POCaaS Session 3: Investigation and Hunting
Ғылым және технология
Tuesday, April 30, 2024, 12:00 PM ET / 9:00 AM PT (Webinar Recording Date)
Title: Microsoft Defender XDR Webinar | POCaaS Session 3 - Investigation and Hunting
Presenter(s): Chris Ayres
Description:
Empowering the SOC to have deep visibility into identity entities, identity context and identity telemetry is not only crucial for investigation purposes, but it allows security analysts to be more efficient in how they may triage incidents and understand the scope of any compromise.
Timestamps:
00:00 - Introduction
01:29 - User Investigation Priority Score
05:26 - Prioritize Responding to the Riskiest Users
06:43 - Investigate All User Activities in One Place
07:57 - Demo
35:25 - Datasets
37:53 - Demo
54:32 - Q&A, Outro
SUBSCRIBE for new Microsoft Security videos every week.
aka.ms/SecurityCommunity/Subs...
To ensure you hear about future Microsoft Defender XDR webinars and other developments, make sure you join our community by going to aka.ms/SecurityCommunity
#MicrosoftDefenderXDR #microsoftsecuritycommunity #ITDR #Identity #ThreatDetection #POCaaS
Пікірлер: 3
For any product related questions/feedback, please address them on the Microsoft Tech Community discussion space forum. For Microsoft Defender XDR products visit techcommunity.microsoft.com/t5/microsoft-defender-xdr/bd-p/MicrosoftThreatProtection
“The amount of richness you get in an incident is a direct correlation of the license you own”` Well said. and also spot on with your description of the E5, "context, correlation, and visibility"
Great to have these detections, but how bad is that not having this prevented 🙁