sentinel

Microsoft Sentinel

product security

Azure Sentinel

in plain english

Cloud-native SIEM + SOAR — collect logs from anywhere (Microsoft, AWS, GCP, on-prem, third-party SaaS), hunt threats with KQL, and automate response with playbooks.

official microsoft definition

A scalable, cloud-native security information and event management (SIEM) solution with built-in security orchestration, automation, and response (SOAR) capabilities, powered by AI.

plans & eligibility

Pay-as-you-go (per GB ingested) or commitment tiers
Some Microsoft data sources free (sign-in logs, etc.)

$ open portal → microsoft learn docs →

related on aguidetocloud

/microsoft-sentinel

verified 2026-05-04

in plain english

official microsoft definition

plans & eligibility

related on aguidetocloud

certs