Try our new research platform with insights from 80,000+ expert users

Microsoft Sentinel vs NNT Log Tracker Enterprise comparison

Microsoft and Netwrix are both solutions in the Security Information and Event Management (SIEM) category. Microsoft is ranked #3 with an average rating of 8.4, while Netwrix is ranked #62. Microsoft holds a 7.1% mindshare in SIEM, compared to Netwrix’s 0.2% mindshare. Additionally, 93% of Microsoft users are willing to recommend the solution, compared to 100% of Netwrix users who would recommend it.
Microsoft Sentinel
Read 97 Microsoft Sentinel reviews
  • 12,355 Views
  • 6,385 Comparison Views
93% willing to recommend
NNT Log Tracker Enterprise
Read 4 NNT Log Tracker Enterprise reviews
  • 215 Views
  • 89 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

NNT Log Tracker Enterprise and Microsoft Sentinel compete in the security solutions category. Microsoft Sentinel appears to have an upper hand due to its features and ease of deployment, while NNT Log Tracker Enterprise stands out in support and pricing.

Features: NNT Log Tracker Enterprise offers robust security controls, flexible reporting, and efficient system monitoring. Microsoft Sentinel provides comprehensive integration capabilities, advanced threat detection, and extensive analytics.

Room for Improvement: NNT Log Tracker Enterprise requires a more intuitive setup process, enhanced scalability, and better support for larger data volumes. Microsoft Sentinel needs improvements in documentation, enhanced user training, and more streamlined initial setup.

Ease of Deployment and Customer Service: NNT Log Tracker Enterprise is relatively straightforward to deploy with commendable customer service. Microsoft Sentinel, while more complex in deployment, benefits from Microsoft's extensive support network and resources.

Pricing and ROI: NNT Log Tracker Enterprise is cost-effective, providing a quicker return on investment. Microsoft Sentinel, though pricier, offers value through its features and integrations. NNT Log Tracker Enterprise is seen as better suited for budget-conscious organizations.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Microsoft Sentinel vs. NNT Log Tracker Enterprise Report (Updated: June 2025).
Buyer's Guide
Microsoft Sentinel vs. NNT Log Tracker Enterprise
June 2025
Download the complete report
Helped 859,129 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Microsoft Sentinel
Ranking in Security Information and Event Management (SIEM)
3rd
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
97
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (1st), Microsoft Security Suite (4th), AI-Powered Cybersecurity Platforms (5th)
NNT Log Tracker Enterprise
Ranking in Security Information and Event Management (SIEM)
62nd
Average Rating
8.2
Number of Reviews
4
Ranking in other categories
Log Management (67th)
 

Mindshare comparison

As of June 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Microsoft Sentinel is 7.1%, down from 8.8% compared to the previous year. The mindshare of NNT Log Tracker Enterprise is 0.2%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

Ivan Angelov - PeerSpot reviewer
Threat detection and response capabilities enhance investigation processes
My security team has been using Microsoft Sentinel for around two years. We also have Bastion and SolarWinds as part of our monitoring tools. We use a three-way tool, alongside Microsoft Sentinel, in our environment The most valuable features for us include threat collection, threat detection,…
Read full review
JT
Great for PCI compliance but issues with stability and large amounts of data
I mainly use this solution to meet PCI compliance The automation of compliance reports and the correlation of the log have been major improvements.  The most valuable feature is the predefined reports for PCI compliance. The correlation suite needs to be improved. I also think they need to…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"In Azure Sentinel, we have found, they do have a store in their capability. AI and intelligence features. We found that to be very helpful for us because some other things we do need to integrate again or find another vendor for the store"
"Custom workbooks are valuable. It is one of the crucial points in dealing with potential security threats in an automated way without requiring too much manpower."
"The part that was very unexpected was Sentinel's ability to integrate with Azure Lighthouse, which, as a managed services solution provider, gives us the ability to also manage our customers' Sentinel environments or Sentinel workspaces. It is a big plus for us. With its integration with Lighthouse, we get the ability to monitor multiple workspaces from one portal. A lot of the Microsoft Sentinel workbooks already integrate with that capability, and we save countless amounts of money by simply being able to almost immediately realize multitenant capabilities. That alone is a big plus for us."
"Sentinel improved how we investigate incidents. We can create watchlists and update them to align with the latest threat intelligence. The information Microsoft provides enables us to understand thoroughly and improve as we go along. It allows us to provide monthly reports to our clients on their security posture."
"Microsoft Sentinel stands out among SIEM tools for its user-friendliness and powerful built-in query language."
"The solution has features that helped improve the security posture of our clients. It provides the ability to correlate a large variety of log sources very cost-effectively, especially for Microsoft sources."
"If you know how to do KQL (kusto query language) queries, which are how you query the log data inside Sentinel, the information is pretty rich. You can get down to a good level of detail regarding event information or notifications."
"The query language of Microsoft Sentinel is easy to understand and use."
More Microsoft Sentinel pros
"This is a very easy-to-use interface with a quick ramp-up time."
"The FIM features in the Change Tracker and the Log Tracker are the most valuable."
"The most valuable feature is the predefined reports for PCI compliance."
"File integrity monitoring is a very important function."
 

