Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Save more on your purchases now! discount-offer-chevron-icon
Savings automatically calculated. No voucher code required.
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Microsoft Azure Fundamentals Certification and Beyond

You're reading from   Microsoft Azure Fundamentals Certification and Beyond A complete AZ-900 exam guide with online mock exams, flashcards, and hands-on activities

Arrow left icon
Product type Paperback
Published in Jan 2024
Publisher Packt
ISBN-13 9781837630592
Length 284 pages
Edition 2nd Edition
Tools
Arrow right icon
Author (1):
Arrow left icon
Steve Miles Steve Miles
Author Profile Icon Steve Miles
Steve Miles
Arrow right icon
View More author details
Toc

Table of Contents (14) Chapters Close

Preface 1. Chapter 1: Introduction to Cloud Computing 2. Chapter 2: Benefits of Using Cloud Services FREE CHAPTER 3. Chapter 3: Azure Core Architectural Components 4. Chapter 4: Azure Core Resources 5. Chapter 5: Azure Identity and Access 6. Chapter 6: Azure Security 7. Chapter 7: Azure Cost Management 8. Chapter 8: Azure Governance and Compliance 9. Chapter 9: Azure Resource Deployment and Management 10. Chapter 10: Azure Monitoring and Tools 11. Chapter 11: Accessing the Online Practice Resources 12. Assessing AZ-900 Exam Skills 13. Other Books You May Enjoy

Microsoft Sentinel

Microsoft Sentinel is Microsoft’s cloud-based SIEM and Security Orchestration, Automation, and Response (SOAR) tool. It provides security data aggregation, threat analysis, and response across public cloud and on-premises environments. This service is your bird’s-eye view of centralized security data and events across an organization, using integrated AI for large-scale threat analysis and response.

A SIEM solution collects “security log data”—security signalling—and examines it for patterns that could indicate an attack. Then, it correlates event information to identify potentially abnormal activity. Finally, any issues are alerted, and this automates responses and remediation. Figure 6.7 illustrates this relationship between the security analytics of Microsoft Sentinel and the security signalling collected from the security tooling of the security data sources:

Figure 6.7 – The relationship...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at €18.99/month. Cancel anytime