Microsoft Sentinel vs Seceon Open Threat Management Platform comparison

Microsoft and Seceon are both solutions in the Security Information and Event Management (SIEM) category. Microsoft is ranked #3 with an average rating of 8.4, while Seceon is ranked #22 with an average rating of 8.2. Microsoft holds a 8.7% mindshare in SIEM, compared to Seceon’s 0.7% mindshare. Additionally, 93% of Microsoft users are willing to recommend the solution, compared to 100% of Seceon users who would recommend it.

Microsoft Sentinel

Read 89 Microsoft Sentinel reviews

16,740 Views
9,816 Comparison Views

93% willing to recommend

Seceon Open Threat Manageme...

Read 12 Seceon Open Threat Management Platform reviews

1,378 Views
587 Comparison Views

100% willing to recommend

Microsoft Sentinel

Seceon Open Threat Manageme...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

Seceon Open Threat Management Platform and Microsoft Sentinel are robust security platforms competing in the cybersecurity category. Microsoft Sentinel appears to have the upper hand due to its more advanced features and integration capabilities.

Features: Seceon Open Threat Management Platform offers automated threat detection and response, advanced analytics, and comprehensive threat intelligence. Microsoft Sentinel provides integration with other Microsoft products, scalability, and AI-driven insights.

Room for Improvement: Seceon Open Threat Management Platform needs enhancements in reporting capabilities, a more extensive integration library, and UI improvements. Microsoft Sentinel requires better cost management, simplification of complex features, and streamlined onboarding processes.

Ease of Deployment and Customer Service: Seceon Open Threat Management Platform is recognized for its straightforward deployment and responsive customer service. Microsoft Sentinel offers extensive deployment options but is more complex to set up, though it provides detailed documentation and support resources.

Pricing and ROI: Seceon Open Threat Management Platform is favored for its cost-effective setup and strong ROI due to lower upfront costs. Microsoft Sentinel, despite its higher cost, is viewed as providing significant long-term value through its advanced features and capabilities, justifying the investment.

To learn more, read our detailed Microsoft Sentinel vs. Seceon Open Threat Management Platform Report (Updated: December 2024).

Buyer's Guide

Microsoft Sentinel vs. Seceon Open Threat Management Platform

December 2024

Download the complete report

Helped 824,053 peers since 2012

Categories and Ranking

Microsoft Sentinel

Ranking in Security Information and Event Management (SIEM)

3rd

Average Rating

8.2

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Security Orchestration Automation and Response (SOAR) (1st), Microsoft Security Suite (5th), AI-Powered Cybersecurity Platforms (5th)

Seceon Open Threat Manageme...

Ranking in Security Information and Event Management (SIEM)

22nd

Average Rating

8.2

Reviews Sentiment

7.8

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of December 2024, in the Security Information and Event Management (SIEM) category, the mindshare of Microsoft Sentinel is 8.7%, down from 10.4% compared to the previous year. The mindshare of Seceon Open Threat Management Platform is 0.7%, up from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Nitin Arora

Security Delivery Senior Analyst at Accenture

Gives us one place to investigate and respond to threats, and automation eliminates manual work

They can work on the EDR side of things. It is already really superb, because of the kinds of features we get with the EDR solution. It's not a standard EDR and they have recently enhanced things. But the problem is with onboarding devices. I have different OS flavors, including a large number of Linux, Windows, macOS, and some on-prem machines as well. Every time we need to onboard these kinds of machines into the EDR, we need to do it with the help of Intune, to sync up the devices, and do the configuration. I'm looking for something on the EDR side that will reduce this kind of work. They can eliminate having to do manual configuration for the machines, and check the different types of configurations for each OS. In some cases, it does not support some OSs. If they could reduce this type of work, that would be really amazing.

Read full review

Dipesh Jain

Manager IT at Power Finance Corporation Ltd

Has the ability to categorize alerts and reporting dashboards are useful

The algorithm used in Seceon OTM is clear and logical, categorizing events as needed. This helps us identify and respond to threats effectively. The ability to categorize alerts and the reporting dashboards are valuable features. AI-driven analysis aids in identifying critical alerts, and real-time threat detection improves our response time.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Microsoft Sentinel enables you to ingest data from the entire ecosystem and that connection of data helps you to monitor critical resources and to know what's happening in the environment."

"The most valuable feature is the onboarding of the workloads. You can see all that has been onboarded in your account on the dashboards."

"We can use Sentinel's playbook to block threats. It covers all of the environment, giving us great visibility."

"The connectivity and analytics are great."

"The most valuable feature is the UEBA. It's very easy for a security operations analyst. It has a one-touch analysis where you can search for a particular entity, and you can get a complete overview of that entity or user."

"I've worked on most of the top SIEM solutions, and Sentinel has an edge in most areas. For example, it has built-in SOAR capabilities, allowing you to run playbooks automatically. Other vendors typically offer SOAR as a separate licensed solution or module, but you get it free with Sentinel. In-depth incident integration is available out of the box."

