When to use Azure Sentinel
Azure Sentinel is a solution for performing security operations on your cloud and on-premises environments.
Use Azure Sentinel if you want to:
- Collect event data from various sources.
- Perform security operations on that data to identify suspicious activity.
Security operations could include:
- Visualization of log data.
- Anomaly detection.
- Threat hunting.
- Security incident investigation