From the course: Implementing and Administering Microsoft Sentinel
Join today to access over 24,700 courses taught by industry experts.
Sentinel feature flyover
From the course: Implementing and Administering Microsoft Sentinel
Sentinel feature flyover
- [Instructor] I want to start with a look at core Microsoft Sentinel functionality and to just talk about what makes Sentinel such a compelling solution in the first place. Now, if I were to identify a theme in cybersecurity today, it's that organizations simply can't keep up with the massive volume of security alerts. We see increasingly sophisticated attacks that result in large volumes of alerts, creating a backlog for analysis that leads to unacceptably long resolution times. Microsoft has introduced a SaaS solution called Microsoft Sentinel, which is both a SIEM and SOAR solution. We have SIEM pronounced like the SIM card in your smartphone, which is Security Information Event Management and it's designed to provide central data collection and real-time analysis of security events and alerts generated by your apps and your devices. And then, we have SOAR functionality that goes hand in hand with SIEM. SOAR, which is Security Orchestration Automated Response, is designed to help…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.