UCSECA4 - Microsoft Sentinel: Threat Detection and Response

To stay ahead of increasingly sophisticated attacks, organizations need centralized visibility and intelligent threat detection. Microsoft Sentinel is a cloud-native SIEM and SOAR solution that collects data across your environment — from users and devices to apps and infrastructure — and uses built-in analytics, threat intelligence, and automation to detect, investigate, and respond to threats at scale. With Sentinel, you gain actionable insights and the ability to respond to incidents faster and more effectively. Topics: Microsoft Sentinel, Kusto Query Language, Microsoft Sentinel Incident Investigation and Threat Hunting.