft Sentinel
October 2024
Download the complete report
Helped 824,053 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
8.7
IBM Resilient shows varied ROI, with some users seeing 80% time savings, while others need expertise or experience no return.
Sentiment score
7.2
Users find Microsoft Sentinel offers positive ROI through improved visibility, automation, and efficiency, despite initial costs and quantification challenges.
 

Customer Service

No sentiment score available
Sentiment score
6.9
Microsoft Sentinel support is mixed; premium plans and better Microsoft relationships yield favorable experiences despite some challenges.
No quotes available
For more quotes and insights, download the IBM Resilient report
Their solutions' integration simplifies resolving issues compared to those caused by third-party products.
Working with a Sentinel engineer helped us tune settings effectively.
For more quotes and insights, download the Microsoft Sentinel report
 

Scalability Issues

Sentiment score
7.8
IBM Resilient is scalable and integrates easily with Python scripts, but onboarding challenges and expertise gaps can occur.
Sentiment score
8.1
Microsoft Sentinel's cloud architecture ensures scalable, flexible data handling with minimal management, supporting large user bases and easy integration.
No quotes available
For more quotes and insights, download the IBM Resilient report
Office 365 and Exchange are running on it, covering about 35,000 users efficiently.
As our organization uses Microsoft Azure and Defender, everything grows together, and we can integrate various features seamlessly.
For more quotes and insights, download the Microsoft Sentinel report
 

Stability Issues

Sentiment score
8.2
IBM Resilient is praised for its high stability and effective management, with minor updates occasionally needed for optimal performance.
Sentiment score
7.9
Microsoft Sentinel is highly stable and reliable, with users praising its performance and noting rare, minor configuration issues.
No quotes available
For more quotes and insights, download the IBM Resilient report
So far, we have not experienced any issues, and it has been stable from the beginning.
Sentinel's stability is great.
For more quotes and insights, download the Microsoft Sentinel report
 

Room For Improvement

IBM Resilient needs improved integration, pricing, documentation, support, and advanced automation for better deployment and customization.
Microsoft Sentinel users seek improved third-party integration, user-friendly features, enhanced threat intelligence, and streamlined data management to reduce costs.
No quotes available
For more quotes and insights, download the IBM Resilient report
We have some tools, such as our off-site Meraki firewalls, that have not fully integrated with Sentinel.
Currently, we are happy to have a way in the middle with not so much cost, but it would be nice to have the ability to enhance the automation of workflows based on learned incidents.
For more quotes and insights, download the Microsoft Sentinel report
 

Setup Cost

IBM Resilient is often viewed as costly due to yearly licenses and additional support fees, averaging $120,000 annually.
Microsoft Sentinel offers cost-effective, consumption-based pricing, benefiting from Azure integration with careful data management to control expenses.
No quotes available
For more quotes and insights, download the IBM Resilient report
We already had the necessary licensing for Sentinel, so we didn't need to spend extra money.
For more quotes and insights, download the Microsoft Sentinel report
 

Valuable Features

IBM Resilient offers user-friendly, scalable incident response with seamless QRadar integration, rich features, and dynamic playbooks for effective threat management.
Microsoft Sentinel offers seamless integration, AI-driven threat detection, and automation, providing comprehensive security and ease of setup for organizations.
No quotes available
For more quotes and insights, download the IBM Resilient report
Custom workbooks are valuable. It is one of the crucial points in dealing with potential security threats in an automated way without requiring too much manpower.
For more quotes and insights, download the Microsoft Sentinel report
 

Categories and Ranking

IBM Resilient
Ranking in Security Orchestration Automation and Response (SOAR)
8th
Average Rating
7.4
Reviews Sentiment
6.9
Number of Reviews
18
Ranking in other categories
Security Incident Response (3rd)
Microsoft Sentinel
Ranking in Security Orchestration Automation and Response (SOAR)
1st
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
89
Ranking in other categories
Security Information and Event Management (SIEM) (3rd), Microsoft Security Suite (5th), AI-Powered Cybersecurity Platforms (5th)
 

Mindshare comparison

As of December 2024, in the Security Orchestration Automation and Response (SOAR) category, the mindshare of IBM Resilient is 2.7%, down from 3.0% compared to the previous year. The mindshare of Microsoft Sentinel is 21.0%, up from 20.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Orchestration Automation and Response (SOAR)
 

