Learn Azure Sentinel

AzureSentinelisaSecurityInformationandEventManagement(SIEM)tooldevelopedbyMicrosofttointegratecloudsecurityandartificialintelligence(AI).AzureSentinelnotonlyhelpsclientsidentifysecurityissuesintheirenvironment,butalsousesautomationtohelpresolvetheseissues.Withthisbook,you’llimplementAzureSentinelandunderstandhowitcanhelpfindsecurityincidentsinyourenvironmentwithintegratedartificialintelligence,threatanalysis,andbuilt-inandcommunity-drivenlogic.ThisbookstartswithanintroductiontoAzureSentinelandLogAnalytics.You’llgettogripswithdatacollectionandmanagement,beforelearninghowtocreateeffectiveAzureSentinelqueriestodetectanomalousbehaviorsandpatternsofactivity.Asyoumakeprogress,you’llunderstandhowtodevelopsolutionsthatautomatetheresponsesrequiredtohandlesecurityincidents.Finally,you’llgraspthelatestdevelopmentsinsecurity,discovertechniquestoenhanceyourcloudsecurityarchitecture,andexplorehowyoucancontributetothesecuritycommunity.Bytheendofthisbook,you’llhavelearnedhowtoimplementAzureSentineltofityourneedsandbeabletoprotectyourenvironmentfromcyberthreatsandothersecurityissues.