Find out in this report how the two Microsoft Security Suite solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
Clients benefit from using a one-stop-shop solution, increasing their visibility across different platforms.
If a customer is already using Microsoft’s ecosystem, the ROI can be positive due to seamless integration.
We attribute our growth to Sentinel.
From a risk perspective, it's about mitigating risk, and as mentioned earlier, we haven't missed many things since we've had the offering in market—only a couple of minor incidents.
Overall, it doesn't meet our expectations.
They're skillful people who know what they're doing in their space.
I have a dedicated team as a government agency, and Microsoft assists us promptly.
Their solutions' integration simplifies resolving issues compared to those caused by third-party products.
Microsoft invests significantly in support, which is crucial for companies.
Working with a Sentinel engineer helped us tune settings effectively.
With automation, you can label five documents or 50,000 with the same amount of clicks.
It allows for one-to-one connections with different types of servers, either cloud-based like AWS, or physical servers.
The product is scalable and works across multi-cloud and multi-platform environments.
Office 365 and Exchange are running on it, covering about 35,000 users efficiently.
As our organization uses Microsoft Azure and Defender, everything grows together, and we can integrate various features seamlessly.
Being a SaaS solution, the scalability of Microsoft Sentinel is robust.
It can take seven days to 24 hours to determine whether a policy is effective.
Microsoft Purview Data Governance is absolutely fine in terms of stability.
So far, we have not experienced any issues, and it has been stable from the beginning.
In the past two years, our team hasn't encountered any issues with the stability of Microsoft Sentinel from an operations perspective.
I need to be aware of deprecated connectors as they may disconnect, but the data continues to be sent with a need for quick adaptation.
It's essential to know if a feature isn't working due to missing licenses.
There are some problems with DLP rules, and it would be great if the security around DLP could be expanded.
A watermark feature or similar tools to help enhance security for end users could be added.
We have some tools, such as our off-site Meraki firewalls, that have not fully integrated with Sentinel.
Currently, we are happy to have a way in the middle with not so much cost, but it would be nice to have the ability to enhance the automation of workflows based on learned incidents.
There are complexities in calculating the right pricing tier for different customers, which makes it difficult for me as a consultant during upfront pricing.
The feature might be available in the console, but it won't work without the proper license, creating confusion.
Microsoft Purview Data Governance is quite affordable compared to other market solutions, which have high initial costs.
I'm not exactly sure how much our license costs, but it is very expensive.
It has been beneficial that Microsoft Sentinel is included as part of the Microsoft package, making it more cost-effective.
Microsoft Sentinel offers more capabilities than Bastion, with a more intuitive experience.
Setting up the right cost model for customers is intricate, requiring careful consideration of various components and licensing tiers.
It provides a comprehensive view of the entire ecosystem's threats and compliance in real time.
The sensitivity labeling is the most valuable feature because it is the foundation for automating the encryption process and ensuring proper data handling across the organization.
Microsoft Purview Data Governance has helped my company by finding insider risks, ensuring data loss prevention, and achieving compliance to make sure everybody is compliant.
Microsoft Sentinel's ability to correlate data from multiple sources and its detection capabilities are essential.
Microsoft Sentinel has improved cost efficiency, which is one of the key areas we're able to win business against the ability to have threat intelligence.
Microsoft Sentinel's ability to correlate data from multiple sources enhances our threat detection capabilities beyond what is a simple data lake solution by filtering out the noise and consolidating the signal down to a meaningful level that is easier to investigate and see.
| Product | Market Share (%) |
|---|---|
| Microsoft Sentinel | 4.7% |
| Microsoft Purview Data Governance | 4.5% |
| Other | 90.8% |
| Company Size | Count |
|---|---|
| Small Business | 20 |
| Midsize Enterprise | 13 |
| Large Enterprise | 31 |
| Company Size | Count |
|---|---|
| Small Business | 38 |
| Midsize Enterprise | 22 |
| Large Enterprise | 44 |
The new Microsoft Purview portal offers an enhanced governance experience, serving as a unified platform for managing and governing data across various sources, including Azure, Microsoft 365, on-premises, and multicloud environments. Designed to streamline governance, compliance, risk, and security efforts, the new portal provides a user-friendly interface and unlocks advanced features like live view and preset scans. Existing users of Microsoft Purview can upgrade to this enhanced experience, gaining access to improved user interface, enhanced capabilities, and consolidated management of data assets. Additionally, the upgrade sets the stage for future developments, including account consolidation and fine-grained access control.
Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:
- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds
- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft
- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft
- Respond to incidents rapidly with built-in orchestration and automation of common tasks
To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.
We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
