Autoplay
Autocomplete
Previous Lesson
Complete and Continue
Getting Started with Azure Sentinel
Introduction
About this course (2:57)
About your instructor (1:04)
Overview
What is Azure Sentinel? (15:10)
Modernize your SIEM in the cloud with Azure Sentinel
Understanding Azure Sentinel features and functionality deep dive
Basic pricing (14:25)
Workspace design (2:40)
Data sources (3:01)
Getting Started
Create a new Azure Sentinel Workspace (6:33)
Add a new Data Connector (6:32)
Checking the Microsoft Cloud App Security (MCAS) connection (2:07)
Create new Analytics Rule (7:13)
Introduction to Logs and KQL (Kusto) (3:52)
Create a new Workbook (6:27)
Content Hub (5:31)
Basic Hunting (6:28)
Introduction to Incidents (6:52)
Creating a Playbook (12:31)
Get instant value from your SIEM: Best practices for Azure Sentinel
Get started with a cloud-native SIEM
Deleting Sentinel (3:41)
Intermediate
Threat Intelligence (4:50)
Feedback
Share your thoughts
Share your thoughts
Lesson content locked
If you're already enrolled,
you'll need to login
.
Enroll in Course to Unlock