Microsoft Sentinel course/training: Learn how to use Microsoft Sentinel
Рет қаралды 14,845
8 ай бұрынWatch this video to learn information on how to use and manage Microsoft Sentinel
GET THE FULL COURSE HERE: bit.ly/3R0ICux
Understanding and setting up a Microsoft Sentinel Workspace
*Overview of Microsoft Sentinel
*Configuring a Microsoft Sentinel workspace
*Managing roles regarding Sentinel
*Managing log types, log retention, and data storage in Sentinel
Working with data connectors and ingestion in Microsoft Sentinel
*Microsoft Sentinel data source identification
*Setting up connectors for ingesting data into Microsoft Sentinel
*Connecting Sentinel with Microsoft 365 Defender and Defender for Cloud
*Common Event Format (CEF) and Syslog event collections
*Windows Security Event Collection setup in Microsoft Sentinel
*Managing threat intelligence connectors in Microsoft Sentinel
*Working with custom log tables
Using analytics rules in Microsoft Sentinel
*Understanding analytics rules in Microsoft Sentinel
*Fusion rule configuration
*Security analytics rules
*Working with scheduled query rules in Microsoft Sentinel
*Custom scheduled query rules
*Working with near-real-time (NRT) analytics rules
*Content hub analytics rules
*Watchlists in Microsoft Sentinel
*Threat indicators in Microsoft Sentinel
GET THE REST OF THE COURSE BELOW HERE: bit.ly/3R0ICux
Classification, normalization & security orchestration automated response (SOAR)
*Working with using entities for classifying and analyzing data
*Advanced Security Information Model(ASIM) queries with Microsoft Sentinel
*ASIM parser management
*Using automation rules
*Using playbooks in Microsoft Sentinel
*Automation rule triggering using analytic rules
*Alert and incident playbook triggering
Dealing with Incidents and Workbooks for analyzes and interpretation of data
*Incident generation in Microsoft Sentinel
*Understanding the concepts of triaging incidents in Sentinel
*Microsoft Sentinel incident investigation
*How to respond to Microsoft Sentinel incidents
*Multi-workspace incident investigation
*Workbook template customization and management
*Implementing custom workbooks in Microsoft Sentinel
*Working with advanced visualizations
Threat hunting and entity behavior analytics in Microsoft Sentinel
*MITRE ATT&CK attack vectors in Microsoft Sentinel
*Using hunting queries from the content gallery
*Hunting query customization
*Data investigations with hunting bookmarks
*Using Livestream to monitor hunting queries
*How archived log data can be retrieved in Microsoft Sentinel
*Search job management in Microsoft Sentinel
*Entity Behavior Analytics settings
*Entity page investigation of threats
*Anomaly detection analytics rules in Microsoft Sentinel
@joaolisot2063 20 сағат бұрын
Loved the vampire hacker drawing
@joshjones7605 2 ай бұрын
Thank you for not assuming the listener knows something- your way of explaining each term is very skillful and extremely appreciated!
@IamOnlyaHumanafterall 3 ай бұрын
This is a beyond video - The value provided by John in this video is completely instrumental if someone really wants to observe the knowledge. Thanks John Christopher - big kudos..
@peterkuczynski6785 Ай бұрын
I am learning Sentinel for the first time, after getting my CISSP
@TrekkingtrailsA 5 ай бұрын
Excellent work , very easy to understand what you teaching . Learnt a lot from your video. Please keep up the good work
@niksojitra 4 ай бұрын
Great video! Your attention to detail was superb, and the explanations were clear. Thank you for the valuable content!
@kitfo18 8 ай бұрын
This is a major help if you are taking the SC-200 exam but good to know if you do just about anything with in Entra ID! Awesome video will be watching this one a few times for sure. Thank you for the big help between the 2 video's releasedin the last day or so as they will add a lot to anyone taking the SC-200 and the other Defender video will help with the SC-300!
@Trevor274 21 күн бұрын
Amazing video, thank you!
@lucianoribeiro6982 Ай бұрын
Amazing video. thanks for sharing you knowlegde.
@gillymccyber1927 3 ай бұрын
Great video, loved the style, tone, content - thanks
@YashasTuruvekere 4 ай бұрын
Great video for beginners, thank you
@user-om3mx3ny2u 5 ай бұрын
Another Great Stuff!
@rahulchakravarti2772 8 ай бұрын
Does this map to any MS certification?
@examlabpractice 8 ай бұрын
This would help with the SC-200 exam. But keep in mind, there are lots of other topics you’d need to know for that exam as well. I do have my SC-200 on a major discount right now at examlabpractice.com/courses if you’re interested of course
John Christopher
Рет қаралды 19 М.
Carl Feldman
Рет қаралды 2,3 М.
Microsoft Ignite
Рет қаралды 3,4 М.
John Christopher
Рет қаралды 2,7 М.
Microsoft Mechanics
Рет қаралды 37 М.
Simplilearn
Рет қаралды 1,9 МЛН
DevOps Directive
Рет қаралды 766 М.