

Sentinel and Gigamon Deep Observability Pipeline serve different aspects of network monitoring and security. Sentinel offers comprehensive endpoint protection, whereas Gigamon focuses on deep observability and actionable intelligence. Gigamon's advanced features make it a preferred choice for those needing in-depth network analysis.
Features: Sentinel offers robust threat detection, automated response capabilities, and user-friendly interfaces. Gigamon Deep Observability Pipeline provides detailed traffic analysis, data enrichment features, and specialized insights for complex network environments.
Room for Improvement: Sentinel could enhance customization options, integrations with other tools, and scalability. Gigamon needs improvements in scalability, ease of integration for smaller networks, and refinement in scaling for larger deployments.
Ease of Deployment and Customer Service: Sentinel is simpler to deploy and integrates seamlessly with existing systems, receiving positive feedback for customer support. Gigamon’s deployment is more complex, requiring significant configuration, yet its customer service is highly rated.
Pricing and ROI: Sentinel offers competitive pricing and quick ROI due to its straightforward setup and broad protection. Gigamon’s pricing is higher, reflecting its advanced features, and users report slower ROI due to complex deployment.
The technical support by Gigamon Deep Observability Pipeline is good because it has a local architect in my area.
The customer support for Sentinel is very good; any tickets logged will be answered immediately within the given timeframe.
Price is always a consideration, so the price would be nice if it were lower.
They nearly always bill it in dollars, so if it can be billed in our currency, that would be helpful and fixed in our currency.
My experience with pricing, setup cost, and licensing shows that while it is a little on the higher side, since it is part of a package for all Microsoft products, I feel it is a better choice comparatively than other SIEMs in the market.
The Pipeline's Comprehensive Insights into data flows have helped improve operational efficiency and security.
In terms of metrics showing how Sentinel has helped, as part of log filtering, we have reduced around thirty to thirty-five percent of false-positive incident creation.
Sentinel's best features include that it's a very easy product to use.
| Product | Mindshare (%) |
|---|---|
| Sentinel | 2.7% |
| Gigamon Deep Observability Pipeline | 0.5% |
| Other | 96.8% |

| Company Size | Count |
|---|---|
| Small Business | 3 |
| Midsize Enterprise | 1 |
| Large Enterprise | 5 |
| Company Size | Count |
|---|---|
| Small Business | 9 |
| Midsize Enterprise | 3 |
| Large Enterprise | 8 |
Gigamon Deep Observability Pipeline boosts network visibility and performance through features like NetFlow and deduplication, facilitating data flow insights and improved security. It supports traffic monitoring and management across various infrastructures.
Gigamon Deep Observability Pipeline enhances network management by offering features such as NetFlow, deduplication, header stripping, and packet filtering. These capabilities are instrumental in optimizing performance, offering users stability and improved encryption processes. Despite its robust hardware capabilities, it requires enhancements in security, filtering, and delivery time for hardware. Users note challenges with monitoring cloud networks and insufficient cluster capacity. There is also a call for improved interface design and internal traffic flow visualization.
What are the essential features of Gigamon Deep Observability Pipeline?Gigamon Deep Observability Pipeline finds application across industries for network visibility and management. It is used extensively for traffic monitoring, SSL inspection, mobile network oversight, and data center operations. Organizations leverage its capabilities to address network issues, enhance security, and streamline performance monitoring processes. Its ability to group traffic aids significantly in problem-solving and SSL detection.
Sentinel is a robust platform offering seamless native integration, enhanced security through transactional data, and a user-friendly interface reminiscent of Microsoft Windows. Its capabilities in threat detection, monitoring, and business intelligence integration make it an attractive choice for organizations.
Sentinel simplifies security management with its advanced features, including the Kusto Query Language and automation abilities that reduce the complexity of coding tasks. The platform's correlation engine allows for efficient rule generation, while its threat visibility and intelligence features offer preparation against risks. Advanced hunting queries, anomaly dashboards, and scalability options enhance its utility. Users appreciate its seamless connections with Microsoft tools and ability to improve threat detection through cloud and business intelligence integration. However, enhancements could improve documentation on security aspects, simplify dashboards, and optimize drag-and-drop features. There are suggestions for better device integration, a shift to web interfaces, and improved customization options, although some users face challenges with Unix scripting.
What are the most important features of Sentinel?Sentinel finds application across sectors for logging, security event monitoring, and integration with tools like Microsoft Defender for Endpoint. Users from industries such as government and academic institutions leverage its advanced SQL query support for customized responses, enhancing security measures with AI capabilities in diverse environments.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.