Introduction to Azure Sentinel. Part 1 - Foundations
Вставка
- Опубліковано 7 сер 2024
- Azure Sentinel is a cloud-native security information and event manager (SIEM) platform that uses built-in AI to help analyze large volumes of data across an enterprise-fast. Azure Sentinel aggregates data from all sources including users, applications, servers, and devices running on-premises or in the cloud, letting you reason over millions of records in a few seconds. It includes built-in connectors for easy onboarding of popular security solutions. Azure Sentinel collects data from any source with support for open standard formats like CEF and Syslog.
- Наука та технологія
Just started learning sentinel this video is amazing thank you
00:02 Introduction
02:17 SOC Challenges
07:05 Introducing Azure Sentinel
17:04 Infrastructure Setup, Maintenance and Cost
19:27 Integration
21:20 Demo - Basics of Sentinel, Azure Active Directory, Azure Activity, Office 365, 3rd Party Examples
27:25 Demo - Logs and Charts, Analytics - Rule Sets and Policies, Incidents, Workbooks and Threat Intelligence Preview
49:44 Q&A
thanks for putting this up
Awesome -
Hi sir these are very helpful can you guide for more information or videos