Update Reports

General Topics

Azure Services Categories

Microsoft Sentinel

Cloud-native SIEM and intelligent security analytics.
Service Profile Videos Learning

Learning

Learning Paths

Configure SIEM security operations using Microsoft Sentinel

Configure SIEM security operations using Microsoft Sentinel
Published: 10/23/2023, Length: 5:11:00

Configure Security Information and Event Management (SIEM) operations using Microsoft Sentinel

Levels: Intermediate

Roles: Security Operations Analyst

Modules

Analyze monitoring data with Kusto Query Language

Analyze monitoring data with Kusto Query Language
Published: 7/4/2023, Length: 3:49:00

Learn how to analyze data in Azure Monitor using Kusto Query Language (KQL).

Levels: Beginner, Intermediate, Advanced

Roles: Business Analyst, Data Analyst, Data Engineer, Data Scientist, Developer, DevOps Engineer, Security Operations Analyst, Technology Manager

Modules

Data analysis with Kusto Query Language

Data analysis with Kusto Query Language
Published: 6/28/2023, Length: 2:34:00

Learn how to analyze data using the Kusto Query Language.

Levels: Beginner, Intermediate, Advanced

Roles: Business Analyst, Data Analyst, Data Scientist, Developer, Security Operations Analyst, Data Engineer, Technology Manager

Modules

Protect public sector data in Azure

Protect public sector data in Azure
Published: 5/1/2023, Length: 0:41:00

Learn to design conceptual architecture for data classifications using data residency for Microsoft 365 and Dynamics 365 services while utilizing Azure regions and Customer lockbox. Manage breach notifications in Service Trust Portal and Microsoft Defender for Cloud. And encrypt data throughout its lifecycle.

Levels: Intermediate

Roles: Business User

Modules

SC-200: Perform threat hunting in Microsoft Sentinel

SC-200: Perform threat hunting in Microsoft Sentinel
Published: 2/17/2023, Length: 2:21:00

SC-200: Perform threat hunting in Microsoft Sentinel

Levels: Intermediate

Roles: Security Operations Analyst

Modules

SC-200: Create queries for Microsoft Sentinel using Kusto Query Language (KQL)

SC-200: Create queries for Microsoft Sentinel using Kusto Query Language (KQL)
Published: 9/14/2022, Length: 2:03:00

SC-200: Create queries for Microsoft Sentinel using Kusto Query Language (KQL)

Levels: Intermediate

Roles: Security Operations Analyst

Modules

Cloud-native security operations with Microsoft Sentinel

Cloud-native security operations with Microsoft Sentinel
Published: 9/14/2022, Length: 6:19:00

This learning path describes basic architecture, core capabilities, and primary use cases of its products. You'll also learn about differences and Get familiar with Microsoft Sentinel, a cloud-native, security information and event management (SIEM) service.

Levels: Beginner

Roles: Administrator, DevOps Engineer, Security Engineer, Solution Architect

Modules

SC-200: Configure your Microsoft Sentinel environment

SC-200: Configure your Microsoft Sentinel environment
Published: 9/14/2022, Length: 2:00:00

SC-200: Configure your Microsoft Sentinel environment

Levels: Intermediate

Roles: Security Operations Analyst

Modules

Develop an instrumentation strategy

Develop an instrumentation strategy
Published: 9/14/2022, Length: 7:30:00

Develop an effective instrumentation strategy through logging, telemetry, and monitoring and prepare for Exam AZ-400: Designing and Implementing Microsoft DevOps Solutions.

Levels: Beginner

Roles: DevOps Engineer, Administrator, Developer, Solution Architect

Modules

SC-200: Connect logs to Microsoft Sentinel

SC-200: Connect logs to Microsoft Sentinel
Published: 9/14/2022, Length: 2:54:00

SC-200: Connect logs to Microsoft Sentinel

Levels: Intermediate

Roles: Security Operations Analyst

Modules

SC-200: Create detections and perform investigations using Microsoft Sentinel

SC-200: Create detections and perform investigations using Microsoft Sentinel
Published: 9/14/2022, Length: 5:19:00

SC-200: Create detections and perform investigations using Microsoft Sentinel

Levels: Intermediate

Roles: Security Operations Analyst

Modules

Learning Modules

Configure and manage threat protection by using Microsoft Defender for Cloud
Configure and manage threat protection by using Microsoft Defender for Cloud
Published: 1/2/2024, Length: 0:58:00
This module focuses on configuring and managing security monitoring and automation solutions using Azure Monitor and Microsoft Sentinel, enabling organizations to proactively identify and respond to security incidents in their cloud environment.
Configure and manage security monitoring and automation solutions
Configure and manage security monitoring and automation solutions
Published: 12/28/2023, Length: 0:44:00
This module focuses on configuring and managing security monitoring and automation solutions using Azure Monitor and Microsoft Sentinel, enabling organizations to proactively identify and respond to security incidents in their cloud environment.
Configure SIEM security operations using Microsoft Sentinel
Configure SIEM security operations using Microsoft Sentinel
Published: 10/9/2023, Length: 1:15:00
Configure security information and event management (SIEM) security operations using Microsoft Sentinel.
Explore the fundamentals of data analysis using Kusto Query Language (KQL)
Explore the fundamentals of data analysis using Kusto Query Language (KQL)
Published: 6/27/2023, Length: 0:34:00
Learn about the basics of Kusto Query Language (KQL), and the various Microsoft products that use it.
Threat hunting with Microsoft Sentinel
Threat hunting with Microsoft Sentinel
Published: 5/25/2023, Length: 1:05:00
Learn how to proactively identify threat behaviors by using Microsoft Sentinel queries.
Security incident management in Microsoft Sentinel
Security incident management in Microsoft Sentinel
Published: 5/24/2023, Length: 1:05:00
Learn about security incidents, incident evidence and entities, incident management, and how to use Microsoft Sentinel to handle incidents.
Data normalization in Microsoft Sentinel
Data normalization in Microsoft Sentinel
Published: 5/23/2023, Length: 0:24:00
Data normalization in Microsoft Sentinel
Improve your cloud security posture with Microsoft Defender for Cloud
Improve your cloud security posture with Microsoft Defender for Cloud
Published: 5/18/2023, Length: 1:12:00
Learn how you can strengthen your security posture through Microsoft Defender for Cloud.
Microsoft Defender for Cloud Apps SIEM integration
Microsoft Defender for Cloud Apps SIEM integration
Published: 5/18/2023, Length: 0:36:00
Learn how to connect Microsoft Sentinel and other SIEM solutions to Microsoft Defender for Cloud Apps.
Safeguard public sector data with Azure
Safeguard public sector data with Azure
Published: 5/17/2023, Length: 0:42:00
Conceptual introduction to data residency and sovereignty and overview of the options provided by Azure for public agencies to protect their data in the cloud.
Connect data to Microsoft Sentinel using data connectors
Connect data to Microsoft Sentinel using data connectors
Published: 5/17/2023, Length: 0:22:00
Connect data to Microsoft Sentinel using data connectors
Query logs in Microsoft Sentinel
Query logs in Microsoft Sentinel
Published: 5/17/2023, Length: 0:18:00
Query logs in Microsoft Sentinel