Companies Home Search Profile
TrainingHub TrainingHub
Microsoft Sentinel in Action: Architect, design, implement, and operate Microsoft Sentinel as the core of your security solutions, 2nd Edition
Microsoft Sentinel in Action: Architect, design, implement, and operate Microsoft Sentinel as the core of your security solutions, 2nd Edition
Download pdf
Microsoft Sentinel in Action: Architect, design, implement, and operate Microsoft Sentinel as the core of your security solutions, 2nd Edition

Microsoft Sentinel in Action: Architect, design, implement, and operate Microsoft Sentinel as the core of your security solutions, 2nd Edition

Category

Cyber Security

Windows Server

0 View
Learn how to set up, configure, and use Microsoft Sentinel to provide security incident and event management services for your multi-cloud environment

Microsoft Sentinel is a security information and event management (SIEM) tool developed by Microsoft that helps you integrate cloud security and artificial intelligence (AI). This book will teach you how to implement Microsoft Sentinel and understand how it can help detect security incidents in your environment with integrated AI, threat analysis, and built-in and community-driven logic.

The first part of this book will introduce you to Microsoft Sentinel and Log Analytics, then move on to understanding data collection and management, as well as how to create effective Microsoft Sentinel queries to detect anomalous behaviors and activity patterns. The next part will focus on useful features, such as entity behavior analytics and Microsoft Sentinel playbooks, along with exploring the new bi-directional connector for ServiceNow. In the next part, you'll be learning how to develop solutions that automate responses needed to handle security incidents and find out more about the latest developments in security, techniques to enhance your cloud security architecture, and explore how you can contribute to the security community.

By the end of this book, you'll have learned how to implement Microsoft Sentinel to fit your needs and protect your environment from cyber threats and other security issues.

Download pdf
ISBN-10
ISBN-13
9781801815536
Publisher
Packt Publishing
Price
28.49
File Type
PDF
Page No.
0
John Perkins

John Perkins

John Perkins is the founder and principal of Threat Angler, a cybersecurity service provider that sp ...
Gary Bushey

Gary Bushey

Gary is an Azure Security expert with over 25 years of IT experience. He got his start early on when ...
Richard Diver

Richard Diver

Richard is an expert in security, information technology, and productivity. Working for Microsoft to ...

About the Author

Richard Diver is a senior technical business strategy manager for the Microsoft Security Solutions group, focused on developing security partners. Based in Chicago, Richard works with advanced security and compliance partners to help them build solutions across the entire Microsoft platform, including Microsoft Sentinel, Microsoft Defender, Microsoft 365 security solutions, and many more. Prior to Microsoft, Richard worked in multiple industries and for several Microsoft partners to architect and implement cloud security solutions for a wide variety of customers around the world. Any spare time he gets is usually spent with his family. Gary Bushey is an Azure security expert with over 25 years of IT experience. He got his start early on when he helped his fifth-grade math teacher with their programming homework and worked all one summer to be able to afford his first computer, a Commodore 64. When he sold his first program, an apartment management system, at 14 he was hooked. During his career, he has worked as a developer, consultant, trainer, and architect. When not spending time in front of a computer, you can find him hiking in the woods, taking pictures, or just picking a direction and finding out what is around the next corner. John Perkins is the founder and principal of Threat Angler, a cybersecurity service provider that specializes in managed services, professional services, and training with a focus on delivering cybersecurity outcomes to customers of all shapes and sizes. John has over 20 years of experience in cybersecurity and has contributed to nearly all cybersecurity disciplines during his career. He has experience with numerous applications, including Microsoft Sentinel, and has designed, built, and led managed security services for several large service providers. In his free time, John enjoys spending time with his family, traveling, and staying active. --This text refers to the paperback edition.

  • Implement Log Analytics and enable Microsoft Sentinel and data ingestion from multiple sources
  • Tackle Kusto Query Language (KQL) coding
  • Discover how to carry out threat hunting activities in Microsoft Sentinel
  • Connect Microsoft Sentinel to ServiceNow for automated ticketing
  • Find out how to detect threats and create automated responses for immediate resolution
  • Use triggers and actions with Microsoft Sentinel playbooks to perform automations

You'll get the most out of this book if you have a good grasp on other Microsoft security products and Azure, and are now looking to expand your knowledge to incorporate Microsoft Sentinel. Security experts who use an alternative SIEM tool and want to adopt Microsoft Sentinel as an additional or a replacement service will also find this book useful.

