Microsoft Sentinel comes with Content Hub that you can use out-of-the-box to get content value and get started on Microsoft Sentinel quickly. Solutions in Microsoft Continue […]
Once you ingest data into Sentinel, you can retain that data in Sentinel for 90 days at no additional cost. With Microsoft Sentinel, you pay Continue […]
Ingestion time transformation in Microsoft Sentinel is a great feature that allows you to route data to multiple destinations. In this comprehensive guide, we will Continue […]
“Getting value out of your data lake” For the first time in the security industry, we are seeing security operations teams and data analytics teams working […]
Solution Series for the SOC Automation Series Welcome to the SOCAUTOMATORS series on automating your security operations center. This series of blog posts will help you […]
Watchlist Module Welcome back to the SOCAutomator series. Did you miss us? Today we’re going to dig into how the STAT module works with Microsoft Sentinel […]
Solution Series on how to integrate with Microsoft Sentinel Welcome to the SOCAUTOMATORS series on building a Security Data Lake. This series of blog posts and […]
Dam the SIEM The foundation of our data “dam” is a pool of information collected from multiple sources. Some data is ingested directly into the data […]
“Yes – it’s more than bathing suit” Security engineering teams need to develop new skills to provide their security analysts with the necessary depth of data […]