Are you using Microsoft Sentinel? Richard talks to Cloud Security Advocate Sarah Young about Sentinel, Microsoft's Security Information and Event Management (SIEM) solution. Sarah talks about the role of the SIEM in creating a common place for all security-related data to arrive. She mentions some of the many tools in the Microsoft suite to feed into Sentinel - Defender for Endpoints, Identity, and Cloud as examples. Specialized analysis tools send summaries to Sentinel, but Sentinel can also process raw logs as well - make sure you need the data because billing for Sentinel is connected to the number of ingress sources. There's a lot to learn, but also a lot of great documentation and information to work from. Check the show notes for links!
Links:
Recorded April 6, 2023
Getting the most from your Cloud Database with Jes Schultz
Looking at the Windows Server 2022 Preview with Robert Smit
Governing your Cloud VMs using Azure Automanage with Phoummala Schmitt
Azure Security Center with Yuri Diogenes
Managing Digital Transformation with Stephanie Donahue
The Hafnium Exchange Exploits with Tony Redmond
Data Governance using Azure Purview with Laurie Litwack
Securing Teams with Tobias Zimmergren
Migrating to Azure SQL with Anna Hoffman
The Evolution of Your IT Career with Michael Levan
Source Control for IT Pros with Nicole Stevens
The Vastaamo Ransomware Event with Sami Laiho
Secrets Management in PowerShell with Sydney Smith
Microsoft 365 for Small Business with Ian Williamson
The Technology of Work Life Balance with Heather Newman
PowerShell Crescendo with Jason Helmick
Doing More using Teams with Christina Wheeler
Disaster Recovery Strategies to Fight Ransomware with Dave Kawula
Productivity in 2021 with Ulrika Hedlund
IT in 2021
Create your
podcast in
minutes
It is Free
.NET Rocks!
Hanselminutes with Scott Hanselman
.NET Rocks!