Try our new research platform with insights from 80,000+ expert users

ClearSkies SaaS NG SIEM vs Microsoft Sentinel comparison

Odyssey Cybersecurity and Microsoft are both solutions in the Security Information and Event Management (SIEM) category. Odyssey Cybersecurity is ranked #50 with an average rating of 7.0, while Microsoft is ranked #3 with an average rating of 8.5. Odyssey Cybersecurity holds a 0.2% mindshare in SIEM, compared to Microsoft’s 6.2% mindshare. Additionally, 100% of Odyssey Cybersecurity users are willing to recommend the solution, compared to 93% of Microsoft users who would recommend it.
ClearSkies SaaS NG SIEM
Read 2 ClearSkies SaaS NG SIEM reviews
  • 319 Views
  • 313 Comparison Views
100% willing to recommend
Microsoft Sentinel
Read 98 Microsoft Sentinel reviews
  • 17,928 Views
  • 10,040 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

ClearSkies SaaS NG SIEM and Microsoft Sentinel are both prominent products in the NG SIEM market. Microsoft Sentinel appears to have the upper hand due to its comprehensive features and superior integration with existing tools.

Features: ClearSkies SaaS NG SIEM is valued for its advanced threat detection, real-time analytics, and competitive pricing. Microsoft Sentinel impresses with its integration capabilities, automation, and extensive security features.

Room for Improvement: ClearSkies SaaS NG SIEM users desire better scalability options, more extensive integration capabilities, and additional user training. Microsoft Sentinel users note a need for enhanced user training, more straightforward configuration processes, and improved scalability features.

Ease of Deployment and Customer Service: ClearSkies SaaS NG SIEM is praised for its straightforward setup and responsive customer service. Microsoft Sentinel offers a slightly more complex deployment but compensates with exceptional support resources.

Pricing and ROI: ClearSkies SaaS NG SIEM offers an affordable initial setup with a strong return on investment for smaller organizations. Microsoft Sentinel demands a higher initial cost but offers extensive functionality and long-term benefits, delivering superior ROI due to its advanced features and reliable performance.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed ClearSkies SaaS NG SIEM vs. Microsoft Sentinel Report (Updated: September 2025).
Buyer's Guide
ClearSkies SaaS NG SIEM vs. Microsoft Sentinel
September 2025
Download the complete report
Helped 869,566 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

ClearSkies SaaS NG SIEM
Ranking in Security Information and Event Management (SIEM)
50th
Average Rating
7.6
Reviews Sentiment
7.3
Number of Reviews
2
Ranking in other categories
No ranking in other categories
Microsoft Sentinel
Ranking in Security Information and Event Management (SIEM)
3rd
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
98
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (1st), Microsoft Security Suite (6th), AI-Powered Cybersecurity Platforms (5th)
 

Mindshare comparison

As of October 2025, in the Security Information and Event Management (SIEM) category, the mindshare of ClearSkies SaaS NG SIEM is 0.2%, up from 0.1% compared to the previous year. The mindshare of Microsoft Sentinel is 6.2%, down from 8.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Market Share Distribution
ProductMarket Share (%)
Microsoft Sentinel6.2%
ClearSkies SaaS NG SIEM0.2%
Other93.6%
Security Information and Event Management (SIEM)
 

