Try our new research platform with insights from 80,000+ expert users

Microsoft Sentinel vs Seceon Open Threat Management Platform comparison

Microsoft and Seceon are both solutions in the Security Information and Event Management (SIEM) category. Microsoft is ranked #3 with an average rating of 8.4, while Seceon is ranked #26 with an average rating of 7.4. Microsoft holds a 6.8% mindshare in SIEM, compared to Seceon’s 0.8% mindshare. Additionally, 93% of Microsoft users are willing to recommend the solution, compared to 90% of Seceon users who would recommend it.
Microsoft Sentinel
Read 97 Microsoft Sentinel reviews
  • 11,703 Views
  • 6,101 Comparison Views
93% willing to recommend
Seceon Open Threat Manageme...
Read 13 Seceon Open Threat Management Platform reviews
  • 1,148 Views
  • 482 Comparison Views
90% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

Seceon Open Threat Management Platform and Microsoft Sentinel are robust security platforms competing in the cybersecurity category. Microsoft Sentinel appears to have the upper hand due to its more advanced features and integration capabilities.

Features: Seceon Open Threat Management Platform offers automated threat detection and response, advanced analytics, and comprehensive threat intelligence. Microsoft Sentinel provides integration with other Microsoft products, scalability, and AI-driven insights.

Room for Improvement: Seceon Open Threat Management Platform needs enhancements in reporting capabilities, a more extensive integration library, and UI improvements. Microsoft Sentinel requires better cost management, simplification of complex features, and streamlined onboarding processes.

Ease of Deployment and Customer Service: Seceon Open Threat Management Platform is recognized for its straightforward deployment and responsive customer service. Microsoft Sentinel offers extensive deployment options but is more complex to set up, though it provides detailed documentation and support resources.

Pricing and ROI: Seceon Open Threat Management Platform is favored for its cost-effective setup and strong ROI due to lower upfront costs. Microsoft Sentinel, despite its higher cost, is viewed as providing significant long-term value through its advanced features and capabilities, justifying the investment.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Microsoft Sentinel vs. Seceon Open Threat Management Platform Report (Updated: June 2025).
Buyer's Guide
Microsoft Sentinel vs. Seceon Open Threat Management Platform
June 2025
Download the complete report
Helped 859,687 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Microsoft Sentinel
Ranking in Security Information and Event Management (SIEM)
3rd
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
97
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (1st), Microsoft Security Suite (6th), AI-Powered Cybersecurity Platforms (5th)
Seceon Open Threat Manageme...
Ranking in Security Information and Event Management (SIEM)
26th
Average Rating
7.8
Reviews Sentiment
7.5
Number of Reviews
13
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Microsoft Sentinel is 6.8%, down from 8.7% compared to the previous year. The mindshare of Seceon Open Threat Management Platform is 0.8%, up from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

Ivan Angelov - PeerSpot reviewer
Threat detection and response capabilities enhance investigation processes
My security team has been using Microsoft Sentinel for around two years. We also have Bastion and SolarWinds as part of our monitoring tools. We use a three-way tool, alongside Microsoft Sentinel, in our environment The most valuable features for us include threat collection, threat detection,…
Read full review
TamimKhan - PeerSpot reviewer
Customization options need improvement but valuable threat management features and reasonable pricing benefit service providers
We are a Managed Security Service Provider (MSSP), and we provide services to our customers Seceon Open Threat Management Platform offers valuable features such as XDR and EDR. I also find the SOC and SOAR features valuable. Log management is another key functionality of the product. There are…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"What is most useful, is that it has a good connection to the Microsoft ecosystem, and I think that's the key part."
"I believe one of the main advantages is Microsoft Sentinel's seamless integration with other Microsoft products."
"It is always correlating to IOCs for normal attacks, using Azure-related resources. For example, if any illegitimate IP starts unusual activity on our Azure firewall, then it automatically generates an alarm for us."
"It is quite efficient. It helps our clients in identifying their security issues and respond quickly. Our clients want to automate incident response and all those things."
"While Microsoft Sentinel provides a log of security events, its true power lies in its integration with Microsoft Defender."
"Custom workbooks are valuable. It is one of the crucial points in dealing with potential security threats in an automated way without requiring too much manpower."
"We have seen at least a 60% increase in efficiency with Microsoft Sentinel and the ability to reduce the MTTD down to under five minutes and MTTR down to under fifteen."
"I like the ability to run custom KQL queries. I don't know if that feature is specific to Sentinel. As far as I know, they are using technology built into Azure's Log Analytics app. Sentinel integrates with that, and we use this functionality heavily."
More Microsoft Sentinel pros
"The most valuable features are behaviour analytics, threat intelligence, endpoint detection, and response features."
"You can use different solutions in a single platform which is very easy and attractive for customers."
"It is effective because it has threat intelligence from across the world and constantly checks and updates for new threats."
"We only recently started using Seceon, so we aren't taking advantage of all its features yet. We have enabled some proactive alerts about utilization and bottlenecks from high traffic."
"The algorithm used in Seceon OTM is clear and logical, categorizing events as needed. This helps us identify and respond to threats effectively."
"The most valuable feature of this solution is its artificial intelligence."
"The pricing of Seceon Open Threat Management Platform is very reasonable."
"The solution is stable."
More Seceon Open Threat Management Platform pros
 

