Home > Store

Microsoft Azure Sentinel

Microsoft Azure Sentinel

eBook (Watermarked)

  • Your Price: $25.59
  • List Price: $31.99
  • Estimated Release: Mar 30, 2020
  • Includes EPUB, MOBI, and PDF
  • About eBook Formats
  • This eBook includes the following formats, accessible from your Account page after purchase:

    ePub EPUB The open industry format known for its reflowable content and usability on supported mobile devices.

    MOBI MOBI The eBook format compatible with the Amazon Kindle and Amazon Kindle applications.

    Adobe Reader PDF The popular standard, used most often with the free Adobe® Reader® software.

    This eBook requires no passwords or activation to read. We customize your eBook by discreetly watermarking it with your name, making it uniquely yours.

Also available in other formats.

Register your product to gain access to bonus material or receive a coupon.


  • Copyright 2020
  • Edition: 1st
  • eBook (Watermarked)
  • ISBN-10: 0-13-648533-2
  • ISBN-13: 978-0-13-648533-9

Using Microsoft’s cloud-based Azure Sentinel, security organizations can leverage the full power of advanced artificial intelligence to automate threat identification and response – without the management complexity and scalability challenges of conventional SIEM solutions. In Microsoft Azure Sentinel, three of Microsoft’s leading Azure Sentinel experts review the problems Azure Sentinel can solve, and guide you step-by-step through planning, deployment, and day-to-day usage. Leveraging unsurpassed expertise helping early customers succeed with Azure Sentinel, they offer the most thorough, practical, and authoritative coverage available. Topics include:

  • Understanding Azure Sentinel’s cloud-native SIEM approach, its advantages, and adoption considerations
  • Configuring workspaces and ingesting data
  • Understanding, creating, and validating Azure Sentinel analytics
  • Managing and investigating cases
  • Hunting threats and creating new queries
  • Working with Jupyter and Community Notebooks
  • Magnifying your capabilities through Playbooks and automation
  • Visualizing data and taking full advantage of Azure Sentinel dashboards
  • Integrating with partners and other third-parties, including Fortinet, AWS, and Palo Alto

Sample Content

Table of Contents

Chapter 1 — Security Challenges for SecOps• Current Threat Landscape• Security Challenges for SecOps• Threat Intelligence• Cloud-native SIEMChapter 2 — Azure Sentinel • Architecture• Adoption Considerations• Configuring Workspace• Data Ingestion• Ingesting data from Microsoft solutionsChapter 3 — Analytics • Understanding Analytics• Creating Analytics• Validating AnalyticsChapter 4 — Incident Management• Understanding Incidents• Incident management• InvestigationChapter 5 — Hunting • Introduction to Threat Hunting• Hunting threats in Azure Sentinel• Creating New QueriesChapter 6 — Notebooks• Understanding Jupyter Notebooks• Leveraging Community Notebooks• Analyzing data with NotebooksChapter 7 — Automation with Playbooks • Azure Sentinel SOAR capabilities• Understanding Playbooks• Creating Playbooks• Linking playbooks to analyticsChapter 8 — Data Visualization• Azure Sentinel Dashboards• Installing Dashboards• Using DashboardsChapter 9 — Integrating with Partners • Connecting with Fortinet• Connecting with AWS • Connecting with Palo Alto


Submit Errata

More Information

Unlimited one-month access with your purchase
Free Safari Membership