Cons

"It could have a better API to be able to automate many things more extensively and get more extensive data and more expensive deployment possibilities. It can gain some points on the automation part and the integration part. The API is very limited, and I would like to see it extended a bit more."
"They can work on the EDR side of things... Every time we need to onboard these kinds of machines into the EDR, we need to do it with the help of Intune, to sync up the devices, and do the configuration. I'm looking for something on the EDR side that will reduce this kind of work."
"It would be nice to be able to leverage more AI to handle more data and recovery aspects in the future."
"In New Zealand, there are customers that run dual stack, running Microsoft but also competitor products, EDR software, cloud security software, and other tooling. While it's improved over the last four or five years, there's still more work that can be done to integrate better outside of the Microsoft ecosystem."
"If you're looking to use canned queries, the interface could be a little more straightforward. It's not immediately intuitive regarding how you use it. You have to take a canned query and paste it into an operational box and then you hit a button... They could improve the ease of deploying these queries."
"Multi-tenancy, in my opinion, needs to be improved. I believe it can do better as a managed service provider."
"My primary improvement request would be for auxiliary logs, as they represent our biggest need."
"Given that I am in the small business space, I wish they would make it easier to operate Sentinel without being a Sentinel expert. Examples of things that could be easier are creating alerts and automations from scratch and designing workbooks."
More Microsoft Sentinel cons
"The correlation suite needs to be improved."
"I would like to see the integration of AI technology, so rather than manually monitoring the logs, the tool will understand it and take care of it."
"Only one minor deployment issue came up and it was resolved quickly. No other areas of improvement come to mind yet."
"It is able to identify the vulnerability, however, they need an option to auto-mitigate."
 

Pricing and Cost Advice

"For us, it is not expensive at this time, but if we start to collect all logs from our on-premise SIEM solutions, it will cost more than QRadar. If we calculate its cost over the next five or ten years, it will cost more than what we paid for QRadar."
"Sentinel's price is comparable to pretty much everything out there. None of it is cheap, but we didn't think we could save money by going a different route. Sentinel was part of our Azure expenditures, so it was easier to add the expense instead of having a completely separate vendor."
"I am not involved on the financial side, but from an enterprise-wide use perspective, I think the price is good enough."
"I have worked with a lot of SIEMs. We are using Sentinel three to four times more than other SIEMs that we have used. Azure Sentinel's only limitation is its price point. Sentinel costs a lot if your ingestion goes up to a certain point."
"No license is required to make use of Sentinel, but you need to buy products to get the data. In general, the price of those products is comparable to similar products."
"Microsoft Sentinel requires an E5 license."
"It's costly to maintain and renew."
"The solution is expensive and there is a daily usage fee."
More Microsoft Sentinel pricing and cost advice
"NNT's pricing is moderate - I would rate their pricing two-and-a-half out of ten."
"We have selected a perpetual license along with support."
"Consider both their on-premises solution and their hosted solution. Both are reasonably priced."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
859,129 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
11%
Manufacturing Company
8%
Government
8%
No data available
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

Is there a common threat intelligence tool that aggregates multiple threat intelligence sources?
Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and its Threat Hunting functionality with AI available as templates or customized ...
See all answers
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
See all answers
Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
Ask a question
Earn 20 points
 

Comparisons

AWS Security Hub vs Microsoft Sentinel Logo
AWS Security Hub vs Microsoft Sentinel
Compared 21% of the time
IBM Security QRadar vs Microsoft Sentinel Logo
IBM Security QRadar vs Microsoft Sentinel
Compared 8% of the time
Cortex XSIAM vs Microsoft Sentinel Logo
Cortex XSIAM vs Microsoft Sentinel
Compared 7% of the time
Wazuh vs Microsoft Sentinel Logo
Wazuh vs Microsoft Sentinel
Compared 5% of the time
Google Chronicle Suite vs Microsoft Sentinel Logo
Google Chronicle Suite vs Microsoft Sentinel
Compared 5% of the time
More Microsoft Sentinel Competitors
No data available
 

Product Reports

Buyer's Guide
Microsoft Sentinel
June 2025
Microsoft Sentinel reportDownload Microsoft Sentinel product report
Buyer's Guide
Log Management
May 2025
NNT Log Tracker Enterprise reportDownload NNT Log Tracker Enterprise product report
 

Also Known As

Azure Sentinel
No data available
 

Overview

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Microsoft

NNT Log Tracker Enterprise is a comprehensive and easy-to-use Security Information and Event Management (SIEM) solution for any compliance mandate providing:

  • Enterprise-class SIEM capabilities.
  • Compliance Automation.
  • User and System Activity Audit trails.
  • Network Anomaly forensics.
  • Proactive Threat Detection.
Netwrix
 

Sample Customers

Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.
Wonga, WHSmith
Buyer's Guide
Microsoft Sentinel vs. NNT Log Tracker Enterprise
June 2025
Free Report: Microsoft Sentinel vs. NNT Log Tracker Enterprise
Find out what your peers are saying about Microsoft Sentinel vs. NNT Log Tracker Enterprise and other solutions. Updated: June 2025.
DOWNLOAD NOW
859,129 professionals have used our research since 2012.
See our Microsoft Sentinel vs. NNT Log Tracker Enterprise report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.