Microsoft Sentinel vs. Sumo Logic

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Microsoft Sentinel
Score 8.2 out of 10
N/A
Microsoft Sentinel (formerly Azure Sentinel) is designed as a birds-eye view across the enterprise. Put the cloud and large-scale intelligence from decades of Microsoft security experience to work. Make threat detection and response smarter and faster with artificial intelligence (AI). Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs.
$2.46
per GB ingested
Sumo Logic
Score 7.4 out of 10
N/A
Sumo Logic is a log management offering from the San Francisco based company of the same name.
$3
Per GB Logs
Pricing
Microsoft SentinelSumo Logic
Editions & Modules
Azure Sentinel
$2.46
per GB ingested
100 GB per day
$123.00
per day
200 GB per day
$221.40
per day
300 GB per day
$319.80
per day
400 GB per day
$410.00
per day
500 GB per day
$492.00
per day
More than 500 GB per day
$492.00 + $98.40
per day/plus each additional 100 GB increment
Essentials
$3.00
Per GB Logs
Enterprise
$4.00
Per GB Logs
Enterprise Security
$4.25
Per GB Logs
Enterprise Suite
$4.75
Per GB Logs
Offerings
Pricing Offerings
Microsoft SentinelSumo Logic
Free Trial
YesNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Microsoft SentinelSumo Logic
Top Pros
Top Cons
Features
Microsoft SentinelSumo Logic
Security Information and Event Management (SIEM)
Comparison of Security Information and Event Management (SIEM) features of Product A and Product B
Microsoft Sentinel
9.4
3 Ratings
18% above category average
Sumo Logic
-
Ratings
Centralized event and log data collection10.03 Ratings00 Ratings
Correlation9.43 Ratings00 Ratings
Event and log normalization/management9.63 Ratings00 Ratings
Deployment flexibility8.23 Ratings00 Ratings
Integration with Identity and Access Management Tools9.73 Ratings00 Ratings
Custom dashboards and workspaces9.33 Ratings00 Ratings
Host and network-based intrusion detection8.93 Ratings00 Ratings
Data integration/API management9.63 Ratings00 Ratings
Behavioral analytics and baselining9.33 Ratings00 Ratings
Rules-based and algorithmic detection thresholds9.63 Ratings00 Ratings
Response orchestration and automation9.63 Ratings00 Ratings
Reporting and compliance management9.63 Ratings00 Ratings
Incident indexing/searching9.33 Ratings00 Ratings
Best Alternatives
Microsoft SentinelSumo Logic
Small Businesses
AlienVault USM
AlienVault USM
Score 7.8 out of 10
InfluxDB
InfluxDB
Score 8.3 out of 10
Medium-sized Companies
Splunk Enterprise
Splunk Enterprise
Score 8.7 out of 10
GitLab
GitLab
Score 9.0 out of 10
Enterprises
Splunk Enterprise
Splunk Enterprise
Score 8.7 out of 10
GitLab
GitLab
Score 9.0 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Microsoft SentinelSumo Logic
Likelihood to Recommend
9.6
(3 ratings)
8.9
(14 ratings)
Usability
9.3
(3 ratings)
7.6
(3 ratings)
Support Rating
8.1
(3 ratings)
8.7
(8 ratings)
Implementation Rating
-
(0 ratings)
9.0
(2 ratings)
Professional Services
5.0
(1 ratings)
6.2
(3 ratings)
User Testimonials
Microsoft SentinelSumo Logic
Likelihood to Recommend
Microsoft
Azure Sentinel is an excellent option like SIEM. It has cool, smart features and functionality, and is quite powerful in terms of processing information in the cloud. I recommend it to colleagues because it is very easy to deploy and configure, and learn to use it on a daily basis. The panel is super intuitive and rich in details. When opening Sentinel, it is already possible to analyze the indices that happened and those that deserve further attention and treatment.
