Microsoft Sentinel Advanced Course: Secure Azure Like a Pro
Focused View
Pavel Hrabec
2:50:03
31 View
1. Introduction to Microsoft Sentinel Automation.mp4
02:11
2.1 Automate Sentinel Integration.html
2.2 Terraform Module - Automation Rule.html
2.3 Terraform Module - Watchlist.html
2.4 Terraform Module - Workbook.html
2. Automating Sentinel with ARM, Bicep, Terraform, Powershell and API.mp4
03:06
3.1 AI Terminator.html
3.2 Content Hub Changes.html
3.3 Deploy Microsoft Sentinel.html
3.4 Microsoft Sentinel Pricing.html
3.5 TikTok Data Compliance.html
3. Demo Infrastructure as Code in Seamless SIEM Deployment.mp4
08:42
4. Unveiling the Magic of Deployment Scripts in Microsoft Sentinel.mp4
02:08
5. Demo Fine-Tuning Microsoft Sentinel after ARM Deployment.mp4
02:39
6.1 Bicep Log Analytics Workspace.html
6.2 Permissions for Microsoft Sentinel.html
6.3 Terraform Log Analytics Workspace.html
6. SIEM Deployment with Terraform and Bicep.mp4
02:01
7.1 Official Microsoft Sentinel Repository.html
7. Effortless ARM Template Installation with Repositories.mp4
01:44
8.1 Create Azure DevOps Organization.html
8. Demo Setting Up Azure DevOps Organization for Microsoft Sentinel.mp4
02:00
9.1 Official Documentation.html
9. Demo Integrating Azure DevOps with Microsoft Sentinel.mp4
02:43
10.1 Apply for parallelism.html
10. Azure DevOps Parallelism Challenges in Microsoft Sentinel.mp4
01:47
11. Demo Setting up Repository in GitHub for Microsoft Sentinel.mp4
01:02
12.1 Create GitHub Account.html
12.2 Official Documentation.html
12. Demo Integrating GitHub with Microsoft Sentinel.mp4
02:01
1. Introduction to Mastering GitHub Repository for Security.mp4
01:17
2.1 azure diagnostic settings removed from a resource.zip
2.2 GitHub Repository.html
2. Demo Deploying Microsoft Sentinel Analytics Rule from Repository.mp4
05:38
3. Demo Verifying Content Status in Microsoft Sentinel.mp4
01:44
4. Demo Fixing Pipeline Errors in Microsoft Sentinel Upload Process.mp4
02:21
5.1 GitHub Repository.html
5.2 log4j vulnerability exploit.zip
5.3 user agent search for log4j exploitation attempt.zip
5. Tracking ARM Template Changes in Repository.mp4
03:48
6.1 Download Git.html
6.2 Download Visual Studio Code.html
6. Demo Configuring Local Repository for Microsoft Sentinel.mp4
03:18
7.1 GitHub Repository.html
7.2 microsoftsentinel-chatgpt-playbook.zip
7. Demo Deploying Microsoft Sentinel Playbook from Computer to the Cloud.mp4
03:48
8.1 azure diagnostic settings removed from a resource.zip
8.2 blackcatransowmare.zip
8.3 data collection rule toolkit.zip
8.4 GitHub Repository.html
8.5 microsoftsentinel-chatgpt-playbook.zip
8.6 repository parser.zip
8.7 run-chatgpt-playbook.zip
8. Demo Deploying ARM templates from Repository.mp4
04:37
9. Validating ARM Deployment in Azure Portal.mp4
03:03
10.1 GitHub Repository.html
10.2 tor ip addresses.zip
10. Demo How to Deploy Unsupported Artifact to Azure.mp4
04:00
11.1 Official Documentation.html
11. Understanding Microsoft Sentinel Artifact Order.mp4
02:28
12. Demo Optimizing Microsoft Sentinel as Code Deployment.mp4
01:35
13. Conclusion of Infrastructure as Code with Microsoft Sentinel.mp4
01:12
1. Introduction.mp4
01:08
2.1 ARM template Structure.html
2. ARM Templates Structure and Components.mp4
03:32
3. ARM Templates Formatting and Parameters.mp4
02:50
4.1 GitHub Repository.html
4.2 process executed from binary hidden in base64 encoded file.zip
4. Demo Generate ARM Template for Analytics Rule.mp4
04:07
5.1 data collection rule toolkit.zip
5.2 GitHub Repository.html
5. Demo Generate ARM Template for Workbook.mp4
04:47
6.1 GitHub Repository.html
6.2 Playbook ARM Generator.zip
6. Demo Generate ARM Template for Playbook with Script.mp4
05:30
7.1 Get Automation Rules.html
7.2 GitHub Repository.html
7.3 template.zip
7. Demo Generate ARM Template for Automation Rule.mp4
04:46
8.1 Automation Rule Generator.zip
8.2 GitHub Repository.html
8. Demo Generate ARM Template for Automation Rule with Script.mp4
03:25
9.1 ARM Templates.html
