


Microsoft Sentinel
Microsoft Sentinel is a security information and event management (SIEM) solution that helps you uncover and quickly respond to sophisticated threats. Explore case studies, product updates, and best practices to help you strengthen your security and reduce response times.
Refine results
Topic
Products and services
Publish date
-
A series on DART’s tools, techniques, and procedures for investigating cybersecurity incidents at their customer organizations.
-
Improve cyber supply chain risk management with Microsoft Azure
To keep government agencies secure in the cloud, we must keep pace and stay ahead of cyber attackers by defending the cyber supply chain with Microsoft Azure. -
Microsoft and Zscaler help organizations implement the Zero Trust model
Microsoft has built deep integrations with Zscaler—a cloud-native, multitenant security platform—to help organizations with their Zero Trust journey. -
Microsoft Threat Protection stops attack sprawl and auto-heals enterprise assets with built-in intelligence and automation
Threat protection that changes our approach to attacks requires built-in intelligence that can understand how an attack got in, prevent its spread across domains, and automatically heal compromised assets. -
Azure Sentinel uncovers the real threats hidden in billions of low fidelity signals
Azure Sentinel Fusion technology uses powerful machine learning methods to enable your SecOps team to focus on the threats that matter. -
Free import of AWS CloudTrail logs through June 2020 and other exciting Azure Sentinel updates
Learn how Azure Sentinel helps SecOps to improve security across hybrid environments with free import of AWS CloudTrail logs through June 2020 and other product updates. -
Threat hunting: Part 1—Why your SOC needs a proactive hunting team
A threat hunting team can help you defend against stealth attackers. -
Open-sourcing new COVID-19 threat intelligence
While the world faces the common threat of COVID-19, defenders are working overtime to protect users all over the globe from cyber-criminals using COVID-19 as a lure to mount attacks. -
Modernizing the security operations center to better secure a remote workforce
The modern SOC will use machine learning to help humans protect organizations in a multi-cloud, IoT world. -
Feeling fatigued? Cloud-based SIEM relieves security team burnout
Most CISOs and CSOs are worried that a growing volume of alerts is causing burnout among their teams, according to new research from IDG. -
Lessons learned from the Microsoft SOC—Part 3d: Zen and the art of threat hunting
This blog provides lessons learned on how Microsoft hunts for threats in our IT environment and how you can apply these lessons to building or improving your threat hunting program. -
Making Azure Sentinel work for you
A new white paper outlines best practice recommendations for configuring data sources for incident response and proactively hunting for threats using Azure Sentinel.