Read full review
Sumo Logic
SumoLogic is a fantastic log aggregator and analysis tool, a fine alternative to Splunk. Searching is powerful and mostly intuitive and results come fast. If you have application logs in clusters or Kubernetes pods that lose their logs every time they're restarted, Sumo is the solution for you
Read full review
Pros
Microsoft
  • Automated detection and response
  • Detailed user/device information
  • Part of the MS cloudsphere, so has a familiar feel.
Read full review
Sumo Logic
  • Sumo Logic allowed for our InfoSec team to ingest logs from our CDN directly, in real-time, instead of massive compressed archives that were sent every two-hours (the only alternative at the time). Sumo Logic had an app for these logs, that allowed us to easily get an immediate payoff from the data, with canned dashboard and saved searches.
  • Sumo Logic has a fairly extensive REST API when it comes to log sources, source configurations, dashboard data, searches, etc. Their wiki for the API is usually kept up to date.
  • Sumo Logic, during the period of time I had used their product, had added the ability to configure agents via configuration files. This allowed customers to configure their endpoints, and modify the endpoints, with configuration management tools like Chef / Puppet / Salt. Beforehand, the only option was to always make changes either via the web portal or REST API.
  • The solutions engineers were extremely helpful, and easily reachable when issues would occur.
  • Users at our company found it easy to get started, working on new dashboards, scheduled searches, and alerting. The alerting worked well with our third-party paging tool.
Read full review
Cons
Microsoft
  • There's not much that needs improvement, but the on-prem log sources still require a lot of development.
Read full review
Sumo Logic
  • I like the help center, but I think if it had more GUI tools, it could help new users.
  • Pulling out data is sometimes hard to read, (Maybe if I knew how to export data better, this would not be an issue for me).
  • I would like better know-how on how to create reports that will help our business.
Read full review
Usability
Microsoft
The Microsoft Azure Sentinel solution is very good and even better if you use Azure. It's easy to implement and learn how to use the tool with an intuitive and simple interface. New updates are happening to always bring new news and improve the experience and usability. The solution brings reliability as it is from a very reliable manufacturer.
Read full review
Sumo Logic
Sumo Logic is very powerful but definitely requires some configuration work to get the most out of it. You can get a certification related to this, but it is definitely not something you can just throw together.
Read full review
Support Rating
Microsoft
I haven't yet had to use support for Sentinel.
Read full review
Sumo Logic
I would give this rating because I attended a free Sumo Logic training at a WeWork in Chicago. I found the training very useful, and I learned a lot of features that I was not aware of before I went to the training. I like the idea that SumoLogic provides free training seminars. I am certified in level1, and I plan on certifying to level2.
Read full review
Implementation Rating
Microsoft
No answers on this topic
Sumo Logic
I was satisfied with the implementation, as at the time, it was the best way to implement the product with the available feature sets in Sumo Logic. User creation and management became more of an issue during continued use, instead of it being an issue related to deploying the product in our environment.
Read full review
Alternatives Considered
Microsoft
No answers on this topic
Sumo Logic
Sumo Logic works very well out of the gate. For a small business it has given us what we need. I worked at a larger company previously, and we produced so many logs we had to create a custom logging service to handle them all. Cost and availability are big issues when deciding between the different services, whether self maintained and hosted, or provided by another company.
Read full review
Professional Services
Microsoft
Did not use professional services
Read full review
Sumo Logic
I've assisted several OneLogin customers with partner accounts to Sumo Logic. It has always been pleasant.
Read full review
Return on Investment
Microsoft
  • Cost saving as you don't need to use multiple platforms to monitor your security events.
Read full review
Sumo Logic
  • I can't think of any negative side effects other than it being SO slow sometimes, but compared to Splunk everything is slow
  • It's SO much cheaper than Splunk that the time it takes to query information is well worth it
  • In the times that we've had Sumo go down or stop logging information, we've found that we'd be absolutely lost without Sumo
Read full review
ScreenShots