Featured Reviews

Usman Bhatti - PeerSpot reviewer
Simple deployment, scalable, but lacking third-party solution compatibility
Integrating IBM Resilient with other applications can be very difficult and technically challenging. Often, they use the excuse that you are using the latest version of an application, such as an endpoint security system, and they don't have an API or support for it at the moment. There is no automation in the SOAR solution. It's worth noting that many third-party add-on applications needed to be purchased separately to integrate with IBM Resilient. While there were built-in applications available for incident remediation, the selection was limited. Additionally, integrating third-party applications was often a difficult and time-consuming process due to the technical complexity involved.
Read full review
Nitin Arora - PeerSpot reviewer
Gives us one place to investigate and respond to threats, and automation eliminates manual work
They can work on the EDR side of things. It is already really superb, because of the kinds of features we get with the EDR solution. It's not a standard EDR and they have recently enhanced things. But the problem is with onboarding devices. I have different OS flavors, including a large number of Linux, Windows, macOS, and some on-prem machines as well. Every time we need to onboard these kinds of machines into the EDR, we need to do it with the help of Intune, to sync up the devices, and do the configuration. I'm looking for something on the EDR side that will reduce this kind of work. They can eliminate having to do manual configuration for the machines, and check the different types of configurations for each OS. In some cases, it does not support some OSs. If they could reduce this type of work, that would be really amazing.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
See recommendations
824,053 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
28%
Computer Software Company
12%
Government
10%
Manufacturing Company
9%
Computer Software Company
16%
Financial Services Firm
10%
Government
8%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about IBM Resilient?
It is a stable solution...It is a scalable solution.
See all answers
What is your experience regarding pricing and costs for IBM Resilient?
I am not the one in charge of pricing, so I am not sure about the costs.
See all answers
What needs improvement with IBM Resilient?
Integration with some devices, including Cisco PowerPower and certain antivirus products, has limitations.
See all answers
Is there a common threat intelligence tool that aggregates multiple threat intelligence sources?
Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and its Threat Hunting functionality with AI available as templates or customized ...
See all answers
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
See all answers
Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
 

Comparisons

Palo Alto Networks Cortex XSOAR vs IBM Resilient Logo
Palo Alto Networks Cortex XSOAR vs IBM Resilient
Compared 36% of the time
IBM Security QRadar vs IBM Resilient Logo
IBM Security QRadar vs IBM Resilient
Compared 16% of the time
ServiceNow Security Operations vs IBM Resilient Logo
ServiceNow Security Operations vs IBM Resilient
Compared 16% of the time
Splunk SOAR vs IBM Resilient Logo
Splunk SOAR vs IBM Resilient
Compared 16% of the time
DFLabs IncMan SOAR vs IBM Resilient Logo
DFLabs IncMan SOAR vs IBM Resilient
Compared 4% of the time
More IBM Resilient Competitors
AWS Security Hub vs Microsoft Sentinel Logo
AWS Security Hub vs Microsoft Sentinel
Compared 21% of the time
IBM Security QRadar vs Microsoft Sentinel Logo
IBM Security QRadar vs Microsoft Sentinel
Compared 10% of the time
Cortex XSIAM vs Microsoft Sentinel Logo
Cortex XSIAM vs Microsoft Sentinel
Compared 7% of the time
Wazuh vs Microsoft Sentinel Logo
Wazuh vs Microsoft Sentinel
Compared 6% of the time
Google Chronicle Suite vs Microsoft Sentinel Logo
Google Chronicle Suite vs Microsoft Sentinel
Compared 5% of the time
More Microsoft Sentinel Competitors
 

Product Reports

Buyer's Guide
IBM Resilient
December 2024
IBM Resilient reportDownload IBM Resilient product report
Buyer's Guide
Microsoft Sentinel
November 2024
Microsoft Sentinel reportDownload Microsoft Sentinel product report
 

Also Known As

No data available
Azure Sentinel
 

Learn More

Video not available
IBM
Microsoft
 

Overview

The Resilient Incident Response Platform (IRP) is the leading platform for orchestrating and automating incident response processes.

The Resilient IRP quickly and easily integrates with your organization’s existing security and IT investments. It makes security alerts instantly actionable, provides valuable intelligence and incident context, and enables adaptive response to complex cyber threats.

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

 

Sample Customers

Golden Living, Health Equity, USA Funds
Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.
Buyer's Guide
IBM Resilient vs. Microsoft Sentinel
October 2024
Free Report: IBM Resilient vs. Microsoft Sentinel
Find out what your peers are saying about IBM Resilient vs. Microsoft Sentinel and other solutions. Updated: October 2024.
DOWNLOAD NOW
824,053 professionals have used our research since 2012.
See our IBM Resilient vs. Microsoft Sentinel report.

We monitor all Security Orchestration Automation and Response (SOAR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.