Use resource RBAC to enable multiple teams to use a single workspace. Use KQL queries in Azure Sentinel across workspaces to combine multiple workspaces into a single system.Learn how to manage Azure Sentinel using CD/CI methodology and a GitHub repository in Deploying and Managing Azure Sentinel as Code as well as extend this capability across workspaces and tenants using Azure Lighthouse.You may also want to register for the MSSP and distributed organization webinar on April 20th here.The first half of the Webinar above discusses Azure Sentinel’s workspace architecture. Multiple workspaces are often necessary and can act together as a single Azure Sentinel system. Azure Sentinel and Log Analytics pricing pagesīackToTop Advanced (Security Analyst) Technical overview (Level 200)īackToTop Cloud architecture and multi-workspace/tenant supportĪn Azure Sentinel instance is called a workspace.What is the typical use case for Azure Sentinel? What are customers finding in it, and also, how is it priced? All in this presentation Using the new built-in URL detonation in Azure SentinelīackToTop Azure Sentinel role (Level 200).You can read more about the features described in the Webinar here: If you want to get an initial overview of Azure Sentinel’s technical capabilities Improve security with Azure Sentinel, a cloud-native SIEM and SOAR solution.Global prerequisites + create a Log Analytics workspace.What is Azure Sentinel? - Introduction Video 1, Video 2.(The real beginning!) Azure Fundamentals Learning Path.Beginner (BDM, presales roles) The Basics Roadmap - since it requires an NDA, contact your Microsoft contact for details. This overview is based on the Blog post “Become an Azure Sentinel Ninja: The Complete Level 400 Training created by Ofer ShezafĪs not everyone has the same maturity level when starting their Azure Sentinel Learning Path, I created, with the help of Javier Soriano, a 3 level (Beginner/Advanced/Expert) approach to get to the level you want, often related to your role in the organisation.Ĭloud architecture and multi-workspace/tenant supportĭeploying and Managing Azure Sentinel as Code
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |