Thanks for the great video - How do you see this co-existing with Sentinel? It feels like this could have been developed within Sentinel, rather than as a separate interface for the analyst to interact with. Or am I missing something (it’s usually the case!).
Sentinel is a SIEM covering more than just Microsoft security products (such as firewalls, Othrr clouds, network devices etc) whereas MTP is only for specific Microsoft security products. That’s the difference. Also the investigation playbooks are built into MTP and maintained by Microsoft whereas with Sentinel you need to create them.
Matt Soseman thank you. One last question, if you don’t mind, I was searching for the release date of this. There seems to be quite a few articles on this from July 2020, but I also found this article from 2018 techcommunity.microsoft.com/t5/microsoft-security-and/announcing-microsoft-threat-protection/ba-p/262783. Are these one and the same?
Great video Matt, really useful / thanks / taking a look thru the docs link now
Woot! that's the demo Environment that I built!
I’m blown away by the ongoing development of ATP. Seriously impressed and grateful for the content👍🏻
Thanks for great overview. Is this what you would see as a m365 siem + soar alternative to the azure sentinel siem + soar experience?
Thanks for the great video - How do you see this co-existing with Sentinel? It feels like this could have been developed within Sentinel, rather than as a separate interface for the analyst to interact with. Or am I missing something (it’s usually the case!).
Sentinel is a SIEM covering more than just Microsoft security products (such as firewalls, Othrr clouds, network devices etc) whereas MTP is only for specific Microsoft security products. That’s the difference. Also the investigation playbooks are built into MTP and maintained by Microsoft whereas with Sentinel you need to create them.
Matt Soseman thank you. One last question, if you don’t mind, I was searching for the release date of this. There seems to be quite a few articles on this from July 2020, but I also found this article from 2018 techcommunity.microsoft.com/t5/microsoft-security-and/announcing-microsoft-threat-protection/ba-p/262783. Are these one and the same?
Very cool.