June 07, 2023

Microsoft Sentinel with Sarah Young

Listen Later

49 minutes

Are you using Microsoft Sentinel? Richard talks to Cloud Security Advocate Sarah Young about Sentinel, Microsoft's Security Information and Event Management (SIEM) solution. Sarah talks about the role of the SIEM in creating a common place for all security-related data to arrive. She mentions some of the many tools in the Microsoft suite to feed into Sentinel - Defender for Endpoints, Identity, and Cloud as examples. Specialized analysis tools send summaries to Sentinel, but Sentinel can also process raw logs as well - make sure you need the data because billing for Sentinel is connected to the number of ingress sources. There's a lot to learn, but also a lot of great documentation and information to work from. Check the show notes for links!

Links:

Microsoft Sentinel
ArcSight
Defender Security Alerts
Defender for Endpoint
Defender for Identity
Microsoft Digital Defense Report 2022
Defender for Cloud
What is CSPM?
Security Baselines Blog
Microsoft Security Copilot

Recorded April 6, 2023

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

RunAs Radio

By Richard Campbell

4.6

8282 ratings

June 07, 2023

Microsoft Sentinel with Sarah Young

Listen Later

49 minutes

Are you using Microsoft Sentinel? Richard talks to Cloud Security Advocate Sarah Young about Sentinel, Microsoft's Security Information and Event Management (SIEM) solution. Sarah talks about the role of the SIEM in creating a common place for all security-related data to arrive. She mentions some of the many tools in the Microsoft suite to feed into Sentinel - Defender for Endpoints, Identity, and Cloud as examples. Specialized analysis tools send summaries to Sentinel, but Sentinel can also process raw logs as well - make sure you need the data because billing for Sentinel is connected to the number of ingress sources. There's a lot to learn, but also a lot of great documentation and information to work from. Check the show notes for links!

Links:

Microsoft Sentinel
ArcSight
Defender Security Alerts
Defender for Endpoint
Defender for Identity
Microsoft Digital Defense Report 2022
Defender for Cloud
What is CSPM?
Security Baselines Blog
Microsoft Security Copilot

Recorded April 6, 2023

...more

More shows like RunAs Radio

Software Engineering Radio - the podcast for professional software developers by team@se-radio.net (SE-Radio Team)

Software Engineering Radio - the podcast for professional software developers

272 Listeners

Hanselminutes with Scott Hanselman by Scott Hanselman

Hanselminutes with Scott Hanselman

382 Listeners

.NET Rocks! by Carl Franklin and Richard Campbell

.NET Rocks!

38 Listeners

The Changelog: Software Development, Open Source by Changelog Media

The Changelog: Software Development, Open Source

289 Listeners

This Week in Tech (Audio) by TWiT

This Week in Tech (Audio)

3,062 Listeners

Security Now (Audio) by TWiT

Security Now (Audio)

2,005 Listeners

MacBreak Weekly (Audio) by TWiT

MacBreak Weekly (Audio)

2,014 Listeners

Windows Weekly (Audio) by TWiT

Windows Weekly (Audio)

885 Listeners

Tech News Weekly (Audio) by TWiT

Tech News Weekly (Audio)

1,074 Listeners

Intelligent Machines (Audio) by TWiT

Intelligent Machines (Audio)

781 Listeners

The a16z Show by Andreessen Horowitz

The a16z Show

1,101 Listeners

Daily Tech News Show by Tom Merritt

Daily Tech News Show

1,390 Listeners

Smashing Security by Graham Cluley

Smashing Security

322 Listeners

.NET Rocks! by Carl Franklin and Richard Campbell

.NET Rocks!

243 Listeners

The Stack Overflow Podcast by The Stack Overflow Podcast

The Stack Overflow Podcast

64 Listeners

2.5 Admins by The Late Night Linux Family

2.5 Admins

97 Listeners