Mitigate Threats Using Microsoft Sentinel
This course will teach you how to enable, configure, and monitor both cloud and non-cloud platforms using Microsoft Sentinel needed for the Microsoft Security Operations Analyst (SC-200).
What you'll learn
Do you need to prepare for the Microsoft Security Operations Analyst exam? In this course, Mitigate Threats Using Microsoft Sentinel, you’ll learn how to enable, configure, and monitor both cloud and non-cloud platforms using Microsoft Sentinel. First, you’ll see how to configure Microsoft Sentinel while identifying necessary data collections. Next, you’ll discover how to manage and respond to incidents. Finally, you’ll learn how to hunt for and remediate threats. When you’re finished with this course, you’ll have the skills and knowledge of mitigating threats using Microsoft Sentinel needed for the Microsoft Security Operations Analyst (SC-200).
Table of contents
- Introduction 1m
- Identify Data Sources to Be Ingested for Microsoft Sentinel 2m
- Configure and Use Microsoft Sentinel Data Connectors 2m
- Design Windows and Linux Collections 3m
- Configure Custom Threat Intelligence Connectors 1m
- Create Custom Logs in Azure Log Analytics to Store Custom Data 2m
- Demo: Identify Connectors, Agents, and Custom Logs 6m
- Summary 1m