How azure sentinel different from servicenow secops?

%3CLINGO-SUB%20id%3D%22lingo-sub-1770459%22%20slang%3D%22en-US%22%3EHow%20azure%20sentinel%20different%20from%20servicenow%20secops%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1770459%22%20slang%3D%22en-US%22%3EI%20would%20want%20to%20understand%20the%20difference%20between%20servicenow%20secops%20and%20sentinel%20because%20both%20have%20inbuilt%20SOAR%20and%20threat%20intelligence%20and%20servicenow%20secops%20have%20a%20capability%20to%20add%20sentinel%20to%20it.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1770870%22%20slang%3D%22en-US%22%3ERE%3A%20How%20azure%20sentinel%20different%20from%20servicenow%20secops%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1770870%22%20slang%3D%22en-US%22%3EServiceNow%20SecOps%20is%20a%20SOAR%20product%2C%20not%20a%20SIEM%20like%20Azure%20Sentinel.%20You%20can%20use%20Azure%20Sentinel%20to%20do%20the%20detection%20of%20events%20and%20then%20pass%20that%20information%20into%20ServiceNow%20to%20manage%20the%20incidents.%20From%20the%20ServiceNow%20Security%20Operations%20documentation%3A%20ServiceNow%C2%AE%20Security%20Operations%20is%20a%20security%20orchestration%2C%20automation%2C%20and%20response%20(SOAR)%20engine%20built%20on%20the%20Now%20Platform.%20Designed%20to%20help%20security%20and%20IT%20teams%20respond%20faster%20and%20more%20efficiently%20to%20incidents%20and%20vulnerabilities%2C%20Security%20Operations%20uses%20intelligent%20workflows%2C%20automation%2C%20and%20a%20deep%20connection%20with%20Security%20Operations%20and%20IT%20to%20streamline%20response.%3C%2FLINGO-BODY%3E
Highlighted
New Contributor
I would want to understand the difference between servicenow secops and sentinel because both have inbuilt SOAR and threat intelligence and servicenow secops have a capability to add sentinel to it.
1 Reply
Highlighted
ServiceNow SecOps is a SOAR product, not a SIEM like Azure Sentinel. You can use Azure Sentinel to do the detection of events and then pass that information into ServiceNow to manage the incidents. From the ServiceNow Security Operations documentation: ServiceNow® Security Operations is a security orchestration, automation, and response (SOAR) engine built on the Now Platform. Designed to help security and IT teams respond faster and more efficiently to incidents and vulnerabilities, Security Operations uses intelligent workflows, automation, and a deep connection with Security Operations and IT to streamline response.