Are you using Microsoft Sentinel? Richard talks to Cloud Security Advocate Sarah Young about Sentinel, Microsoft's Security Information and Event Management (SIEM) solution. Sarah talks about the role of the SIEM in creating a common place for all security-related data to arrive. She mentions some of the many tools in the Microsoft suite to feed into Sentinel - Defender for Endpoints, Identity, and Cloud as examples. Specialized analysis tools send summaries to Sentinel, but Sentinel can also process raw logs as well - make sure you need the data because billing for Sentinel is connected to the number of ingress sources. There's a lot to learn, but also a lot of great documentation and information to work from. Check the show notes for links!
Links:
Recorded April 6, 2023
MLOps + DevOps + Kubernetes with Annie Talvasto
Identity Governance with Jef Kazimer
SQL Server and AI with Muazma Zahid & Bob Ward
PowerShell 7.4 with Sydney Smith
GitHub Copilot with Damian Brady
Securing AI with Sarah Young
Microsoft Copilot for Security with George Coldham
GitHub for SysAdmins with April Edwards
From SysAdmin to Platform Engineer with Steve Buchanan
Understanding Large Language Models with Jodie Burchell
Upgrading TLS with Scott Helme
Copilot Governance with Martina Grom
Windows Server vNext with Jeff Woolsey
Maximizing Metadata with Emily Mancini
Managing Cloud Native with Brendan Burns
Software Licensing in 2024 with Mary Jo Foley
AI for IT with Gil Pekelman
Copilots for Power Platform with April Dunnam
Hardening Active Directory with Jerry Devore
Doing More with Less in 2024 with Erin Chapple
Create your
podcast in
minutes
It is Free
.NET Rocks!
Hanselminutes with Scott Hanselman
.NET Rocks!
Mondays