  1. Getting started with Microsoft Sentinel
  2. Azure Monitor-Introduction to Log Analytics
  3. Managing and collecting data
  4. Integrating Threat Intelligence with Microsoft Sentinel
  5. Using the Kusto Query Language
  6. Microsoft Sentinel Logs and Writing Queries
  7. Creating Analytic Rules
  8. Creating and Using Workbooks
  9. Incident Management
  10. Configuring and Using Entity Behavior
  11. Threat Hunting in Microsoft Sentinel
  12. Creating Playbooks and Automation
  13. ServiceNow integration for Alert and Case Management
  14. Operational Tasks for Microsoft Sentinel
  15. Constant Learning and Community Contribution

Similar Books

Azure Active Directory for Secure Application Development: Use modern authentication techniques to secure applications in Azure PDF
Azure Active Directory for Secure Application Development: Use modern authentication techniques to secure applications in Azure
Sjoukje Zaal
Windows Server
Windows Server Automation with PowerShell Cookbook: Powerful ways to automate, manage and administrate Windows Server 2022 using PowerShell 7.2, 5th Edition PDF
Windows Server Automation with PowerShell Cookbook: Powerful ways to automate, manage and administrate Windows Server 2022 using PowerShell 7.2, 5th Edition
Thomas Lee
Windows Server
Active Directory Administration Cookbook: Proven solutions to everyday identity and authentication challenges for both on-premises and the cloud, 2nd Edition PDF
Active Directory Administration Cookbook: Proven solutions to everyday identity and authentication challenges for both on-premises and the cloud, 2nd Edition
Sander Berkouwer
Windows Server
Pro Active Directory Certificate Services: Creating and Managing Digital Certificates for Use in Microsoft Networks PDF
Pro Active Directory Certificate Services: Creating and Managing Digital Certificates for Use in Microsoft Networks
Lawrence E. Hughes
Windows Server
Windows Server 2022 & PowerShell All-in-One For Dummies (For Dummies (Computer/Tech)) PDF
Windows Server 2022 & PowerShell All-in-One For Dummies (For Dummies (Computer/Tech))
Sara Perrott
Windows Server
Exam Ref AZ-800 Administering Windows Server Hybrid Core Infrastructure PDF
Exam Ref AZ-800 Administering Windows Server Hybrid Core Infrastructure
Orin Thomas
Windows Server
Windows Internals, Part 2 (Developer Reference) PDF
Windows Internals, Part 2 (Developer Reference)
Mark E. Russinovich
Windows Server
Windows Server 2022 Administration Fundamentals: A beginner's guide to managing and administering Windows Server environments, 3rd Edition PDF
Windows Server 2022 Administration Fundamentals: A beginner's guide to managing and administering Windows Server environments, 3rd Edition
Bekim Dauti
Windows Server
Microsoft System Center Data Protection Manager Cookbook: Maximize storage efficiency, performance, and security using System Center LTSC and SAC releases PDF
Microsoft System Center Data Protection Manager Cookbook: Maximize storage efficiency, performance, and security using System Center LTSC and SAC releases
Charbel Nemnom
Windows Server
Visual Studio Code Distilled: Evolved Code Editing for Windows, macOS, and Linux PDF
Visual Studio Code Distilled: Evolved Code Editing for Windows, macOS, and Linux
Alessandro Del Sole
Windows Server
CompTIA Server+ Certification All-in-One Exam Guide, Second Edition (Exam SK0-005) PDF
CompTIA Server+ Certification All-in-One Exam Guide, Second Edition (Exam SK0-005)
Daniel Lachance
Windows Server
Cybersecurity Awareness (Advances in Information Security, 88) PDF
Cybersecurity Awareness (Advances in Information Security, 88)
Jerry Andriessen
Cyber Security
Security and Artificial Intelligence: A Crossdisciplinary Approach (Lecture Notes in Computer Science, 13049) PDF
Security and Artificial Intelligence: A Crossdisciplinary Approach (Lecture Notes in Computer Science, 13049)
Lejla Batina
Artificial Intelligence
Artificial Intelligence for Cybersecurity (Advances in Information Security Book 54) PDF
Artificial Intelligence for Cybersecurity (Advances in Information Security Book 54)
Mark Stamp
Artificial Intelligence
Machine Learning for Cyber Agents: Attack and Defence (Advanced Sciences and Technologies for Security Applications) PDF
Machine Learning for Cyber Agents: Attack and Defence (Advanced Sciences and Technologies for Security Applications)
Stanislav Abaimov
Machine Learning
Cyber Security: Critical Infrastructure Protection (Computational Methods in Applied Sciences Book 56) PDF
Cyber Security: Critical Infrastructure Protection (Computational Methods in Applied Sciences Book 56)
Martti Lehto
Cyber Security
Law and Technology in a Global Digital Society: Autonomous Systems, Big Data, IT Security and Legal Tech PDF
Law and Technology in a Global Digital Society: Autonomous Systems, Big Data, IT Security and Legal Tech
Georg Borges
Big Data
Quantum Computing Environments PDF
Quantum Computing Environments
Sitharama S. Iyengar
Cyber Security
Advances in Computing, Informatics, Networking and Cybersecurity: A Book Honoring Professor Mohammad S. Obaidat’s Significant Scientific Contributions (Lecture Notes in Networks and Systems 289) PDF
Advances in Computing, Informatics, Networking and Cybersecurity: A Book Honoring Professor Mohammad S. Obaidat’s Significant Scientific Contributions (Lecture Notes in Networks and Systems 289)
Sudip Misra
Cyber Security
Handbook of Digital Face Manipulation and Detection: From DeepFakes to Morphing Attacks (Advances in Computer Vision and Pattern Recognition) PDF
Handbook of Digital Face Manipulation and Detection: From DeepFakes to Morphing Attacks (Advances in Computer Vision and Pattern Recognition)
Christian Rathgeb
Cyber Security
Viruses, Hardware and Software Trojans: Attacks and Countermeasures PDF
Viruses, Hardware and Software Trojans: Attacks and Countermeasures
Anatoly Belous
Cyber Security
Cyber Warfare – Truth, Tactics, and Strategies: Strategic concepts and truths to help you and your organization survive on the battleground of cyber warfare PDF
Cyber Warfare – Truth, Tactics, and Strategies: Strategic concepts and truths to help you and your organization survive on the battleground of cyber warfare
Chase Cunningham
Cyber Security
Cybersecurity – Attack and Defense Strategies: Improve your security posture to mitigate risks and prevent attackers from infiltrating your system, 3rd Edition PDF
Cybersecurity – Attack and Defense Strategies: Improve your security posture to mitigate risks and prevent attackers from infiltrating your system, 3rd Edition
Yuri Diogenes
Cyber Security

