Sign in to confirm you’re not a bot
This helps protect our community. Learn more

Microsoft Security Insights

Microsoft Reactor
114K subscribers
<__slot-el>
<__slot-el>
288 views Streamed 2 years ago
Tune in! Microsoft Security Insights is a weekly podcast that provides information, news, and tips on Microsoft Security Solutions including Microsoft Sentinel, Microsoft 365 Defender, Azure, and Microsoft 365. We will now deliver one of our sessions as a Live Stream through Microsoft Reactor on the 3rd Wednesday of each month. The show is hosted by Edward Walton, Frank Grimberg, Rod Trent, and Brodie Cassell with guest speakers showcasing their security expertise. Want to learn more about the hosts, their show, and previous discussions? Find show details and past episodes at the podcast's home page: https://microsoftsecurityinsights.com/ Join MSI's discord:   / discord   In this month's Reactor episode, we are joined by Matt Zorich who will discuss DART - KQL goodness. Helpful resources: Matt's KQL Repo: https://github.com/reprise99/Sentinel... ​John Savill GitHub: https://www.youtube.com/results?searc... Microsoft Sentinel with KQL: htt ...more
...more
Microsoft Security Insights
Tune in! Microsoft Security Insights is a weekly podcast that provides information, news, and tips on Microsoft Security Solutions including Microsoft Sentinel, Microsoft 365 Defender, Azure, and Microsoft 365. We will now deliver one of our sessions as a Live Stream through Microsoft Reactor on the 3rd Wednesday of each month. The show is hosted by Edward Walton, Frank Grimberg, Rod Trent, and Brodie Cassell with guest speakers showcasing their security expertise. Want to learn more about the hosts, their show, and previous discussions? Find show details and past episodes at the podcast's home page: https://microsoftsecurityinsights.com/ Join MSI's discord:   / discord   In this month's Reactor episode, we are joined by Matt Zorich who will discuss DART - KQL goodness. Helpful resources: Matt's KQL Repo: https://github.com/reprise99/Sentinel... ​John Savill GitHub: https://www.youtube.com/results?searc... Microsoft Sentinel with KQL: https://aka.ms/stringdataMSI Microsoft Security Analyst Exam: https://aka.ms/ExamSC200MSI KQL Repo: https://github.com/rod-trent/MustLear... Guest speaker: Matt Zorich, Cyber Security Operations Specialist from Western Australia. He works in the mining and energy sector and has overseen onboarding Sentinel as the primary SIEM over the last couple of years. He has an extensive background in Active Directory and Azure Active Directory. He was awarded the Microsoft MVP award in May 2022 for Microsoft Azure. He runs the Learn Sentinel blog (https://learnsentinel.blog) and has been sharing a KQL hunting query per day for nearly a year now under the #365daysofKQL hashtag on Twitter. He has a young family that loves traveling and he is an absolute hoops fanatic, both watching and playing. Hosts: Edward Walton, Global Black Belt (Security Data Analytics), Microsoft Edward Walton (CISSP) is a Security, XDR/MDR and Threat GBB with Microsoft Americas with a focus on Microsoft Sentinel, Azure Security and Microsoft Defender Frank Grimberg, Principal Consultant, Prosoft Systems Intl Frank Grimberg (GCFA, OSCP, MCT) is a Cybersecurity consultant focused on Microsoft security solutions. He is the courseware author of the Microsoft Official Technical curriculum for the SC-200: Microsoft Security Operations Analyst.   / frankgrimberg     / frank_grimberg   Rod Trent, Cloud Security Advocate and Global Microsoft Sentinel SME at Microsoft Rod Trent is a Cloud Security Advocate for Microsoft and a Microsoft Sentinel global SME. He is a husband, dad, and first-time grandfather. In his spare time (if such a thing does truly exist), you can regularly find him simultaneously watching Six Million Dollar Man TV show episodes and writing KQL queries.   / rodtrent     / rodtrent   Brodie Cassell, Senior consultant, Microsoft Brodie Cassell (CISSP) is a Security, Compliance, and Identity consultant with Microsoft Canada.   / brodiecassell   [eventID:16547]

Follow along using the transcript.

Microsoft Reactor

114K subscribers
Live chat replay is not available for this video.