Home

Azure Sentinel vs. Azure LogAnalytics

%3CLINGO-SUB%20id%3D%22lingo-sub-458951%22%20slang%3D%22en-US%22%3EAzure%20Sentinel%20vs.%20Azure%20LogAnalytics%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-458951%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EDo%20we%20have%20already%20available%20some%20kind%20of%20comparison%20chart%20between%20Azure%20Sentinel%20and%20Azure%20LogAnalytics.%3C%2FP%3E%3CP%3EI'm%20trying%20to%20understand%20differences%20between%20these%20two%20solutions.%3C%2FP%3E%3CP%3EWhat%20to%20pick%20for%20customer%20cases.%3C%2FP%3E%3CP%3E%3CBR%20%2F%3EThanks%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EBr%2C%20Joonas%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-467197%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20vs.%20Azure%20LogAnalytics%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-467197%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F43338%22%20target%3D%22_blank%22%3E%40Joonas%20Pakkanen%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F293879%22%20target%3D%22_blank%22%3E%40Ofer_Shezaf%3C%2FA%3E%3A%20Is%20this%20something%20you%20can%20speak%20to%3F%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F89690%22%20target%3D%22_blank%22%3E%40Chris%20Boehm%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-480663%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20vs.%20Azure%20LogAnalytics%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-480663%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F43338%22%20target%3D%22_blank%22%3E%40Joonas%20Pakkanen%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CFONT%20style%3D%22background-color%3A%20%23ffffff%3B%22%3EAzure%20Sentinel%20is%20a%20cloud-native%20SIEM%20that%20provides%20intelligent%20security%20analytics%20for%20your%20entire%20enterprise%20at%20cloud%20scale.%20Get%20limitless%20cloud%20speed%20and%20scale%20to%20help%20focus%20on%20what%20really%20matters.%20Easily%20collect%20data%20from%20all%20your%20cloud%20or%20on-premises%20assets%2C%20Office%20365%2C%20Azure%20resources%2C%20and%20other%20clouds.%20%3CU%3E%3CSTRONG%3EEffectively%20detect%20threats%20with%20built-in%20machine%20learning%20from%20Microsoft%E2%80%99s%20security%20analytics%20experts.%20Automate%20threat%20response%2C%20using%20built-in%20orchestration%20and%20automation%20playbooks.%3C%2FSTRONG%3E%3C%2FU%3E%3CBR%20%2F%3E%3C%2FFONT%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CFONT%20style%3D%22background-color%3A%20%23ffffff%3B%22%3EAzure%20Monitor%2C%20which%20now%20includes%20Log%20Analytics%20and%20Application%20Insights%2C%20provides%20sophisticated%20tools%20for%20collecting%20and%20analyzing%20telemetry%20that%20allow%20you%20to%20maximize%20the%20performance%20and%20availability%20of%20your%20cloud%20and%20on-premises%20resources%20and%20applications.%20%3CU%3E%3CSTRONG%3EIt%20helps%20you%20understand%20how%20your%20applications%20are%20performing%20and%20proactively%20identifies%20issues%20affecting%20them%20and%20the%20resources%20they%20depend%20on.%3C%2FSTRONG%3E%3C%2FU%3E%3C%2FFONT%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-510830%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20vs.%20Azure%20LogAnalytics%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-510830%22%20slang%3D%22en-US%22%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EFYI%2C%20Yuri%20also%20posted%20recently%20a%20response%20to%20this%20question%2C%20in%20the%20%22Security%20and%20Identity%22%20conversation%20-%20see%3A%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FSecurity-Identity%2FIntegrating-Azure-Security-Center-with-Azure-Sentinel%2Fm-p%2F482847%23M447%22%20target%3D%22_self%22%3Ehere%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EHe%20has%20some%20nice%2C%20simple%20diagrams%20as%20well.%26nbsp%3B%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Joonas Pakkanen
Occasional Contributor

Hi,

 

Do we have already available some kind of comparison chart between Azure Sentinel and Azure LogAnalytics.

I'm trying to understand differences between these two solutions.

What to pick for customer cases.


Thanks

 

Br, Joonas

3 Replies

@Joonas Pakkanen 

 

@Ofer_Shezaf: Is this something you can speak to? 

@Chris Boehm 

@Joonas Pakkanen 

 

Azure Sentinel is a cloud-native SIEM that provides intelligent security analytics for your entire enterprise at cloud scale. Get limitless cloud speed and scale to help focus on what really matters. Easily collect data from all your cloud or on-premises assets, Office 365, Azure resources, and other clouds. Effectively detect threats with built-in machine learning from Microsoft’s security analytics experts. Automate threat response, using built-in orchestration and automation playbooks.

 

Azure Monitor, which now includes Log Analytics and Application Insights, provides sophisticated tools for collecting and analyzing telemetry that allow you to maximize the performance and availability of your cloud and on-premises resources and applications. It helps you understand how your applications are performing and proactively identifies issues affecting them and the resources they depend on.

 

 

 

FYI, Yuri also posted recently a response to this question, in the "Security and Identity" conversation - see:

here

 

He has some nice, simple diagrams as well.  

Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
46 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
29 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies