Introducing G2.ai, the future of software buying.Try now
Compare Microsoft Sentinel and Splunk SOAR (Security Orchestration, Automation and Response) 
Featured Products
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
EventSentry
Visit Website
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
Intezer
Visit Website
At a Glance
Market Segments
Enterprise (41.4% of reviews)
Mid-Market (41.0% of reviews)
Entry-Level Pricing
Pay As You Go
No pricing available
Microsoft Sentinel
Star Rating
(289)4.4 out of 5
Market Segments
Enterprise (41.4% of reviews)
Pros & Cons
Entry-Level Pricing
Pay As You Go
Browse all 11 pricing plansSplunk SOAR (Security Orchestration, Automation and Response)
Star Rating
(40)4.4 out of 5
Market Segments
Mid-Market (41.0% of reviews)
Pros & Cons
Entry-Level Pricing
No pricing available
Learn more about Splunk SOAR (Security Orchestration, Automation and Response)Summary
AI Generated Summary
AI-generated. Powered by real user reviews.
- Users report that Splunk SOAR excels in Log Monitoring with a score of 9.3, which reviewers mention provides comprehensive visibility into security events, while Microsoft Sentinel, with a score of 8.8, is noted for its effective but slightly less detailed log management capabilities.
- Reviewers mention that Splunk SOAR's Automated Remediation feature scores 8.6, allowing for quick responses to incidents, whereas Microsoft Sentinel also scores 8.6 but users say its automation capabilities are more reliant on user-defined workflows, which can be less intuitive.
- G2 users highlight that Splunk SOAR's Threat Intelligence feature is rated at 8.8, providing robust integration with various threat feeds, while Microsoft Sentinel, scoring 8.6, is praised for its built-in threat intelligence but is seen as less flexible in integrating third-party sources.
- Users on G2 report that Splunk SOAR's Workflow Mapping feature, rated at 8.5, is user-friendly and allows for easy customization of security processes, while Microsoft Sentinel's score of 8.2 indicates that users find its workflow automation less straightforward and more complex to set up.
- Reviewers mention that Splunk SOAR's High Availability/Disaster Recovery capabilities score 8.9, ensuring minimal downtime during incidents, while Microsoft Sentinel, with a score of 8.5, is effective but users say it may require additional configuration to achieve similar reliability.
- Users say that Splunk SOAR's Incident Reporting feature, rated at 9.0, is highly regarded for its detailed and customizable reports, while Microsoft Sentinel, scoring 8.9, is noted for its reporting capabilities but is seen as less flexible in terms of customization options.
Pricing
Entry-Level Pricing
Microsoft Sentinel
Pay-As-You-Go
Pay As You Go
Effective Per GB Price - $2.46
Savings Over Pay as You Go: N/A
- Pay-As-You-Go
Splunk SOAR (Security Orchestration, Automation and Response)
No pricing availableFree Trial
Microsoft Sentinel
Free Trial is available
Splunk SOAR (Security Orchestration, Automation and Response)
No trial information availableRatings
Meets Requirements
8.6
223
8.7
36
Ease of Use
8.5
229
8.2
36
Ease of Setup
8.3
129
7.9
17
Ease of Admin
8.3
124
8.1
13
Quality of Support
8.5
218
8.8
35
Has the product been a good partner in doing business?
8.7
119
8.3
13
Product Direction (% positive)
9.5
218
8.7
37
Features by Category
Response
Not enough data
8.6
17
Not enough data
8.5
17
Not enough data
8.2
18
Not enough data
8.8
17
Records
Not enough data
8.9
18
Not enough data
9.0
17
Not enough data
8.1
18
Management
Not enough data
8.8
18
Not enough data
8.0
16
Not enough data
8.4
17
Generative AI
Not enough data
Not enough data
Not enough data
Not enough data
Security Information and Event Management (SIEM)Hide 14 FeaturesShow 14 Features
8.6
187
Not enough data
Network Management
8.9
169
Not enough data
8.4
161
Not enough data
8.8
165
Not enough data
Incident Management
8.7
168
Not enough data
8.7
164
Not enough data
8.9
165
Not enough data
Security Intelligence
8.7
167
Not enough data
8.3
160
Not enough data
8.5
161
Not enough data
8.4
161
Not enough data
Agentic AI - Security Information and Event Management (SIEM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Automation
8.2
95
8.5
20
8.4
97
8.7
22
8.6
96
8.6
20
8.8
99
9.3
20
Orchestration
8.8
97
8.8
20
8.6
98
8.9
21
8.6
98
8.8
20
8.4
97
8.7
20
Response
8.6
100
8.8
21
8.1
94
8.8
20
8.5
90
8.9
19
Categories
Categories
Shared Categories
Microsoft Sentinel and Splunk SOAR (Security Orchestration, Automation and Response) are categorized as Security Orchestration, Automation, and Response (SOAR)
Unique Categories
Microsoft Sentinel is categorized as Security Information and Event Management (SIEM)
Splunk SOAR (Security Orchestration, Automation and Response) is categorized as Incident Response
Reviews
Reviewers' Company Size
Microsoft Sentinel
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Splunk SOAR (Security Orchestration, Automation and Response)
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Information Technology and Services
25.9%
Computer & Network Security
14.7%
Computer Software
8.3%
Banking
4.1%
Security and Investigations
3.8%
Other
43.2%
Information Technology and Services
33.3%
Consulting
12.8%
Financial Services
7.7%
Computer Software
7.7%
Computer & Network Security
7.7%
Other
30.8%
Alternatives
Discussions
What is Microsoft Sentinel used for?
3 Comments
RS
It's for SIEM tool for real time incident responder and threat intelligence .Read more
If I had to have a question, I would ask if there were any plans to add linux support to this program.
2 Comments
DY
need to ask Microsoft, but since dot.net core can be installed in Linux, I believe the agent will work as it uses the .net platform. please experiment Read more
How I able to install /integrated Azure Sentinel agents to collect data on IOT devices/ DLP/ Endpoint devices Computer / Laptops / Printers
1 Comment
DY
So couple of point for IOT devices. You can leverage with IOT Hub in Azure. Most IOT devices uses C as their programming language you will probaly need to...Read more
Splunk SOAR (Security Orchestration, Automation and Response) has no discussions with answers
Hunting for software insights?
With over 3 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