"Free ingestion for Azure logs (with E5 licence)"

"The part that was very unexpected was Sentinel's ability to integrate with Azure Lighthouse, which, as a managed services solution provider, gives us the ability to also manage our customers' Sentinel environments or Sentinel workspaces. It is a big plus for us. With its integration with Lighthouse, we get the ability to monitor multiple workspaces from one portal. A lot of the Microsoft Sentinel workbooks already integrate with that capability, and we save countless amounts of money by simply being able to almost immediately realize multitenant capabilities. That alone is a big plus for us."

More Microsoft Sentinel pros

"It is effective because it has threat intelligence from across the world and constantly checks and updates for new threats."

"Seceon Open Threat Management Platform notifies only genuine alerts. It offers plenty of options that are suitable for MSPs."

"The solution is stable."

"The solution is very cost-effective compared to Splunk and LogRhythm."

"The main thing is the value proposition. It is one of the most sophisticated yet affordable solutions that I've come across. It is also one of the easiest-to-manage yet comprehensive solutions for a SOC analyst. Its customizations are really good, and it has a lot of integrations. It is multi-tenant and very fast to onboard. Its stability is 100%. We've never had an outage with it. It doesn't require extensive hardware resources. Its level of support is also very good. They have a very responsive technical team."

"It offers a holistic approach with multiple solutions blended into one platform."

"We only recently started using Seceon, so we aren't taking advantage of all its features yet. We have enabled some proactive alerts about utilization and bottlenecks from high traffic."

"The most valuable features are behaviour analytics, threat intelligence, endpoint detection, and response features."

More Seceon Open Threat Management Platform pros

Cons

"The product can be improved by reducing the cost to use AI machine learning."

"There is room for improvement in terms of integrations. We have some tools, such as our off-site Meraki firewalls, that have not fully integrated with Sentinel. We lack integration for Syslogs into Sentinel."

"We'd like to see more connectors."

"If Azure Sentinel had the ability to ingest Azure services from different tenants into another tenant that was hosting Azure Sentinel, and not lose any metadata, that would be a huge benefit to a lot of companies."

"The solution could be more user-friendly; some query languages are required to operate it."

"Microsoft Sentinel's search efficiency can be improved, especially for queries spanning large datasets or long timeframes like 90 days compared to competitors like Splunk."

"Microsoft Sentinel should provide an alternative query language to KQL for users who lack KQL expertise."

"Sentinel provides decent visibility, but it's sometimes a little cumbersome to get to the information I want because there is so much information. I would also like to see more seamless integration between Sentinel and third-party security products."

More Microsoft Sentinel cons

"The SOP they provided wasn't great. They offered training over Sherp Virtualization, and the Seceon leadership visited our location to explain everything in detail, but the documentation and training could be better. It isn't as effective as it could be. There's some room for improvement there."

"It is a standalone solution now. They need to make it into a cloud-based subscription model. It needs more compatibility for co-managed solutions. It can also have more threats and deeper integration with Microsoft."

"For future releases, integrating incident response tools and improving communication on incident reporting could be beneficial."

"The product should improve the triggering rate."

"The product could be improved by including sandboxing capabilities in the next release."

"We are at the client’s end, offering services. They don’t know about security rules and benchmarks. We are working on the discovery and remediation but we don’t really have the intelligence that was available while working with other tools. Human working is also very essential for the solution. The automatic session is impossible to play since it needs to touch Redfin for further analysis. No one has breached our clients."

"The management console could use some enhancements."

"The dashboard has always been an issue."

More Seceon Open Threat Management Platform cons

Pricing and Cost Advice

"The combination of the ease of accessibility and the free cost of the service is great. But we buy storage based on our events per second and on how many sources are integrated into the solution."

"Microsoft Sentinel is pretty expensive, and they recently announced that they will increase the price of all Microsoft services running in Azure by 11 percent. Luckily, I'm not responsible for the financial side. For one of my clients, the estimated cost is 880,000 euros for one year. There are additional costs for the service agreement."

"From a cost perspective, Microsoft Sentinel is quite costly."

"Good monthly operational cost model for the detection and response outcomes delivered, M365 logs don't count toward the limits which is a good benefit."

"We must have saved some money with this product. It is a cloud-native product, and the ingestion is per GB. Every GB costs a certain amount of money. That is how the license of Microsoft Sentinel works."

"Cost-wise, Sentinel is based on the volume of information being ingested, so it can be quite pricey. The ability to use strategies to control what data is being ingested is important."

"The pricing is reasonable, and we think Sentinel is worth what we pay for it."

"The pricing is based on how much you ingest, so it's pretty straightforward. There are no tiers, and you pay for what you use unlike with other types of SIEM solutions that are usually based on tiers."