Cons

"There is room for improvement in entity behavior and the integration site."
"The product can be improved by reducing the cost to use AI machine learning."
"We have been working with multiple customers, and every time we onboard a customer, we are missing an essential feature that surprisingly doesn't exist in Sentinel. We searched the forums and knowledge bases but couldn't find a solution. When you onboard new customers, you need to enable the data connectors. That part is easy, but you must create rules from scratch for every associated connector. You click "next," "next," "next," and it requires five clicks for each analytical rule. Imagine we have a customer with 150 rules."
"Microsoft Sentinel can be improved in terms of automation or connecting with security products so that it is easier to use for general IT admins."
"There is some relatively advanced knowledge that you have to have to properly leverage Sentinel's full capabilities. I'm thinking about things like the creation of workbooks, how you do threat-hunting, and the kinds of notifications you're getting... It takes time for people to ramp up on that and develop a familiarity or expertise with it."
"The troubleshooting has room for improvement."
"Microsoft Defender has a built-in threat expert option that enables you to contact an expert. That feature isn't available in Sentinel because it's a huge product that integrates all the technologies. I would like Microsoft to add the threat expert option so we can contact them. There are a few other features, like threat assessment that the PG team is working on. I expect them to release this feature in the next quarter."
"Everyone has their favorites. There is always room for improvement, and everybody will say, "I wish you could do this for me or that for me." It is a personal thing based on how you use the tool. I do not necessarily have those thoughts, and they are probably not really valuable because they are unique to the context of the user, but broadly, where it can continue to improve is by adding more connectors to more systems."
More Microsoft Sentinel cons
"The product could be improved by including sandboxing capabilities in the next release."
"It would be better if they offered global coverage."
"For future releases, integrating incident response tools and improving communication on incident reporting could be beneficial."
"Seceon Open Threat Management Platform sells some add-ons as part of the whole suite but not individually. If they sold them individually, they could potentially attract more business."
"For small to medium-sized customers, Seceon Open Threat Management Platform is good. However, for large enterprises, it is not as effective."
"We are at the client’s end, offering services. They don’t know about security rules and benchmarks. We are working on the discovery and remediation but we don’t really have the intelligence that was available while working with other tools. Human working is also very essential for the solution. The automatic session is impossible to play since it needs to touch Redfin for further analysis. No one has breached our clients."
"It is a standalone solution now. They need to make it into a cloud-based subscription model. It needs more compatibility for co-managed solutions. It can also have more threats and deeper integration with Microsoft."
"The dashboard has always been an issue."
More Seceon Open Threat Management Platform cons
 

Pricing and Cost Advice

"The pricing isn't very high. It depends on the number of logs you have. If you're expecting to ingest 50 to 60G in a day, but you're only ingesting 20 to 25G per day at first and you have a good team to analyze the logs, then you can segregate the ingestion at under 15G."
"Azure Sentinel is very costly, or at least it appears to be very costly. The costs vary based on your ingestion and your retention charges."
"It's costly to maintain and renew."
"Sentinel is a bit expensive. If you can figure a way of configuring it to meet your needs, then you can find a way around the cost."
"Sentinel is expensive relative to other products of the class, so it often isn't affordable for small-scale businesses. However, considering the solution has more extensive capabilities than others, the price is not so high. Pricing is based on GBs of ingested daily data, either by a pay-as-you-go or subscription model."
"Cost-wise, Sentinel is based on the volume of information being ingested, so it can be quite pricey. The ability to use strategies to control what data is being ingested is important."
"Microsoft can enhance the licensing side. I feel there is confusion sometimes... They should have a single license in which we have the opportunity to use the EDR or CASB solution."
"I'm not happy with the pricing on the integration with Defender for Endpoint. Defender for Endpoint is log-rich. There is a lot of information coming through, and it is needed information. The price point at which you ingest those logs has made a lot of my customers make the decision to leave that within the Defender stack."
More Microsoft Sentinel pricing and cost advice
"The solution is cheap and very competitive. It offers good tuning in terms of the pricing. Other solutions like Palo Alto and IBM are more expensive."
"It has a per-asset model instead of an ingestion-based model, which gives predictable pricing. In terms of price, it is in the middle to lower range of SIEMs that it competes against. It is the most affordable solution that we have implemented so far. It was much more affordable than anything else I've implemented."
"Seceon Open Threat Management Platform is cost-effective because it's a comprehensive platform that offers high availability."
"The pricing is very competitive. It's not expensive."
"We used the solution's trial version for two months and later purchased it."
"I find Seceon OTM's pricing to be reasonable, not too high or low, just okay for the market standards. I can't disclose specific figures, we pay on a quarterly basis under a service model. I would rate it eight out of ten. As a customer, I always hope for better pricing options."
"The price is quite reasonable."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
859,687 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
11%
Manufacturing Company
8%
Government
8%
Computer Software Company
24%
Financial Services Firm
12%
Manufacturing Company
8%
Performing Arts
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Is there a common threat intelligence tool that aggregates multiple threat intelligence sources?
Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and its Threat Hunting functionality with AI available as templates or customized ...
See all answers
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
See all answers
Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
What do you like most about Seceon Open Threat Management Platform?
The algorithm used in Seceon OTM is clear and logical, categorizing events as needed. This helps us identify and respond to threats effectively.
See all answers
What is your experience regarding pricing and costs for Seceon Open Threat Management Platform?
The pricing of Seceon Open Threat Management Platform is very reasonable.
See all answers
What needs improvement with Seceon Open Threat Management Platform?
There are areas for improvement in the customization options. Every ( /products/every-reviews ) quarter, they are developing the platform with new updates based on feedback provided.
See all answers
 

