080: Azure Sentinel with Sreedhar Ande
Hosted by Edward Walton, Frank Grimberg, Rod Trent, Brodie Cassell
Audio is streamed directly from the publisher (api.substack.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Hosted by Edward Walton, Frank Grimberg, Rod Trent, Brodie Cassell
Sreedhar Ande
Github: https://github.com/andedevsecops
1. https://aka.ms/asnew --> up to date info on the improvements we make in the product
2. NRT Rules considerations Detect threats quickly with near-real-time (NRT) analytics rules in Microsoft Sentinel | Microsoft Docs
https://docs.microsoft.com/en-us/azure/sentinel/near-real-time-rules#considerations
3. Analytical Rules Health
a. Playbook : Azure-Sentinel/Playbooks/Send-AnalyticalRulesHealthNotifications at master · Azure/Azure-Sentinel (github.com)
https://github.com/Azure/Azure-Sentinel/tree/master/Playbooks/Send-AnalyticalRulesHealthNotifications
b. Blog: Monitoring Microsoft Sentinel Analytical Rules – Push Health Notifications - Microsoft Tech Community
https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/monitoring-microsoft-sentinel-analytical-rules-push-health/ba-p/2793694
4. Guide to build Microsoft Sentinel Solutions
a. Webinar: Create Your Own Microsoft Sentinel Solutions
https://youtu.be/oYTgaTh_NOU
b. Azure-Sentinel/Solutions at master · Azure/Azure-Sentinel (github.com)
https://github.com/Azure/Azure-Sentinel/tree/master/Solutions#guide-to-building-microsoft-sentinel-solutions
5. Microsoft Sentinel Repositories demo
a. Managing security content as code - Microsoft Sentinel in the Field #1 - YouTube
https://www.youtube.com/watch?v=vqLqJhaFNBk
Show Links:
Twitch: https://www.twitch.tv/microsoftsecurityinsights
Discord: https://discord.gg/thCAR7RMUe
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com