Other Authors' Books

Other Publishing Books

Hack the Cybersecurity Interview: A complete interview preparation guide for jumpstarting your cybersecurity career PDF
Hack the Cybersecurity Interview: A complete interview preparation guide for jumpstarting your cybersecurity career
Tia Hopkins
Coding Interview
Solar System (DKfindout!) PDF
Solar System (DKfindout!)
Sarah Cruddas
Solar Energy
Learn Kubernetes & Docker - .NET Core, Java, Node.JS, PHP or Python: Be ready to create and run your containerized and orchestrated application next week. (Learn Collection) PDF
Learn Kubernetes & Docker - .NET Core, Java, Node.JS, PHP or Python: Be ready to create and run your containerized and orchestrated application next week. (Learn Collection)
Arnaud Weil
PHP
Jupyter Notebook 101 PDF
Jupyter Notebook 101
Michael Driscoll
Software Development
Simplifying Regular Expression Using Python: #Awarded as One of the Best Book in 2020 and 2021 by bookauthority.org PDF
Simplifying Regular Expression Using Python: #Awarded as One of the Best Book in 2020 and 2021 by bookauthority.org
Abhishek Singh
Python
Bitcoin Trading for Beginners, Dummies & Idiots PDF
Bitcoin Trading for Beginners, Dummies & Idiots
Giovanni Rigters
Bitcoin
Selenium WebDriver Recipes in Node.js: The problem solving guide to Selenium WebDriver in JavaScript (Test Recipes Series Book 6) PDF
Selenium WebDriver Recipes in Node.js: The problem solving guide to Selenium WebDriver in JavaScript (Test Recipes Series Book 6)
Zhimin Zhan
Software Testing
Advancing Technology Industrialization Through Intelligent Software Methodologies, Tools and Techniques: Proceedings of the 18th International ... Intelligence and Applications, 318) PDF
Advancing Technology Industrialization Through Intelligent Software Methodologies, Tools and Techniques: Proceedings of the 18th International ... Intelligence and Applications, 318)
Hamido Fujita
Artificial Intelligence
Global Cybercrime and Cybersecurity Laws and Regulations: Issues and Challenges in the 21st Century PDF
Global Cybercrime and Cybersecurity Laws and Regulations: Issues and Challenges in the 21st Century
Shahid M. Shahidullah
Cyber Security
Evaluation of Some SMS Verification Services and Virtual Credit Cards Services for Online Accounts Verifications PDF
Evaluation of Some SMS Verification Services and Virtual Credit Cards Services for Online Accounts Verifications
Dr. Hidaia Mahmood Alassouli
API
From Voices to Results - Voice of Customer Questions, Tools and Analysis: Proven techniques for understanding and engaging with your customers PDF
From Voices to Results - Voice of Customer Questions, Tools and Analysis: Proven techniques for understanding and engaging with your customers
Robert Coppenhaver
Customer Journey Mapping
Redis 4.x Cookbook: Over 80 hand-picked recipes for effective Redis development and administration PDF
Redis 4.x Cookbook: Over 80 hand-picked recipes for effective Redis development and administration
Pengcheng Huang
Database Management
User Reviews
Rating
0
0
0
0
0
average 0
Total votes0