Azure Sentinel is a cloud-native security information and event manager (SIEM) platform that uses built-in AI to help analyze large volumes of data across an enterprise-fast. Azure Sentinel aggregates data from all sources including users, applications, servers, and devices running on-premises or in the cloud, letting you reason over millions of records in a few seconds. It includes built-in connectors for easy onboarding of popular security solutions. Azure Sentinel collects data from any source with support for open standard formats like CEF and Syslog.
6 июл 2024
