Zum Hauptinhalt springen
Dekorationsartikel gehören nicht zum Leistungsumfang.
Microsoft Sentinel in Action - Second Edition
Architect, design, implement, and operate Microsoft Sentinel as the core of your security solutions
Taschenbuch von Richard Diver (u. a.)
Sprache: Englisch

56,70 €*

inkl. MwSt.

Versandkostenfrei per Post / DHL

Aktuell nicht verfügbar

Kategorien:
Beschreibung
Learn how to set up, configure, and use Microsoft Sentinel to provide security incident and event management services for your multi-cloud environment

Key Features:Collect, normalize, and analyze security information from multiple data sources
Integrate AI, machine learning, built-in and custom threat analyses, and automation to build optimal security solutions
Detect and investigate possible security breaches to tackle complex and advanced cyber threats

Book Description:
Microsoft Sentinel is a security information and event management (SIEM) tool developed by Microsoft that helps you to integrate cloud security and artificial intelligence (AI). This book will enable you to implement Microsoft Sentinel and understand how it can help detect security incidents in your environment with integrated AI, threat analysis, and built-in and community-driven logic.
The book begins by introducing you to Microsoft Sentinel and Log Analytics. You'll then get to grips with data collection and management, before learning how to create effective Microsoft Sentinel queries to detect anomalous behaviors and activity patterns. Moving ahead, you'll learn about useful features such as entity behavior analytics and Microsoft Sentinel playbooks along with exploring the new bi-directional connector for ServiceNow. As you progress, you'll find out how to develop solutions that automate responses needed to handle security incidents. Finally, you'll grasp the latest developments in security, discover techniques to enhance your cloud security architecture, and explore how you can contribute to the security community.
By the end of this Microsoft Sentinel book, you'll have learned how to implement Microsoft Sentinel to fit your needs and be able to protect your environment from cyber threats and other security issues.

What You Will Learn:Implement Log Analytics and enable Microsoft Sentinel and data ingestion from multiple sources
Get to grips with coding using the Kusto Query Language (KQL)
Discover how to carry out threat hunting activities in Microsoft Sentinel
Connect Microsoft Sentinel to ServiceNow for automated ticketing
Find out how to detect threats and create automated responses for immediate resolution
Use triggers and actions with Microsoft Sentinel playbooks to perform automations

Who this book is for:
If you are an IT professional with prior experience in other Microsoft security products and Azure and are now looking to expand your knowledge to incorporate Microsoft Sentinel, then this book is for you. Security experts using an alternative SIEM tool who want to adopt Microsoft Sentinel as an additional service or as a replacement will also find this book useful.
Learn how to set up, configure, and use Microsoft Sentinel to provide security incident and event management services for your multi-cloud environment

Key Features:Collect, normalize, and analyze security information from multiple data sources
Integrate AI, machine learning, built-in and custom threat analyses, and automation to build optimal security solutions
Detect and investigate possible security breaches to tackle complex and advanced cyber threats

Book Description:
Microsoft Sentinel is a security information and event management (SIEM) tool developed by Microsoft that helps you to integrate cloud security and artificial intelligence (AI). This book will enable you to implement Microsoft Sentinel and understand how it can help detect security incidents in your environment with integrated AI, threat analysis, and built-in and community-driven logic.
The book begins by introducing you to Microsoft Sentinel and Log Analytics. You'll then get to grips with data collection and management, before learning how to create effective Microsoft Sentinel queries to detect anomalous behaviors and activity patterns. Moving ahead, you'll learn about useful features such as entity behavior analytics and Microsoft Sentinel playbooks along with exploring the new bi-directional connector for ServiceNow. As you progress, you'll find out how to develop solutions that automate responses needed to handle security incidents. Finally, you'll grasp the latest developments in security, discover techniques to enhance your cloud security architecture, and explore how you can contribute to the security community.
By the end of this Microsoft Sentinel book, you'll have learned how to implement Microsoft Sentinel to fit your needs and be able to protect your environment from cyber threats and other security issues.

What You Will Learn:Implement Log Analytics and enable Microsoft Sentinel and data ingestion from multiple sources
Get to grips with coding using the Kusto Query Language (KQL)
Discover how to carry out threat hunting activities in Microsoft Sentinel
Connect Microsoft Sentinel to ServiceNow for automated ticketing
Find out how to detect threats and create automated responses for immediate resolution
Use triggers and actions with Microsoft Sentinel playbooks to perform automations

Who this book is for:
If you are an IT professional with prior experience in other Microsoft security products and Azure and are now looking to expand your knowledge to incorporate Microsoft Sentinel, then this book is for you. Security experts using an alternative SIEM tool who want to adopt Microsoft Sentinel as an additional service or as a replacement will also find this book useful.
Über den Autor
Richard Diver is a senior technical business strategy manager for the Microsoft Security Solutions group, focused on developing security partners. Based in Chicago, Richard works with advanced security and compliance partners to help them build solutions across the entire Microsoft platform, including Microsoft Sentinel, Microsoft Defender, Microsoft 365 security solutions, and many more. Prior to Microsoft, Richard worked in multiple industries and for several Microsoft partners to architect and implement cloud security solutions for a wide variety of customers around the world. Any spare time he gets is usually spent with his family.
Details
Erscheinungsjahr: 2022
Fachbereich: EDV
Genre: Informatik
Rubrik: Naturwissenschaften & Technik
Thema: Lexika
Medium: Taschenbuch
Inhalt: Kartoniert / Broschiert
ISBN-13: 9781801815536
ISBN-10: 1801815534
Sprache: Englisch
Ausstattung / Beilage: Paperback
Einband: Kartoniert / Broschiert
Autor: Diver, Richard
Bushey, Gary
Perkins, John
Auflage: Second
Hersteller: Packt Publishing
Maße: 235 x 191 x 26 mm
Von/Mit: Richard Diver (u. a.)
Erscheinungsdatum: 27.01.2022
Gewicht: 0,885 kg
Artikel-ID: 121249629
Über den Autor
Richard Diver is a senior technical business strategy manager for the Microsoft Security Solutions group, focused on developing security partners. Based in Chicago, Richard works with advanced security and compliance partners to help them build solutions across the entire Microsoft platform, including Microsoft Sentinel, Microsoft Defender, Microsoft 365 security solutions, and many more. Prior to Microsoft, Richard worked in multiple industries and for several Microsoft partners to architect and implement cloud security solutions for a wide variety of customers around the world. Any spare time he gets is usually spent with his family.
Details
Erscheinungsjahr: 2022
Fachbereich: EDV
Genre: Informatik
Rubrik: Naturwissenschaften & Technik
Thema: Lexika
Medium: Taschenbuch
Inhalt: Kartoniert / Broschiert
ISBN-13: 9781801815536
ISBN-10: 1801815534
Sprache: Englisch
Ausstattung / Beilage: Paperback
Einband: Kartoniert / Broschiert
Autor: Diver, Richard
Bushey, Gary
Perkins, John
Auflage: Second
Hersteller: Packt Publishing
Maße: 235 x 191 x 26 mm
Von/Mit: Richard Diver (u. a.)
Erscheinungsdatum: 27.01.2022
Gewicht: 0,885 kg
Artikel-ID: 121249629
Warnhinweis

Ähnliche Produkte

Ähnliche Produkte