Azure Sentinel

Visualize Log Analytics data ingestion using Microsoft Sentinel Members Public

With Microsoft's built-in workbook template in Azure Sentinel, named "Data collection health monitoring", we can visualize the data ingestion and quickly understand our workspaces and the data we have.

Tobias Zimmergren
Tobias Zimmergren
AzureLog AnalyticsAzure Sentinel

Discover sensitive Key Vault operations with Microsoft Sentinel Members Public

Microsoft's Azure Key Vault Security workbook helps you structure the explorations of sensitive operations in your Azure Key Vaults. Using this workbook, we can cut the diagnostic and troubleshooting time down by a lot.

Tobias Zimmergren
Tobias Zimmergren
AzurecybersecuritySecurity

Episode 021 - Talking about Azure Sentinel with Maarten Goet Members Public

We bring in a security expert in this episode, Maarten Goet, who helps us straighten out what Azure Sentinel is, why you want to use it and some real-world best practices and tips for using this SIEM whether you're a small company or a global enterprise. Show notes Maarten Goet

Tobias Zimmergren
Tobias Zimmergren
PodcastAzure Sentinel

Deleting Microsoft Sentinel but keep the ingested data Members Public

In this post I'm sharing a tip about how you can remove the Azure Sentinel service, but keep your ingested data in Log Analytics so you can actually keep working with the data for reports and auditing reasons.

Tobias Zimmergren
Tobias Zimmergren
AzureSecurityLog Analytics

Log custom application security events in Azure Log Analytics which are ingested and used in Microsoft Sentinel Members Public

A powerful capability of the Azure Sentinel service is that you can ingest data from a wide variety of sources. Using Connectors, you can even ingest data from other places than Azure, and you can get a more complete picture of your security posture across services in your technological landscape.

Tobias Zimmergren
Tobias Zimmergren
AzureSecurityLog Analytics

Monitoring Office 365 tenants with Azure Sentinel Members Public

Azure Sentinel is a product from Microsoft, offering a cloud-native SIEM service. Sentinel uses clever AI (Artificial Intelligence) to make your threat detection and responses faster and smarter. A key feature with Azure Sentinel is that you can connect to other data sources. Microsoft has built-in support for ingesting data

Tobias Zimmergren
Tobias Zimmergren
AzureSecurityOffice 365
Page 1 of 1

Hi, I'm Tobias 👋

Tobias Zimmergren profile picture

Find out more about me.

Recent comments

Recommended books!

Prepare for the AZ-500 exam!
Exam Ref AZ-500 Microsoft Azure Security Technologies
Azure Security Handbook!
Azure Security Handbook: A Comprehensive Guide for Defending Your Enterprise Environment
Prepare for the SC-900 exam!
Exam Ref SC-900 Microsoft Security, Compliance, and Identity Fundamentals