Building on Microsoft Sentinel Platform
Overview
Explore the latest updates and capabilities of Microsoft Sentinel, a cloud-native SIEM platform, in this 26-minute conference talk from Microsoft Build 2022. Learn how to create codeless connectors, build custom solution guides, and contribute to the unified SIEM + XDR GitHub repository. Discover the Codeless Connector Platform (CCP) and its benefits, along with best practices for building connectors. Watch demonstrations on implementing the GWorkspace Admin Audit Solution and creating solutions based on connectors. Gain insights into Microsoft Sentinel's adoption, ecosystem, and community aspects, and find out how to get started with this powerful security tool for collecting, correlating, and analyzing data at cloud speed.
Syllabus
Introduction.
Microsoft Sentinel.
Adoption.
Ecosystem.
Community.
Platform.
What are Solutions?.
How to Build Solutions?.
Create SIEM Content.
Build data connectors without writing any code.
What is the Codeless Connector Platform?.
Why use CCP.
How to Build a Connector.
Best Practices.
GWorkspace Admin Audit Solution Demonstration.
How to build a solution on top of this connector (Demonstration).
Get Started Now!.
Closing Notes.
Taught by
Microsoft Developer