More Microsoft Sentinel pricing and cost advice

"The pricing is very competitive. It's not expensive."

"We used the solution's trial version for two months and later purchased it."

"The solution is cheap and very competitive. It offers good tuning in terms of the pricing. Other solutions like Palo Alto and IBM are more expensive."

"The price is quite reasonable."

"I find Seceon OTM's pricing to be reasonable, not too high or low, just okay for the market standards. I can't disclose specific figures, we pay on a quarterly basis under a service model. I would rate it eight out of ten. As a customer, I always hope for better pricing options."

"It has a per-asset model instead of an ingestion-based model, which gives predictable pricing. In terms of price, it is in the middle to lower range of SIEMs that it competes against. It is the most affordable solution that we have implemented so far. It was much more affordable than anything else I've implemented."

"Seceon Open Threat Management Platform is cost-effective because it's a comprehensive platform that offers high availability."

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

824,053 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Financial Services Firm

10%

Government

Manufacturing Company

Computer Software Company

28%

Financial Services Firm

14%

Educational Organization

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Is there a common threat intelligence tool that aggregates multiple threat intelligence sources?

Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and its Threat Hunting functionality with AI available as templates or customized ...

See all answers

What is a better choice, Splunk or Azure Sentinel?

It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...

See all answers

Which is better - Azure Sentinel or AWS Security Hub?

We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...

See all answers

What do you like most about Seceon Open Threat Management Platform?

The algorithm used in Seceon OTM is clear and logical, categorizing events as needed. This helps us identify and respond to threats effectively.

See all answers

What is your experience regarding pricing and costs for Seceon Open Threat Management Platform?

The implementation cost is extra, but the license cost is reasonable with no hidden costs.

See all answers

What needs improvement with Seceon Open Threat Management Platform?

Certain features, such as DLP, need to be improved as they are superficial and not in-depth. Additionally, the non-core features need to increase in depth.

See all answers

Comparisons

AWS Security Hub vs Microsoft Sentinel

Compared 21% of the time

IBM Security QRadar vs Microsoft Sentinel

Compared 10% of the time

Cortex XSIAM vs Microsoft Sentinel

Compared 7% of the time

Wazuh vs Microsoft Sentinel

Compared 6% of the time

Google Chronicle Suite vs Microsoft Sentinel

Compared 5% of the time

More Microsoft Sentinel Competitors

IBM Security QRadar vs Seceon Open Threat Management Platform

Compared 22% of the time

Fortinet FortiSIEM vs Seceon Open Threat Management Platform

Compared 13% of the time

ManageEngine Log360 vs Seceon Open Threat Management Platform

Compared 13% of the time

Wazuh vs Seceon Open Threat Management Platform

Compared 13% of the time

Elastic Security vs Seceon Open Threat Management Platform

Compared 8% of the time

More Seceon Open Threat Management Platform Competitors

Product Reports

Buyer's Guide

Microsoft Sentinel

November 2024

Download Microsoft Sentinel product report

Buyer's Guide

Seceon Open Threat Management Platform

November 2024

Seceon Open Threat Management Platform report

Download Seceon Open Threat Management Platform product report

Also Known As

Azure Sentinel

Seceon OTM, Seceon aiSIEM, aiSIEM, Seceon Open Threat Management

Learn More

Microsoft

Seceon

Overview

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Seceon Open Threat Management Platform is a comprehensive cybersecurity solution that offers real-time threat detection, analysis, and response capabilities. It leverages advanced AI and machine learning algorithms to provide proactive threat hunting and automated incident response.

With its intuitive dashboard, users can gain complete visibility into their network, applications, and endpoints, enabling them to identify and mitigate potential risks effectively. The platform integrates seamlessly with existing security infrastructure, consolidating data from various sources for centralized monitoring and analysis.

Its threat intelligence feeds and behavioral analytics enable the identification of both known and unknown threats, ensuring comprehensive protection against advanced cyber attacks. Seceon Open Threat Management Platform empowers security teams with actionable insights, enabling them to prioritize and respond to threats swiftly. With its automated remediation capabilities, it minimizes the impact of attacks and reduces response time. The platform also offers customizable reporting and compliance management features, facilitating regulatory compliance and providing stakeholders with comprehensive security status updates.

Seceon Open Threat Management Platform is a robust and scalable solution that caters to the evolving cybersecurity needs of organizations across industries.

Sample Customers

Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.

Caduceus, SUNY

Buyer's Guide

Microsoft Sentinel vs. Seceon Open Threat Management Platform

December 2024

Free Report: Microsoft Sentinel vs. Seceon Open Threat Management Platform

Find out what your peers are saying about Microsoft Sentinel vs. Seceon Open Threat Management Platform and other solutions. Updated: December 2024.

DOWNLOAD NOW

824,053 professionals have used our research since 2012.

See our Microsoft Sentinel vs. Seceon Open Threat Management Platform report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.