Microsoft has been named a Leader in the 2022 Gartner Magic Quadrant for Security Information and Event Management (SEIM) and was positioned highest on the measure of Ability to Execute axis.
What is Sentinel?
Microsoft’s end to end security takes the best of SIEM and combines that with the best of extended detection and response (XDR) to deliver a unified security operations platform.
Microsoft Sentinel is a scalable, cloud-native solution that provides:
- Security information and event management (SIEM) and
- Security orchestration, automation, and response (SOAR).
Sentinel delivers intelligent security analytics and threat intelligence across the enterprise with integration into almost any application, network and service. Sentinel provides a single comprehensive, intelligent, AI driven solution for attack detection, threat visibility, proactive hunting, and threat response.
It’s unique bird’s-eye view across the enterprise, helps alleviate the stress of increasingly sophisticated attacks, increasing volumes of alerts, and long resolution time frames which often cripples IT and SecOps teams.
Microsoft’s vision for protecting organisations from threats is unique compared to competitor vendors/products that only offer a SIEM platform. Just look at how far they have moved in 12 months… Incredible for a fairly new product.
In the annoucement from Microsoft on the recognition they say that “the breadth of coverage only a SIEM can provide and the depth of insight that XDR provides. That means that organisations that leverage Microsoft security solutions have more context to work from to resolve attacks faster. Customers using our XDR capabilities, such as Microsoft 365 Defender, also receive a discount on their data ingestion into Microsoft Sentinel.“
You can access and read the full Gartner report here