It has been a year since Sentinel, Microsoft Azure-based security platform, was made generally available. Enterprise cloud users will now be prompted to send more security data and logs to Azure to detect malicious threats due to bizarre behavior.
Sentinel offers clients the choice of no hardware setup, which means they don’t have to buy individual hardware for the SIEM solution. The current pay-as-you-go pricing is $2.46/GB of data analyzed by the Azure Sentinel SIEM solution.
The Sentinel UEBA platform allows clients to detect insider and unknown system threats. It is available as part of the preview and functions by creating a behavior profile of the device or the user to identify threats.
Reference: https://enterprisetalk.com/quick-bytes/new-analytics-to-help-azure-based-sentinel-identify-threats/
