There are still a few vendor-specific devices for which Sentinel needs to work on integration, such as Netskope devices. Also, we often face region-wise outages during operation due to product team fixes, which hampers daily operations and leads to outages and log loss.
While it is great with Microsoft, there is a need for more flexibility in customization, especially when working with different vendors and platforms. Also, it would be helpful if we could easily switch between on-site and cloud hosting, as some customers require the platform to be physically located in their country due to regulations. Right now, this can be a bit challenging because we primarily develop in the cloud. Having more options for a mix of on-premise and cloud configurations would be a big improvement, ensuring we meet regulatory needs and customer demands more effectively.
It is an ancient product. It is not new. It is not aligned with the times. It has to be renewed. The solution is not usable. We have to do too many tasks to create a user-friendly and simple user interface to find information faster in a complex environment. We have a complex environment.
Technology Specialist at a government with 51-200 employees
Real User
Top 10
2023-07-26T11:12:47Z
Jul 26, 2023
I would like to see a better reporting work structure on the dashboard. It would be nice if Microsoft improved the workbook structure and the analytics. I had to import the Power BI and would be happy to use their transcripts.
Documentation for security aspects could be improved. It is difficult to find clear information about encryption or risks that are addressed. The solution does not allow outsourced authorizations which is frustrating for enterprises because users need to be created manually. User interfaces should be aggregated to include the control center rather than it being a separate Java app.
Compliancy, Security & Identity consultant at TMD informatisering BV
Consultant
2021-12-14T14:30:00Z
Dec 14, 2021
This product's connection to certain types of cloud systems could be improved. We can do Microsoft, Google, and Amazon, but there are a lot of other things happening in the cloud that we do not connect well enough to. This product could be improved with better connection to cloud-based solutions. As for additional features, even when I compare it to other systems, like Splunk, I think we've covered most things.
Global Cyber Security Manager at a financial services firm with 5,001-10,000 employees
Real User
2020-04-16T08:44:42Z
Apr 16, 2020
Frankly speaking, we did not find this product to be valuable, at all. You need a lot of Unix scripting knowledge in order to manage the tool, which is one of the main issues that we faced. When we integrated with other log management solutions, the password was not there. We also found it very difficult to create a custom password and in the end, we didn't succeed. Trying to do something new, outside of use cases like server monitoring, was difficult and we could not do much.
The web interface needs to be improved, as it has a java-based way to call its controls. There is no integration in the web-side of the tool. It is an important requirement to be able to develop collectors because the tool does not provide a portfolio of collectors for systems or devices.
Sentinel is a full-featured Security Information and Event Management (SIEM) solution that simplifies the deployment, management and day-to-day use of SIEM, readily adapts to dynamic enterprise environments and delivers the true "actionable intelligence" security professionals need to quickly understand their threat posture and prioritize response.
There are still a few vendor-specific devices for which Sentinel needs to work on integration, such as Netskope devices. Also, we often face region-wise outages during operation due to product team fixes, which hampers daily operations and leads to outages and log loss.
While it is great with Microsoft, there is a need for more flexibility in customization, especially when working with different vendors and platforms. Also, it would be helpful if we could easily switch between on-site and cloud hosting, as some customers require the platform to be physically located in their country due to regulations. Right now, this can be a bit challenging because we primarily develop in the cloud. Having more options for a mix of on-premise and cloud configurations would be a big improvement, ensuring we meet regulatory needs and customer demands more effectively.
It is an ancient product. It is not new. It is not aligned with the times. It has to be renewed. The solution is not usable. We have to do too many tasks to create a user-friendly and simple user interface to find information faster in a complex environment. We have a complex environment.
I would like to see a better reporting work structure on the dashboard. It would be nice if Microsoft improved the workbook structure and the analytics. I had to import the Power BI and would be happy to use their transcripts.
Documentation for security aspects could be improved. It is difficult to find clear information about encryption or risks that are addressed. The solution does not allow outsourced authorizations which is frustrating for enterprises because users need to be created manually. User interfaces should be aggregated to include the control center rather than it being a separate Java app.
This product's connection to certain types of cloud systems could be improved. We can do Microsoft, Google, and Amazon, but there are a lot of other things happening in the cloud that we do not connect well enough to. This product could be improved with better connection to cloud-based solutions. As for additional features, even when I compare it to other systems, like Splunk, I think we've covered most things.
The dashboard and customer view should be improved In the next release, I would like for there to be monitoring inside the sentinel.
Frankly speaking, we did not find this product to be valuable, at all. You need a lot of Unix scripting knowledge in order to manage the tool, which is one of the main issues that we faced. When we integrated with other log management solutions, the password was not there. We also found it very difficult to create a custom password and in the end, we didn't succeed. Trying to do something new, outside of use cases like server monitoring, was difficult and we could not do much.
The web interface needs to be improved, as it has a java-based way to call its controls. There is no integration in the web-side of the tool. It is an important requirement to be able to develop collectors because the tool does not provide a portfolio of collectors for systems or devices.