Hello community,
We are working on upgrading our SIEM solution and would like to work with Microsoft Sentinel or Palo Alto XSOAR, to be able to combine all on-prem, and cloud app logs into one interface, and be able to benefit from advanced analytics, story building, and automation.
I am preparing a POC to try both but would like to hear your opinion based on your experience and knowledge on which one you would choose and why, noting that our environment is hybrid, and contains products from multiple vendors.
I've read several reviews, but most of them are outdated, and such solutions are evolving quickly.
Thank you for your help.
Why not try Logpoint instead?;)