Getting started with Microsoft Sentinel Automation (2023 edition)
Ғылым және технология
In this video, we'll dive into the world of Microsoft Sentinel Automation and explore how it can be used to streamline incident management and response. Specifically, we'll focus on two powerful automation features: Automation Rules and Playbooks (logic apps).
With Automation Rules, you'll learn how to quickly filter out non-actionable incidents and focus on those that require attention. We'll walk through the process of creating and customizing rules to fit your specific needs, and explore how to automate the enrichment of incidents with additional data.
Next, we'll explore Playbooks (logic apps), which enable you to execute a variety of actions automatically in response to incidents. You'll learn how to create and customize Playbooks to fit your organization's specific needs, and see examples of how they can be used to automatically mitigate incidents and resolve security threats.
Whether you're a security analyst looking to streamline your incident management process, or an IT professional interested in automating cyber security, this video will provide you with a comprehensive introduction to Microsoft Sentinel Automation.
#microsoftsentinel #cybersecurity #automation
Пікірлер: 9
Nice work Jeroen
mate your content is absolute fire!!!!! thank you so much for putting this together. It is a really great way to learn
@AzureVlog
Жыл бұрын
Thanks! Great you liked the content!
Sounds like arnold schwarzenegger singing sweet cyber security songs to my ears, thanks!
Very helpful. Thank you for sharing.
Thanks a ton for your explanation.
Thanks a lot for your work and sharing. Your video was also very informative and high quality created.
Can you please create VirusTotal Integration with Azure Sentinel?
Hey , i am getting an error while saving the logic app. I have added all the permission in the system assigned managed identity, microsoft sentinel contributor