Learn how to investigate, respond to, and hunt for threats using Microsoft Azure Sentinel, Azure Defender, and Microsoft 365 Defender.
In this course you will learn how to mitigate cyberthreats using these technologies. Specifically, you will configure and use Azure Sentinel as well as utilize Kusto Query Language (KQL) to perform detection, analysis, and reporting. The course was designed for people who work in a Security Operations job role and helps learners prepare for the exam SC-200: Microsoft Security Operations Analyst.
Objetivos
- Analyze threat data across domains and rapidly remediate threats with built-in orchestration and automation in Microsoft 365 Defender
- Implement the Microsoft Defender for Endpoint platform to detect, investigate, and respond to advanced threats
- Use Microsoft Defender for Cloud, for Azure, hybrid cloud, and on-premises workload protection and security
- Write Kusto Query Language (KQL) statements to query log data to perform detections, analysis, and reporting in Microsoft Sentinel
- Confiure Microsoft Sentinel workspace
- Connect data at cloud scale across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds to Microsoft Sentinel
- Detect previously uncovered threats and rapidly remediate threats with built-in orchestration and automation in Microsoft Sentinel
- Proactively hunt for security threats using the Microsoft Sentinel powerful threat hunting tools
-
15 Outubro 2024 a 24 Abril 2025
-
16 Outubro 2024 a 28 Fevereiro 2025
-
17 Outubro 2024 a 4 Fevereiro 2025
-
21 Outubro 2024 a 28 Outubro 2024
-
23 Outubro 2024 a 7 Maio 2025
-
28 Outubro 2024 a 10 Março 2025