Switch SIEM Vendor from Splunk to Microsoft Sentinel

CR-011 - Threat Detection & Response

Approved

Type

Technical

Priority

High

Requested By

Ben Wright

2024-11-10

Assigned To

Karen Okonkwo

Decided 2024-11-25

Description

Cost-benefit analysis favours Microsoft Sentinel given existing Microsoft 365 investment.

Impact Assessment

Annual licensing savings of $180K. 3-week delay for re-architecture.