Implementing and Administering Microsoft Sentinel

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!

Grab it

Learn how to implement and administer Azure Sentinel, a cloud-native security event and information management (SEIM) system that detects threats while automating threat responses.

Syllabus

Introduction

Need a central point of analysis for security events?
What you should know
Lab setup

1. Introduction and Concepts

Sentinel feature flyover
Onboarding Microsoft Sentinel
Kusto query language quickstart

2. Configuring Microsoft Sentinel

Connecting Microsoft services
Connecting external services
Integrating threat intelligence

3. Threat Detection, Investigation, and Response

Detecting threats
Investigating incidents
Responding to threats with playbooks
Security orchestration, automation, and response (SOAR)
UEBA and machine learning

4. Advanced Threat Hunting Scenarios

Threat hunting basics
Hunting with bookmarks
Hunting with notebooks
Workbooks and dashboards
Integrating with M365 Defender

Conclusion

Next steps

Taught by

Pete Zerger

Reviews

4.8 rating at LinkedIn Learning based on 64 ratings

Start your review of Implementing and Administering Microsoft Sentinel

Taught by

Cloud-native security operations with Microsoft Sentinel

SC-200: Create detections and perform investigations using Microsoft Sentinel

Configure SIEM security operations using Microsoft Sentinel

Configure SIEM Security Operation using Microsoft Sentinel

Mitigate Threats Using Microsoft Sentinel

Manage Security Operations

300+ Courses to Prepare your Microsoft Azure Certification

10 Best Machine Learning Courses for 2024: Scikit-learn, TensorFlow, and more

110+ Hours of Free LinkedIn Learning Courses with Free Certification

Never Stop Learning.