9780136485452-0136485456-Microsoft Azure Sentinel: Planning and implementing Microsoft’s cloud-native SIEM solution (IT Best Practices - Microsoft Press)

Microsoft Azure Sentinel: Planning and implementing Microsoft’s cloud-native SIEM solution (IT Best Practices - Microsoft Press)

4.2 Rate this book
ISBN-13: 9780136485452
ISBN-10: 0136485456
Edition: 1
Author: Yuri Diogenes, Nicholas DiCola, Jonathan Trull
Publication date: 2020
Publisher: Microsoft Press
Format: Paperback 208 pages
FREE US shipping
Sell
Get cash immediately!

Book details

ISBN-13: 9780136485452
ISBN-10: 0136485456
Edition: 1
Author: Yuri Diogenes, Nicholas DiCola, Jonathan Trull
Publication date: 2020
Publisher: Microsoft Press
Format: Paperback 208 pages

Summary

Microsoft Azure Sentinel: Planning and implementing Microsoft’s cloud-native SIEM solution (IT Best Practices - Microsoft Press) (ISBN-13: 9780136485452 and ISBN-10: 0136485456), written by authors Yuri Diogenes, Nicholas DiCola, Jonathan Trull, was published by Microsoft Press in 2020. With an overall rating of 4.2 stars, it's a notable title among other Business Technology (Cloud Computing, Networking & Cloud Computing) books. You can easily purchase or rent Microsoft Azure Sentinel: Planning and implementing Microsoft’s cloud-native SIEM solution (IT Best Practices - Microsoft Press) (Paperback) from BooksRun, along with many other new and used Business Technology books and textbooks. And, if you're looking to sell your copy, our current buyback offer is $1.7.

Description

Microsoft Azure Sentinel

Plan, deploy, and operate Azure Sentinel, Microsoft’s advanced cloud-based SIEM

Microsoft’s cloud-based Azure Sentinel helps you fully leverage advanced AI to automate threat identification and response — without the complexity and scalability challenges of traditional Security Information and Event Management (SIEM) solutions. Now, three of Microsoft’s leading experts review all it can do, and guide you step-by-step through planning, deployment, and daily operations. Leveraging in-the-trenches experience supporting early customers, they cover everything from configuration to data ingestion, rule development to incident management… even proactive threat hunting to disrupt attacks before you’re exploited.

Three of Microsoft’s leading security operations experts show how to:

• Use Azure Sentinel to respond to today’s fast-evolving cybersecurity environment, and leverage the benefits of its cloud-native architecture

• Review threat intelligence essentials: attacker motivations, potential targets, and tactics, techniques, and procedures

• Explore Azure Sentinel components, architecture, design considerations, and initial configuration

• Ingest alert log data from services and endpoints you need to monitor

• Build and validate rules to analyze ingested data and create cases for investigation

• Prevent alert fatigue by projecting how many incidents each rule will generate

• Help Security Operation Centers (SOCs) seamlessly manage each incident’s lifecycle

• Move towards proactive threat hunting: identify sophisticated threat behaviors and disrupt cyber kill chains before you’re exploited

• Do more with data: use programmable Jupyter notebooks and their libraries for machine learning, visualization, and data analysis

• Use Playbooks to perform Security Orchestration, Automation and Response (SOAR)

• Save resources by automating responses to low-level events

• Create visualizations to spot trends, identify or clarify relationships, and speed decisions

• Integrate with partners and other third-parties, including Fortinet, AWS, and Palo Alto

Show more
Rate this book Rate this book

We would LOVE it if you could help us and other readers by reviewing the book

cookies

We use cookies to ensure website functionality: improve our services, personalize your experience, analyze performance and traffic, and process orders efficiently. To learn more, check our Privacy Policy.