9.2 blackcatransowmare.zip
9.3 GitHub Repository.html
9.4 parser template.zip
9. Demo Generate ARM Template for Parser, Hunting Query and Watchlist.mp4
03:24
10.1 KQL Hunting.html
10.2 Microsoft Defender Queries.html
10.3 MS Analytics Rules.html
10.4 MS Queries.html
10.5 MS Queries 2.html
10.6 Official Microsoft Sentinel Repository.html
10. ARM Template Resource Hub.mp4
02:28
1. Introduction to Cost Optimization.mp4
01:08
2.1 Azure Monitor Pricing Documentation.html
2.2 Discounts for E5.html
2.3 Free Data Sources.html
2.4 Pricing Calculator.html
2.5 Sentinel Pricing Documentation.html
2. Mastering Microsoft Sentinel Pricing.mp4
04:27
3.1 Discounts for Sentinel.html
3.2 Free Data Source.html
3.3 Pricing Calculator.html
3. Exceptions to Microsoft Sentinel Pricing.mp4
02:45
4.1 Pricing Calculator.html
4. Demo Microsoft Sentinel Pricing Calculator.mp4
03:16
5. Demo Data Connector Management.mp4
01:48
6. Demo Setting Up Data Connectors.mp4
04:09
7.1 microsoft sentinel cost.zip
7.2 workspace usage report.zip
7. Simplify Cost Tracking for Microsoft Sentinel.mp4
05:10
8.1 ADX Architecture.html
8.2 Basics Logs Retention.html
8.3 Data Lake Architecture.html
8.4 Data Lake Pricing.html
8.5 Limited KQL.html
8.6 Pricing Tiers.html
8.7 Windows Event IDs.html
8. Demo Optimization Strategies for Significant Cost Savings.mp4
09:08
9.1 Basics Logs Use Cases.html
9.2 Limited KQL.html
9.3 Supported Tables.html
9. Understanding Basics Logs.mp4
01:23
10. Demo Setting up Basics Logs in Microsoft Sentinel.mp4
03:51
11. Demo Maximizing Basics Logs Search.mp4
04:47
12. Demo Optimizing Data Collection Rules.mp4
04:49
13. Demo KQL Transformation for Windows Events.mp4
02:24
14.1 ADX Architectures.html
14.2 Azure Security Data Lake.html
14.3 Cross Resource Queries.html
14.4 Defender to ADX Integration.html
14.5 External Tables.html
14. Exploring Azure Data Explorer.mp4
02:06
15.1 Light Ingest Tool.html
15.2 Register for free ADX.html
15. Demo Ingesting Logs into Azure Data Explorer from Azure Storage.mp4
05:48
16.1 Cross Resource Query.html
16.2 Data Explorer.html
16. Cross Resource Query in Microsoft Sentinel.mp4
02:30
17. Conclusion.mp4
02:25
18.1 Hack Your Future Cyber Security Projects.html
18.2 Microsoft Sentinel Introduction Course.html
18. BONUS LECTURE More of Microsoft Sentinel.mp4
01:19
Description
Microsoft Sentinel as Code | Automatically Deploy Content to Azure | Build Repository | Learn ARM and Cost Optimization
What You'll Learn?
- Gain an understanding of Microsoft Sentinel Automation
- Learn how to automate Microsoft Sentinel using ARM
- Deploy SIEM using Infrastructure as Code
- Integrate Azure DevOps and GitHub with Microsoft Sentinel
- Configure a repository for Microsoft Sentinel
- Deploy ARM templates from repositories
- Generate ARM templates
- Master Microsoft Sentinel pricing
- Set up and optimize data connectors
- Implement optimization strategies
- Optimize data collection rules
- Perform KQL Transformation
- Perform cross-resource queries in Microsoft Sentinel
Who is this for?
What You Need to Know?
More details
DescriptionElevate your cloud security expertise to new heights as you seamlessly integrate Microsoft Sentinel into your Azure based workflows with GitHub. Harness essential tools like ARM, Bicep, Terraform, PowerShell, APIs and automate deployment process for security operations in Azure.
Through hands-on experiences, you'll become adept at deploying critical components such as analytics rules, workbooks, playbooks and many more Microsoft Sentinel artifacts. Everything managed from a centralized repository through the efficiency of CI/CD pipeline, optimizing your cloud security strategy while streamlining operations.
Once you grasp the foundations of automation, you'll dive deeper into the heart of Azure infrastructure management with ARM templates. You will master the art of infrastructure as code for Microsoft Sentinel, ensuring that your cloud environment is not only secure but also highly efficient.
