You're reading from Mastering Microsoft 365 Defender Implement Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365 and respond to threats

Product type Paperback

Published in Jul 2023

Publisher Packt

ISBN-13 9781803241708

Length 572 pages

Edition 1st Edition

Tools

Office 365

Concepts

Cybersecurity

Authors (2):

Ru Campbell

Viktor Hedberg

View More author details

Table of Contents (33) Chapters

Preface

1. Part 1: Cyber Threats and Microsoft 365 Defender

2. Chapter 1: Microsoft and Modern Cybersecurity Threats FREE CHAPTER

3. Chapter 2: Microsoft 365 Defender: The Big Picture

4. Part 2: Microsoft Defender for Endpoint

5. Chapter 3: The Fundamentals of Microsoft Defender for Endpoint

6. Chapter 4: Onboarding Windows Clients and Servers

7. Chapter 5: Getting Started with Microsoft Defender Antivirus for Windows

8. Chapter 6: Advanced Microsoft Defender Antivirus for Windows

9. Chapter 7: Managing Attack Surface Reduction for Windows

10. Chapter 8: Managing Additional Capabilities for Windows

11. Chapter 9: Onboarding and Managing macOS

12. Chapter 10: Onboarding and Managing Linux Servers

13. Chapter 11: Onboarding and Managing iOS and Android

14. Part 3: Microsoft Defender for Identity

15. Chapter 12: Deploying Microsoft Defender for Identity

16. Chapter 13: Managing Defender for Identity

17. Part 4: Microsoft Defender for Office 365

18. Chapter 14: Deploying Exchange Online Protection

19. Chapter 15: Deploying Defender for Office 365

20. Part 5: Microsoft Defender for Cloud Apps

21. Chapter 16: Implementing and Managing Microsoft Defender for Cloud Apps

22. Part 6: Proactive Security and Incident Response

23. Chapter 17: Maintaining Security Hygiene and Threat Awareness

24. Chapter 18: Extended Detection and Response with Microsoft 365 Defender

25. Chapter 19: Advanced Hunting with KQL

26. Chapter 20: Microsoft Sentinel Integration

27. Chapter 21: Understanding Microsoft 365 Defender APIs

28. Part 7: Glossary and Answers

29. Chapter 22: Glossary

30. Chapter 23: Answers

31. Index

Why subscribe?

32. Other Books You May Enjoy

Questions

As you work through this book, it’s useful to reflect on what you’ve learned and challenge yourself with questions. Here’s some on what we covered in this chapter:

Which of the following Azure AD groups isn’t provisioned as part of an MDI deployment?
1. Azure ATP <tenant name> Administrators
2. Azure ATP <tenant name> Viewers
3. Azure ATP <tenant name> Responders
4. Azure ATP <tenant name> Viewers
True or false: this book encouraged the use of PIM for Groups to manage MDI administrative access, but this is restricted to the Azure AD Premium P2 license.
1. True
2. False
Why are exclusions by detection rule preferred to global excluded entities, where possible?
1. Exclusions by detection rule reduce blind spots in detections, compared to global excluded entities.
2. Global exclusions do not support domains.
3. Global exclusions are more difficult to set up.
Which of these isn’t a type of activity you’d find in an MDI security...

The rest of the chapter is locked

You're reading from Mastering Microsoft 365 Defender Implement Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365 and respond to threats

Table of Contents (33) Chapters

Questions

Unlock this book and the full library FREE for 7 days

Authors (2)

Personalised recommendations for you