Buy 2+, save 55% on books & eBooks through December 1. Use code BOOKSGIVING. Learn more.
This eBook includes the following formats, accessible from your Account page after purchase:
EPUB The open industry format known for its reflowable content and usability on supported mobile devices.
PDF The popular standard, used most often with the free Adobe® Reader® software.
This eBook requires no passwords or activation to read. We customize your eBook by discreetly watermarking it with your name, making it uniquely yours.
Also available in other formats.
Register your product to gain access to bonus material or receive a coupon.
Build next-generation security operations with Microsoft Sentinel
Microsoft Sentinel is the scalable, cloud-native, security information and event management (SIEM) solution for automating and streamlining threat identification and response across your enterprise. Now, three leading experts guide you step-by-step through planning, deployment, and operations, helping you use Microsoft Sentinel to escape the complexity and scalability challenges of traditional solutions. Fully updated for the latest enhancements, this edition introduces new use cases for investigation, hunting, automation, and orchestration across your enterprise and all your clouds. The authors clearly introduce each service, concisely explain all new concepts, and present proven best practices for maximizing Microsoft Sentinel's value throughout security operations.
Three of Microsoft's leading security operations experts show how to:
About This Book
CHAPTER 1: Security challenges for SecOps
CHAPTER 2: Introduction to Microsoft Sentinel
CHAPTER 3: Analytics
CHAPTER 4: Incident management
CHAPTER 5: Hunting
CHAPTER 6: Notebooks
CHAPTER 7: Automating response
CHAPTER 8: Data visualization
CHAPTER 9: Data connectors
APPENDIX A: Introduction to Kusto Query Language
APPENDIX B: Microsoft Sentinel for managed security service providers