Implementing and Administering Azure Sentinel
Offered By: LinkedIn Learning
Course Description
Overview
Learn how to implement and administer Azure Sentinel, a cloud-native security event and information management (SEIM) system that detects threats while automating threat responses.
Syllabus
Introduction
- Need a central point of analysis for security events?
- What you should know
- Lab setup
- Sentinel feature flyover
- Onboarding Microsoft Sentinel
- Kusto query language quickstart
- Connecting Microsoft services
- Connecting external services
- Integrating threat intelligence
- Detecting threats
- Investigating incidents
- Responding to threats using automation
- Security orchestration, automation, and response (SOAR)
- UEBA and machine learning
- Threat hunting basics
- Hunting with bookmarks
- Hunting with notebooks
- Workbooks and dashboards
- Integrating with Microsoft Defender and Purview
- Next steps
Taught by
Pete Zerger
Related Courses
Architecting Microsoft Azure SolutionsMicrosoft via edX Internetwork Security
Indian Institute of Technology, Kharagpur via Swayam Network Security
Georgia Institute of Technology via Udacity Microsoft Professional Orientation : Cloud Administration
Microsoft via edX Cyber Threats and Attack Vectors
University of Colorado System via Coursera