Featured Reviews

ZH
Has good integration capability and provides information and events but improvement is needed in information retrieval speed
The best features are the comprehensive event collection and analysis. Once set up properly, we receive all events and information. The team analyzes our data and presents incidents to us. We can communicate with their team to escalate and resolve incidents. It has a feature we use to search for information about our environment and past incidents. This is very valuable. The integration capability is very good - the ClearSkies SaaS NG SIEM team is collaborative. We've integrated most of our systems, including EDR and NDR. They have agents to collect events from servers and assets.
Read full review
Ivan Angelov - PeerSpot reviewer
Threat detection and response capabilities enhance investigation processes
My security team has been using Microsoft Sentinel for around two years. We also have Bastion and SolarWinds as part of our monitoring tools. We use a three-way tool, alongside Microsoft Sentinel, in our environment The most valuable features for us include threat collection, threat detection,…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The integration capability is very good - the ClearSkies SaaS NG SIEM team is collaborative. We've integrated most of our systems, including EDR and NDR. They have agents to collect events from servers and assets."
"The correlation rules and the user platform are most valuable."
"The initial setup is very simple and straightforward."
"I believe one of the main advantages is Microsoft Sentinel's seamless integration with other Microsoft products."
"The scalability is great. You can put unlimited logs in, as long as you can pay for it. There are commitment tiers, up to six terabytes per day, which is nowhere close to what any one of our customers is running."
"The product can integrate with any device."
"Microsoft Sentinel's ability to correlate data from multiple sources has improved our capability significantly."
"The SOAR playbooks are Sentinel's most valuable feature. It gives you a unified toolset for detecting, investigating, and responding to incidents. That's what clearly differentiates Sentinels from its competitors. It's cloud-native, offering end-to-end coverage with more than 120 connectors. All types of data logs can be poured into the system so analysis can happen. That end-to-end visibility gives it the advantage."
"Sentinel uses Azure Logic Apps for automation, which is really powerful. This allows us to easily automate responses to incidents."
"Sentinel is a SIEM and SOAR tool, so its automation is the best feature; we can reduce human interaction, freeing up our human resources."
More Microsoft Sentinel pros
 

Cons

"They can add behavior analytics and AI or machine learning technology. They also improve their correlation engine. In addition to collecting logs from devices, they can collect the traffic and then correlate these logs and the traffic information."
"The main issue for improvement is the platform's slowness in presenting information. Retrieving information can take a little time when clicking on something."
"At the network level, there is a limitation in integrating some of the switches or routers with Microsoft Sentinel. Currently, SPAN traffic monitoring is not available in Microsoft Sentinel. I have heard that it is available in Defender for Identity, which is a different product. It would be good if LAN traffic monitoring or SPAN traffic monitoring is available in Microsoft Sentinel. It would add a lot of value. It is available in some of the competitor products in the market."
"The playbook development environment is not as rich as it should be. There are multiple occasions when we face problems while creating the playbook."
"Azure Sentinel will be directly competing with tools such as Splunk or Qradar. These are very established kinds of a product that have been around for the last seven, eight years or more."
"If I see an alert and I want to drill down and get more details about the alert, it's not just one click. In other SIEM tools, you just have to click the IP address of the entity and they give you the complete picture. In Sentinel, you have to write queries or use saved queries to get details."
"Sometimes, we are observing large ingestion delays. We expect logs within 5 minutes, but it takes about 10 to 15 minutes."
"I think the number one area of improvement for Sentinel would be the cost."
"We do see continuous improvement all the time, however, I haven't got a specific feature that is lacking or not well designed."
"It would be good to have some connectors for third-party SIEM solutions. Many customers are struggling with the integration of Azure Sentinel with their on-premise SIEM. Microsoft is changing the log structure many times a year, which can corrupt a custom integration. It would be good to have some connectors developed by Microsoft or supply vendors, but they are not providing such functionality or tools."
More Microsoft Sentinel cons
 

Pricing and Cost Advice

"They have changed the pricing policy. Its price is competitive. Its price is less than half of the price of QRadar, LogRhythm, and Splunk."
"Regarding pricing, I'd say it's in the middle range. Pricing is very good compared to others."
"I am not involved on the financial side, but from an enterprise-wide use perspective, I think the price is good enough."
"Microsoft Sentinel can be costly, particularly for data management."
"The are two native advantages for customers that use M365 Security and Sentinel. The first advantage is that the log or security-event ingestion into Sentinel is free. Cost-wise, they're saving a lot and that is a major advantage."
"There are no additional costs other than the initial costs of Sentinel."
"Microsoft Sentinel requires an E5 license."
"For us, it is not expensive at this time, but if we start to collect all logs from our on-premise SIEM solutions, it will cost more than QRadar. If we calculate its cost over the next five or ten years, it will cost more than what we paid for QRadar."
"Pricing is pay-as-you-go with Sentinel, which is good because it all depends on the number of users and the number of devices to which you connect."
"I have worked with a lot of SIEMs. We are using Sentinel three to four times more than other SIEMs that we have used. Azure Sentinel's only limitation is its price point. Sentinel costs a lot if your ingestion goes up to a certain point."
More Microsoft Sentinel pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
869,566 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Computer Software Company
15%
Financial Services Firm
11%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business37
Midsize Enterprise20
Large Enterprise41
 

Questions from the Community

What is your experience regarding pricing and costs for ClearSkies SaaS NG SIEM?
Regarding pricing, I'd say it's in the middle range. Pricing is very good compared to others.
See all answers
What needs improvement with ClearSkies SaaS NG SIEM?
The main issue for improvement is the platform's slowness in presenting information. Retrieving information can take a little time when clicking on something.
See all answers
What is your primary use case for ClearSkies SaaS NG SIEM?
I use the solution as a SIEM and managed SOC. It collects events and incidents from all our systems like, EDR, NDR, servers, and switches. The managed SOC team raises incidents for us to review and...
See all answers
Is there a common threat intelligence tool that aggregates multiple threat intelligence sources?
Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and its Threat Hunting functionality with AI available as templates or customized ...
See all answers
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
See all answers
Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
 

Comparisons

Splunk Enterprise Security vs ClearSkies SaaS NG SIEM Logo
Splunk Enterprise Security vs ClearSkies SaaS NG SIEM
Compared 100% of the time
More ClearSkies SaaS NG SIEM Competitors
AWS Security Hub vs Microsoft Sentinel Logo
AWS Security Hub vs Microsoft Sentinel
Compared 18% of the time
Cortex XSIAM vs Microsoft Sentinel Logo
Cortex XSIAM vs Microsoft Sentinel
Compared 7% of the time
IBM Security QRadar vs Microsoft Sentinel Logo
IBM Security QRadar vs Microsoft Sentinel
Compared 7% of the time
Wazuh vs Microsoft Sentinel Logo
Wazuh vs Microsoft Sentinel
Compared 5% of the time
Google Chronicle Suite vs Microsoft Sentinel Logo
Google Chronicle Suite vs Microsoft Sentinel
Compared 4% of the time
More Microsoft Sentinel Competitors
 

Product Reports

Buyer's Guide
Security Information and Event Management (SIEM)
September 2025
ClearSkies SaaS NG SIEM reportDownload ClearSkies SaaS NG SIEM product report
Buyer's Guide
Microsoft Sentinel
September 2025
Microsoft Sentinel reportDownload Microsoft Sentinel product report
 

Also Known As

ClearSkies NG SIEM
Azure Sentinel
 

Overview

ClearSkies™ Software-as-a-Service is a fast, robust, scalable and flexible Next Generation SIEM solution. It provides real-time correlation of log data combined with evidence-based knowledge of emerging threats and vulnerabilities, thus allowing the early detection of and response to targeted attacks and data breaches.

Odyssey Cybersecurity

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Microsoft
 

Sample Customers

Information Not Available
Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.
Buyer's Guide
ClearSkies SaaS NG SIEM vs. Microsoft Sentinel
September 2025
Free Report: ClearSkies SaaS NG SIEM vs. Microsoft Sentinel
Find out what your peers are saying about ClearSkies SaaS NG SIEM vs. Microsoft Sentinel and other solutions. Updated: September 2025.
DOWNLOAD NOW
869,566 professionals have used our research since 2012.
See our ClearSkies SaaS NG SIEM vs. Microsoft Sentinel report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.