Microsoft Azure Sentinel: Planning and implementing Microsoft’s cloud-native SIEM solution (IT Best Practices - Microsoft Press)
<div>Using Microsoft’s cloud-based Azure Sentinel, security organizations can leverage the full power of advanced artificial intelligence to automate threat identification and response – without the management complexity and scalability challenges of conventional SIEM solutions. In <i> <b> <b>Microsoft Azure Sentinel</b> </b> </i>, three of Microsoft’s leading Azure Sentinel experts review the problems Azure Sentinel can solve, and guide you step-by-step through planning, deployment, and day-to-day usage. Leveraging unsurpassed expertise helping early customers succeed with Azure Sentinel, they offer the most thorough, practical, and authoritative coverage available. Topics include:</div> <div> <ul> <li>Understanding Azure Sentinel’s cloud-native SIEM approach, its advantages, and adoption considerations</li> <li>Configuring workspaces and ingesting data</li> <li>Understanding, creating, and validating Azure Sentinel analytics</li> <li>Managing and investigating cases</li> <li>Hunting threats and creating new queries</li> <li>Working with Jupyter and Community Notebooks</li> <li>Magnifying your capabilities through Playbooks and automation</li> <li>Visualizing data and taking full advantage of Azure Sentinel dashboards</li> <li>Integrating with partners and other third-parties, including Fortinet, AWS, and Palo Alto</li> </ul> </div> <div> <br> </div>