Applied Skill : Configure SIEM security operations using Microsoft Sentinel

Duration : 1 Day

In this applied skill you’ll get start with Microsoft Sentinel security operations by configuring the Microsoft Sentinel workspace, connecting Microsoft services and Windows security events to Microsoft Sentinel, configuring Microsoft Sentinel analytics rules, and responding to threats with automated responses.

What is Microsoft Applied Skills?
Microsoft Applied Skills for instructor-led training is a 1-day credential designed to support learners who wish to gain one skill, aligned to scenarios or projects.

Create and manage Microsoft Sentinel workspaces
Connect Microsoft services to Microsoft Sentinel
Connect Windows hosts to Microsoft Sentinel
Threat detection with Microsoft Sentinel analytics
Automation in Microsoft Sentinel

Describe Microsoft Sentinel workspace architecture
Install Microsoft Sentinel workspace
Manage a Microsoft Sentinel workspace
Install solutions from the content hub
Connect Microsoft services data connectors
Explain how connectors auto-create incidents in Microsoft Sentinel
Connect Azure Windows Virtual Machines to Microsoft Sentinel
Connect non-Azure Windows hosts to Microsoft Sentinel
Configure Log Analytics agent to collect Sysmon events
Explain the importance of Microsoft Sentinel Analytics
Explain different types of analytics rules
Create rules from templates
Create new analytics rules and queries using the analytics rule wizard
Manage rules with modifications
Explain automation options in Microsoft Sentinel
Create automation rules in Microsoft Sentinel

Fundamental understanding of Microsoft Azure
Basic understanding of Microsoft Sentinel
Experience using Kusto Query Language (KQL) in Microsoft Sentinel

Regular Price : ~~$600.00~~
Special Price :$300.00

Applied Skill : Configure SIEM security operations using Microsoft Sentinel

This course includes: