Read The Azure Security compass (now Microsoft Security Best Practices) to understand the Microsoft blueprint for your security operations.Read more about our comprehensive SIEM+XDR solution combining Microsoft Sentinel and Microsoft Defender XDR.Use Microsoft Sentinel, Microsoft Defender for Cloud, and Microsoft Defender XDR together to protect your Microsoft workloads, including Windows, Azure, and Office: In this module, we present a few extra ways to use Microsoft Sentinel. Most of the modules in this course cover this use case. Many organizations use Microsoft Sentinel as their primary SIEM. Module 2: How is Microsoft Sentinel used? Microsoft named a Visionary in the 2021 Gartner Magic Quadrant for SIEM for Microsoft Sentinel.Azure Sentinel achieves a Leader placement in Forrester Wave, with top ranking in Strategy.Stuart Gregg, Security Operations Manager at ASOS, posted a much more detailed blog post from the Microsoft Sentinel experience, focusing on hunting.As is usual with security products, most organizations don't go public about it. Thousands of organizations and service providers are using Microsoft Sentinel. To learn how to get started, review the onboarding documentation, or view Insight's Microsoft Sentinel setup and configuration video. You'll find a more detailed overview in this Microsoft Sentinel webinar: YouTube, MP4, or presentation.įinally, do you want to try it yourself? The Microsoft Sentinel All-In-One Accelerator ( blog, YouTube, MP4, or presentation) offers an easy way to get started. You might also find the Quick Start Guide to Microsoft Sentinel useful (site registration is required). If you want to get an initial overview of Microsoft Sentinel's technical capabilities, the latest Ignite presentation is a good starting point. For more information, see What is Microsoft Sentinel?. It provides a single solution for alert detection, threat visibility, proactive hunting, and threat response. Microsoft Sentinel delivers security analytics and threat intelligence across the enterprise. Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution. Or you can email your question or issue to us at 1: Get started with Microsoft Sentinel Do you have a specific issue? Ask (or answer others) on the Microsoft Sentinel Tech Community.Contact your Customer Success Account Manager for more details. Are you a premier customer? You might want the on-site or remote, four-day Microsoft Sentinel Fundamentals Workshop.Do you have a feature idea to share with us? Let us know on the Microsoft Sentinel user voice page.If you're already skilled up on Microsoft Sentinel, keep track of what's new or join the Microsoft Cloud Security Private Community program for an earlier view into upcoming releases.For a broader, higher-level view of the Microsoft Security suite, you might also want to consider SC-900: Microsoft Security, Compliance, and Identity Fundamentals or AZ-500: Microsoft Azure Security Technologies. You can now become certified with the new certification SC-200: Microsoft Security Operations Analyst, which covers Microsoft Sentinel.See the referenced documentation for information about each article. Although the skill-up training is extensive, it naturally has to follow a script and can't expand on every topic.If you don't want to go as deep, or you have a specific issue to resolve, other resources might be more suitable: This skill-up training is a level-400 training that's based on the Microsoft Sentinel Ninja training. Part 1: Overview Module 0: Other learning and support options Module 21: Build-your-own machine learning.Module 20: Extending and integrating by using the Microsoft Sentinel APIs.Module 19: Monitoring Microsoft Sentinel's health.Module 18: User and Entity Behavior Analytics (UEBA).Module 16: A day in a SOC analyst's life, incident management, and investigation.Module 13: Workbooks, reporting, and visualization.Module 9: Advanced SIEM information model and normalization.Module 6: Enrichment: Threat intelligence, watchlists, and more.Module 3: Workspace and tenant architecture.Module 2: How is Microsoft Sentinel used?.Module 1: Get started with Microsoft Sentinel.Module 0: Other learning and support options.The modules listed here are split into five parts following the life cycle of a Security Operation Center (SOC): The training comprises 21 modules that present relevant product documentation, blog posts, and other resources. This article walks you through a level 400 training to help you skill up on Microsoft Sentinel.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |