• Complain

Yuri Diogenes - Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press)

Here you can read online Yuri Diogenes - Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press) full text of the book (entire story) in english for free. Download pdf and epub, get meaning, cover and reviews about this ebook. year: 2022, publisher: Microsoft Press, genre: Home and family. Description of the work, (preface) as well as reviews are available. Best literature library LitArk.com created for fans of good reading and offers a wide selection of genres:

Romance novel Science fiction Adventure Detective Science History Home and family Prose Art Politics Computer Non-fiction Religion Business Children Humor

Choose a favorite category and find really read worthwhile books. Enjoy immersion in the world of imagination, feel the emotions of the characters or learn something new for yourself, make an fascinating discovery.

No cover

Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press): summary, description and annotation

We offer to read an annotation, description, summary or preface (depends on what the author of the book "Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press)" wrote himself). If you haven't found the necessary information about the book — write in the comments, we will try to find it.

Build next-generation security operations with Microsoft Sentinel

Microsoft Sentinel is the scalable, cloud-native, security information and event management (SIEM) solution for automating and streamlining threat identification and response across your enterprise. Now, three leading experts guide you step-by-step through planning, deployment, and operations, helping you use Microsoft Sentinel to escape the complexity and scalability challenges of traditional solutions. Fully updated for the latest enhancements, this edition introduces new use cases for investigation, hunting, automation, and orchestration across your enterprise and all your clouds. The authors clearly introduce each service, concisely explain all new concepts, and present proven best practices for maximizing Microsoft Sentinels value throughout security operations.

Three of Microsofts leading security operations experts show how to:

  • Review emerging challenges that make better cyberdefense an urgent priority
  • See how Microsoft Sentinel responds by unifying alert detection, threat visibility, proactive hunting, and threat response
  • Explore components, architecture, design, and initial configuration
  • Ingest alerts and raw logs from all sources you need to monitor
  • Define and validate rules that prevent alert fatigue
  • Use threat intelligence, machine learning, and automation to triage issues and focus on high-value tasks
  • Add context with User and Entity Behavior Analytics (UEBA) and Watchlists
  • Hunt sophisticated new threats to disrupt cyber kill chains before youre exploited
  • Enrich incident management and threat hunting with Jupyter notebooks
  • Use Playbooks to automate more incident handling and investigation tasks
  • Create visualizations to spot trends, clarify relationships, and speed decisions
  • Simplify integration with point-and-click data connectors that provide normalization, detection rules, queries, and Workbooks

About This Book

  • For cybersecurity analysts, security administrators, threat hunters, support professionals, engineers, and other IT professionals concerned with security operations
  • For both Microsoft Azure and non-Azure users at all levels of experience

Yuri Diogenes: author's other books


Who wrote Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press)? Find out the surname, the name of the author of the book and a list of all author's works by series.

Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press) — read online for free the complete book (whole text) full work

Below is the text of the book, divided by pages. System saving the place of the last page read, allows you to conveniently read the book "Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press)" online for free, without having to search again every time where you left off. Put a bookmark, and you can go to the page where you finished reading at any time.

Light

Font size:

Reset

Interval:

Bookmark:

Make
Contents
Microsoft Sentinel Planning and implementing Microsofts cloud-native SIEM - photo 1
Microsoft Sentinel

Planning and implementing Microsofts cloud-native SIEM solution

Second Edition

Yuri Diogenes
Nicholas DiCola
Tiander Turpijn

Microsoft Sentinel Planning and implementing Microsofts cloud-native SIEM - photo 2

Microsoft Sentinel: Planning and implementing Microsofts cloud-native SIEM solution, Second Edition

Published with the authorization of Microsoft Corporation by:
Pearson Education, Inc.

Copyright 2023 by Pearson Education, Inc.

All rights reserved. This publication is protected by copyright, and permission must be obtained from the publisher prior to any prohibited reproduction, storage in a retrieval system, or transmission in any form or by any means, electronic, mechanical, photocopying, recording, or likewise. For information regarding permissions, request forms, and the appropriate contacts within the Pearson Education Global Rights & Permissions Department, please visit www.pearson.com/permissions

No patent liability is assumed with respect to the use of the information contained herein. Although every precaution has been taken in the preparation of this book, the publisher and author assume no responsibility for errors or omissions. Nor is any liability assumed for damages resulting from the use of the information contained herein.

ISBN-13: 978-0-13-790093-0

ISBN-10: 0-13-790093-7

Library of Congress Control Number: 2022942055

ScoutAutomatedPrintCode

TRADEMARKS

Microsoft and the trademarks listed at http://www.microsoft.com on the Trademarks webpage are trademarks of the Microsoft group of companies. All other marks are property of their respective owners.

WARNING AND DISCLAIMER

Every effort has been made to make this book as complete and as accurate as possible, but no warranty or fitness is implied. The information provided is on an "as is" basis. The author, the publisher, and Microsoft Corporation shall have neither liability nor responsibility to any person or entity with respect to any loss or damages arising from the information contained in this book or from the use of the programs accompanying it.

