Are you using Microsoft Sentinel? Richard talks to Cloud Security Advocate Sarah Young about Sentinel, Microsoft's Security Information and Event Management (SIEM) solution. Sarah talks about the role of the SIEM in creating a common place for all security-related data to arrive. She mentions some of the many tools in the Microsoft suite to feed into Sentinel - Defender for Endpoints, Identity, and Cloud as examples. Specialized analysis tools send summaries to Sentinel, but Sentinel can also process raw logs as well - make sure you need the data because billing for Sentinel is connected to the number of ingress sources. There's a lot to learn, but also a lot of great documentation and information to work from. Check the show notes for links!
Links:
Recorded April 6, 2023
Bringing Viva into your Intranet with Tracy van der Schyff
Getting Beyond Internet Explorer with Joel Hawks
Modern Client Management with Julie Andreacola
SQL Q&A from SQL Server & Azure SQL Conference Fall 2021
Getting a Security Audit with Paula Januszkiewicz
Getting Certificates Right using Intune with Richard Hicks
DevSecOps in 2022 with Jess Dodson
IT in 2022
Hybrid Identity with Sonia Cuff
Deprecating Basic Auth with Greg Taylor
Your Adaptability Quotient with Sara Caldwell and Angela Dugan
IT Christmas Gifts with Joey Snow and Rick Claus
Windows 11 is Released with Mary Jo Foley
Cloud Security Thoughts with Corey Quinn
Chaos Engineering with Julie Gunderson
Show 800!
The Rise of Ransomware with Ann Johnson
From Citrix Cloud to Azure Virtual Desktop with Aidan Finn
Azure Communication Services with Mary Anne Noskowski
PrintNightmare with Jeremy Moskowitz
Create your
podcast in
minutes
It is Free
.NET Rocks!
Hanselminutes with Scott Hanselman
.NET Rocks!