Comparisons

AWS Security Hub vs Microsoft Sentinel Logo
AWS Security Hub vs Microsoft Sentinel
Compared 20% of the time
IBM Security QRadar vs Microsoft Sentinel Logo
IBM Security QRadar vs Microsoft Sentinel
Compared 7% of the time
Cortex XSIAM vs Microsoft Sentinel Logo
Cortex XSIAM vs Microsoft Sentinel
Compared 7% of the time
Wazuh vs Microsoft Sentinel Logo
Wazuh vs Microsoft Sentinel
Compared 5% of the time
Google Chronicle Suite vs Microsoft Sentinel Logo
Google Chronicle Suite vs Microsoft Sentinel
Compared 5% of the time
More Microsoft Sentinel Competitors
Wazuh vs Seceon Open Threat Management Platform Logo
Wazuh vs Seceon Open Threat Management Platform
Compared 19% of the time
IBM Security QRadar vs Seceon Open Threat Management Platform Logo
IBM Security QRadar vs Seceon Open Threat Management Platform
Compared 14% of the time
LogRhythm SIEM vs Seceon Open Threat Management Platform Logo
LogRhythm SIEM vs Seceon Open Threat Management Platform
Compared 13% of the time
Fortinet FortiSIEM vs Seceon Open Threat Management Platform Logo
Fortinet FortiSIEM vs Seceon Open Threat Management Platform
Compared 13% of the time
Splunk Enterprise Security vs Seceon Open Threat Management Platform Logo
Splunk Enterprise Security vs Seceon Open Threat Management Platform
Compared 12% of the time
More Seceon Open Threat Management Platform Competitors
 

Product Reports

Buyer's Guide
Microsoft Sentinel
June 2025
Microsoft Sentinel reportDownload Microsoft Sentinel product report
Buyer's Guide
Seceon Open Threat Management Platform
June 2025
Seceon Open Threat Management Platform reportDownload Seceon Open Threat Management Platform product report
 

Also Known As

Azure Sentinel
Seceon OTM, Seceon aiSIEM, aiSIEM, Seceon Open Threat Management
 

Overview

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Microsoft

Seceon Open Threat Management Platform is a comprehensive cybersecurity solution that offers real-time threat detection, analysis, and response capabilities. It leverages advanced AI and machine learning algorithms to provide proactive threat hunting and automated incident response. 

With its intuitive dashboard, users can gain complete visibility into their network, applications, and endpoints, enabling them to identify and mitigate potential risks effectively. The platform integrates seamlessly with existing security infrastructure, consolidating data from various sources for centralized monitoring and analysis. 

Its threat intelligence feeds and behavioral analytics enable the identification of both known and unknown threats, ensuring comprehensive protection against advanced cyber attacks. Seceon Open Threat Management Platform empowers security teams with actionable insights, enabling them to prioritize and respond to threats swiftly. With its automated remediation capabilities, it minimizes the impact of attacks and reduces response time. The platform also offers customizable reporting and compliance management features, facilitating regulatory compliance and providing stakeholders with comprehensive security status updates. 

Seceon Open Threat Management Platform is a robust and scalable solution that caters to the evolving cybersecurity needs of organizations across industries.

Seceon
 

Sample Customers

Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.
Caduceus, SUNY
Buyer's Guide
Microsoft Sentinel vs. Seceon Open Threat Management Platform
June 2025
Free Report: Microsoft Sentinel vs. Seceon Open Threat Management Platform
Find out what your peers are saying about Microsoft Sentinel vs. Seceon Open Threat Management Platform and other solutions. Updated: June 2025.
DOWNLOAD NOW
859,687 professionals have used our research since 2012.
See our Microsoft Sentinel vs. Seceon Open Threat Management Platform report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.