SPECIAL SALES

For information about buying this title in bulk quantities, or for special sales opportunities (which may include electronic versions; custom cover designs; and content particular to your business, training goals, marketing focus, or branding interests), please contact our corporate sales department at or (800) 382-3419.

For government sales inquiries, please contact .

For questions about sales outside the U.S., please contact .

EDITOR-IN-CHIEF

Brett Bartow

EXECUTIVE EDITOR

Loretta Yates

SPONSORING EDITOR

Charvi Arora

DEVELOPMENT EDITOR

Rick Kughen

MANAGING EDITOR

Sandra Schroeder

SENIOR PROJECT EDITOR

Tracey Croom

COPY EDITOR

Rick Kughen

INDEXER

Valerie Haynes Perry

PRODUCTION EDITOR

Dan Foster

PROOFREADER

Dan Foster

TECHNICAL EDITOR

Javier Soriano

EDITORIAL ASSISTANT

Cindy Teeters

COVER DESIGNER

Twist Creative, Seattle

COMPOSITOR

Danielle Foster

GRAPHICS

Vived Graphics

Pearsons Commitment to Diversity, Equity, and Inclusion

Pearson is dedicated to creating bias-free content that reflects the diversity of all learners. We embrace the many dimensions of diversity, including but not limited to race, ethnicity, gender, socioeconomic status, ability, age, sexual orientation, and religious or political beliefs.

Education is a powerful force for equity and change in our world. It has the potential to deliver opportunities that improve lives and enable economic mobility. As we work with authors to create content for every product and service, we acknowledge our responsibility to demonstrate inclusivity and incorporate diverse scholarship so that everyone can achieve their potential through learning. As the worlds leading learning company, we have a duty to help drive change and live up to our purpose to help more people create a better life for themselves and to create a better world.

Our ambition is to purposefully contribute to a world where:

  • Everyone has an equitable and lifelong opportunity to succeed through learning.

  • Our educational products and services are inclusive and represent the rich diversity of learners.

  • Our educational content accurately reflects the histories and experiences of the learners we serve.

  • Our educational content prompts deeper discussions with learners and motivates them to expand their own learning (and worldview).

While we work hard to present unbiased content, we want to hear from you about any concerns or needs with this Pearson product so that we can investigate and address them.

Please contact us with concerns about any potential bias at https://www.pearson.com/report-bias.xhtml.

Figure Credits

: mei yanotai/Shutterstock

: boreala/Shutterstock

: Kar/Shutterstock

: Vladislav Markin/123RF

: edel/Shutterstock

: mei yanotai/Shutterstock

: Oxford Designers & Illustrators Ltd./Pearson Education Ltd

: Dolvalol/Shutterstock

: Virustotal

: geoiplookup.net

: VectorForever/Shutterstock

: bspsupanut/123RF

: popcic/Shutterstock

Foreword

Microsoft Sentinel, formerly Azure Sentinel, was introduced in 2019 to help organizations modernize security operations in the cloud. At that time, security operations teamswho were under increasing pressure to extend coverage across a growing digital estate, combat escalating threats, and improve efficiencywere beginning to look to the cloud for alternatives to expensive and underperforming on-premises systems. Since then, tens of thousands of customers have adopted a cloud-first approach to power their data and compute-intensive security operations workloads, with Microsoft Sentinel becoming the solution of choice because of its cloud-native architecture and industry leading intelligence and analytics capabilities. Today, some of the worlds largest Security Operations Centers (SOCs) run on Microsoft Sentinel, including Microsofts own SOC. As the hub for security operations, Microsoft Sentinel brings together data, analytics, and workflows to unify and accelerate threat detection and response across the customers entire digital estate. Microsoft Sentinel provides an extensible solution to power all facets of security operations (threat intelligence and hunting, detection and correlation, incident management, investigation, and remediation) and operate across all data sources.

In this second edition of Microsoft Sentinel: Planning and implementing Microsofts cloud-native SIEM solution, you will have the opportunity to learn from an expert team of cybersecurity experts and engineers who have helped countless customers and partners successfully transform their security operations. They will lay out the foundational aspects of architecting, implementing, and operationalizing Microsoft Sentinel for customers, large and small. Topics include data collection and archiving, threat hunting and detection, incident response and automation, threat intelligence, and more, with practical advice gained from real-world experience.

With the dynamic nature of the security landscape and rapid pace of innovation, this book provides the latest insights you need to realize the full potential of Microsoft Sentinel to help your SOC team achieve more.

Next page
Light

Font size:

Reset

Interval:

Bookmark:

Make

Similar books «Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press)»

Look at similar books to Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press). We have selected literature similar in name and meaning in the hope of providing readers with more options to find new, interesting, not yet read works.


Reviews about «Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press)»

Discussion, reviews of the book Microsoft Azure Sentinel: Planning and implementing Microsofts cloud-native SIEM solution (IT Best Practices - Microsoft Press) and just readers' own opinions. Leave your comments, write what you think about the work, its meaning or the main characters. Specify what exactly you liked and what you didn't like, and why you think so.