Azure Sentinel: What is it?
ฝัง
- เผยแพร่เมื่อ 25 ก.ค. 2024
- Chapters in the video:
00:00 Introduction
00:22 Introducing Azure Sentinel
01:13 About Azure Sentinel
02:14 Azure Sentinel at a glance (architecture)
03:12 Multi-Tenant Capable (MSSP)
03:36 Pricing
04:33 Forrester Total Economic Impact Study
05:11 Collect security data from all sources across the organization
06:46 What data can be ingested at no cost?
06:53 Detect threats out-of-the-box
07:45 Investigate threats with AI and hunt suspicious activities at scale
08:23 Visualize and monitor your data
09:01 Respond rapidly with built-in orchestration and automation
10:21 Proactively hunt for threats across the organization
11:15 Jupyter notebooks to hunt for security threats
12:08 User & Entity Behavior Analytics
13:00 Out-of-the-box and customizable SOC incident metrics
13:46 Watchlists (Preview)
14:38 Resources
Link to deck used in the video: www.slideshare.net/MattSosema...
Why Use Jupyter for Security Investigations?techcommunity.microsoft.com/t... - วิทยาศาสตร์และเทคโนโลยี
What a great overview and perfect timing for me to dig in! cant wait for the next vid. Thanks!
i'll do my home work :)
Outstanding update, thanks Matt!
Great video! This is the perfect SIEM tool for companies but especially for those already invested in the Microsoft 365/Azure infrastructure.
Thanks Matt, informative video.
Awesome vid .. learnt heaps .. thanks
Great video!
Helpfull
Awesome presentation, do you have the Powerpoint presentation available? my version does not interact with the dashboard
The PPT is available in the video description
Hey Matt, great explanation skills you got there. However I was wondering if it's possible to stream the alerts and incidents to a different ticketing system like ServiceNow, ConnectWise etc. Please answer.
Yes that’s possible using a playbook
@@MattSoseman Would it be possible to please explain with a few steps on this? It will be really helpful.
Absolutely, I’ll do a video on it in the coming weeks. Here’s more info in the meantime techcommunity.microsoft.com/t5/azure-sentinel/azure-sentinel-incident-bi-directional-sync-with-servicenow/ba-p/1667771
Great video as always. Could you please share the slide deck?
It’s in the link in the video description
@@MattSoseman thanks.
Great video as always! How about something on the new MS Web content Filter, currently in beta?
Send me a link!
@@MattSoseman docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering#turn-on-web-content-filtering
Oh that, I do have a video on that :) th-cam.com/video/XQ3TmOTP5jw/w-d-xo.html
@@MattSoseman Perfect, thanks!
As always - Great Video Matt. Bummer that to download the resources, you need a paid account.
Huh?