Azure Security Center Components and Relations with Other Services

One of the most common questions that we are receiving about Azure Sentinel is about its functionality compared with Azure Security Center. The diagram below is an attempt to describe the various components of Azure Security Center, its relation with other Azure services, including Azure Sentinel as well as the interaction with non-Azure services and devices. The diagram will be included in a more detailed, future article that will describe each component and how they interact with each other.

As one may deduct from this diagram, Azure Sentinel is a consumer of logs and alerts generated by Azure Security Center and Microsoft is making an effort in removing some areas that appear to overlap, such as processing of logs and alerts in Azure Security Center itself. However, most of the Azure Security Center functionality is totally distinct from Azure Sentinel and aggregates a wide range of security checks and controls for both endpoints and network device, Azure and non-Azure.

Azure Security Center Components

Close