You'll also gain valuable insights into cost optimization strategies, ensuring that you can effectively secure your cloud environment while maximizing cost savings in Azure Cloud.
In essence, this course serves as your gateway to becoming a proficient cloud security architect expert within the Azure cloud ecosystem. It seamlessly combines essential integration skills, practical deployment experiences, automation mastery, infrastructure management, log analysis, and cost optimization into a comprehensive learning journey.
You will work with tools concepts and technologies such as CI/CD Pipeline, Infrastructure as Code, Azure DevOps, GitHub, ARM, Biceps, Terraform, Powershell, KQL, Basics Logs Search, KQL Transformation, Data Ingestion, Cross resource query, Azure Data Explorer and many more.
Don't let this opportunity pass you by. Elevate your expertise in Azure cloud security today and position yourself as a valuable asset in the ever-evolving landscape of cloud computing.
Who this course is for:
- Security Professionals looking to enhance their skills in automating Microsoft Sentinel
- Azure Administrators and Cloud Engineers interested in optimizing security operations
- IT and Security Managers seeking to streamline SIEM deployment and cost-effectiveness
- DevOps Engineers wanting to integrate security practices into their DevOps pipelines
- Cybersecurity Analysts aiming to improve incident response using Microsoft Sentinel
- System Administrators interested in mastering Infrastructure as Code (IaC) techniques
- Security Architects seeking to design secure and cost-efficient Azure environments
- Students and Enthusiasts eager to build expertise in Microsoft Sentinel and ARM templates
- Anyone interested in improving their knowledge of Microsoft Azure security operations
Elevate your cloud security expertise to new heights as you seamlessly integrate Microsoft Sentinel into your Azure based workflows with GitHub. Harness essential tools like ARM, Bicep, Terraform, PowerShell, APIs and automate deployment process for security operations in Azure.
Through hands-on experiences, you'll become adept at deploying critical components such as analytics rules, workbooks, playbooks and many more Microsoft Sentinel artifacts. Everything managed from a centralized repository through the efficiency of CI/CD pipeline, optimizing your cloud security strategy while streamlining operations.
Once you grasp the foundations of automation, you'll dive deeper into the heart of Azure infrastructure management with ARM templates. You will master the art of infrastructure as code for Microsoft Sentinel, ensuring that your cloud environment is not only secure but also highly efficient.
You'll also gain valuable insights into cost optimization strategies, ensuring that you can effectively secure your cloud environment while maximizing cost savings in Azure Cloud.
In essence, this course serves as your gateway to becoming a proficient cloud security architect expert within the Azure cloud ecosystem. It seamlessly combines essential integration skills, practical deployment experiences, automation mastery, infrastructure management, log analysis, and cost optimization into a comprehensive learning journey.
You will work with tools concepts and technologies such as CI/CD Pipeline, Infrastructure as Code, Azure DevOps, GitHub, ARM, Biceps, Terraform, Powershell, KQL, Basics Logs Search, KQL Transformation, Data Ingestion, Cross resource query, Azure Data Explorer and many more.
Don't let this opportunity pass you by. Elevate your expertise in Azure cloud security today and position yourself as a valuable asset in the ever-evolving landscape of cloud computing.
Who this course is for:
- Security Professionals looking to enhance their skills in automating Microsoft Sentinel
- Azure Administrators and Cloud Engineers interested in optimizing security operations
- IT and Security Managers seeking to streamline SIEM deployment and cost-effectiveness
- DevOps Engineers wanting to integrate security practices into their DevOps pipelines
- Cybersecurity Analysts aiming to improve incident response using Microsoft Sentinel
- System Administrators interested in mastering Infrastructure as Code (IaC) techniques
- Security Architects seeking to design secure and cost-efficient Azure environments
- Students and Enthusiasts eager to build expertise in Microsoft Sentinel and ARM templates
- Anyone interested in improving their knowledge of Microsoft Azure security operations
User Reviews
Rating
average 0
Focused display
Pavel Hrabec
Instructor's CoursesI'm a cybersecurity architect with 8 certifications working for a company with a close partnership with Microsoft. My expertise is Microsoft Sentinel (cloud native SIEM and SOAR platform), including designing, implementing, optimizing analytics rules, workbooks, playbooks, automation rules and data ingestion. Furthermore my focus is on Microsoft Defender for Cloud to create a secure and scalable business environment in the cloud. My goal was always to be one of the best in my field and later to pass the knowledge among the others to help people succeed with their goals. I hope you find my content useful and if you have any question, please don't hesitate to contact me.
Udemy
View courses UdemyStudents take courses primarily to improve job-related skills.Some courses generate credit toward technical certification. Udemy has made a special effort to attract corporate trainers seeking to create coursework for employees of their company.
- language english
- Training sessions 53
- duration 2:50:03
- Release Date 2023/10/08
