No video :(

Azure Sentinel: What is it?

Подписаться 13 тыс.

Просмотров 8 тыс.

50% 1

Chapters in the video:
00:00 Introduction
00:22 Introducing Azure Sentinel
01:13 About Azure Sentinel
02:14 Azure Sentinel at a glance (architecture)
03:12 Multi-Tenant Capable (MSSP)
03:36 Pricing
04:33 Forrester Total Economic Impact Study
05:11 Collect security data from all sources across the organization
06:46 What data can be ingested at no cost?
06:53 Detect threats out-of-the-box
07:45 Investigate threats with AI and hunt suspicious activities at scale
08:23 Visualize and monitor your data
09:01 Respond rapidly with built-in orchestration and automation
10:21 Proactively hunt for threats across the organization
11:15 Jupyter notebooks to hunt for security threats
12:08 User & Entity Behavior Analytics
13:00 Out-of-the-box and customizable SOC incident metrics
13:46 Watchlists (Preview)
14:38 Resources
Link to deck used in the video: www.slideshare...
Why Use Jupyter for Security Investigations?techcommunity....

Опубликовано:

15 авг 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 23

@Semtx552 3 года назад

What a great overview and perfect timing for me to dig in! cant wait for the next vid. Thanks! i'll do my home work :)

@tmaund1 3 года назад

Outstanding update, thanks Matt!

@rezapalizban 3 года назад

Great video! This is the perfect SIEM tool for companies but especially for those already invested in the Microsoft 365/Azure infrastructure.

@Blizardde 3 года назад

Thanks Matt, informative video.

@inkironmojo775 3 года назад

Awesome vid .. learnt heaps .. thanks

@irfankazi3518 2 месяца назад

Helpfull

@MoreLaterDude 3 года назад

Great video!

@OZDutchy 3 года назад

Great video as always. Could you please share the slide deck?

@MattSoseman 3 года назад

It’s in the link in the video description

@OZDutchy 3 года назад

@@MattSoseman thanks.

@steveanderson1779 3 года назад

Awesome presentation, do you have the Powerpoint presentation available? my version does not interact with the dashboard

@MattSoseman 3 года назад

The PPT is available in the video description

@sethzwicker3631 3 года назад

Great video as always! How about something on the new MS Web content Filter, currently in beta?

@MattSoseman 3 года назад

Send me a link!

@sethzwicker3631 3 года назад

@@MattSoseman docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering#turn-on-web-content-filtering

@MattSoseman 3 года назад

Oh that, I do have a video on that :) ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-XQ3TmOTP5jw.html

@sethzwicker3631 3 года назад

@@MattSoseman Perfect, thanks!

@mikehobbs6060 2 года назад

As always - Great Video Matt. Bummer that to download the resources, you need a paid account.

@MattSoseman 2 года назад

Huh?

@yashmudaliar6590 3 года назад

Hey Matt, great explanation skills you got there. However I was wondering if it's possible to stream the alerts and incidents to a different ticketing system like ServiceNow, ConnectWise etc. Please answer.

@MattSoseman 3 года назад

Yes that’s possible using a playbook

@yashmudaliar6590 3 года назад

@@MattSoseman Would it be possible to please explain with a few steps on this? It will be really helpful.

@MattSoseman 3 года назад

Absolutely, I’ll do a video on it in the coming weeks. Here’s more info in the meantime techcommunity.microsoft.com/t5/azure-sentinel/azure-sentinel-incident-bi-directional-sync-with-servicenow/ba-p/1667771