Azure Sentinel is a cloud-native Security Information and Event manager (SIEM) with built-in AI to enable enterprises quickly analyse enormous amounts of data. Azure Sentinel gathers data from all sources, including people, apps, servers, and devices running on-premises or in the cloud, and allows you to quickly analyse millions of records. It comes with built-in connections that make integrating popular security systems a breeze. With support for open standard formats like CEF and Syslog, you may collect data from any source.
Course content
Introduction
- Introduction to Azure Analytics
- Introduction to Azure Sentinel
- Traditional SIEM vs Cloud native SIEM
- Phases of Azure Sentinel
- Introduction to Workbook
Collect
- Data Collection
- Visualization
- Querying the logs
- Introduction to Kusto Query Language (KQL)
- useful Queries in KQL
- Advanced Queries in KQL
Detect
- Detecting Threats using correlation Rules
- Out of the box Detection
- Custom threat detection rules
- Advanced multistage attack detection
- Intro to Use cases
- Real time use cases for Cloud
- User Behavior related use cases
- Introduction to Threat hunting
- Life cycle of Threat hunting
- Use Note books to hunt
Investigate
- Introduction to Threat investigation
- Investigating Incidents
- Use the investigation graph to deep dive
Respond
- Introduction to SOAR
- Introduction to Play Books
- Creating Security Play Books
- Creating Logic through Logic App Designer
- Threat Response Automation
To see the full course content Download now
Course Prerequisites
- Familiarity with security operations in an organization
- Basic experience with Azure services
Who can attend
- Cloud Engineers
- Cloud Architects
- Cloud Operators
- Security analyst
- Azure security Engineer
- Security Architects
- Az-500 Aspirants
- Cloud Operators
Number of Hours: 40hrs
Certification
Microsoft Security Operations Analyst (SC – 200)Key features
- One to One Training
- Online Training
- Fastrack & Normal Track
- Resume Modification
- Mock Interviews
- Video Tutorials
- Materials
- Real Time Projects
- Virtual Live Experience
- Preparing for Certification
FAQs
DASVM Technologies offers 300+ IT training courses with 10+ years of Experienced Expert level Trainers.
- One to One Training
- Online Training
- Fastrack & Normal Track
- Resume Modification
- Mock Interviews
- Video Tutorials
- Materials
- Real Time Projects
- Materials
- Preparing for Certification
Call now: +91-99003 49889 and know the exciting offers available for you!
We working and coordinating with the companies exclusively to get placed. We have a placement cell focussing on training and placements in Bangalore. Our placement cell help more than 600+ students per year.
Learn from experts active in their field, not out-of-touch trainers. Leading practitioners who bring current best practices and case studies to sessions that fit into your work schedule. We have a pool of experts and trainers are composed with highly skilled and experienced in supporting you in specific tasks and provide professional support. 24x7 Learning support from mentors and a community of like-minded peers to resolve any conceptual doubts. Our trainers has contributed in the growth of our clients as well as professionals.
All of our highly qualified trainers are industry experts with at least 10-12 years of relevant teaching experience. Each of them has gone through a rigorous selection process which includes profile screening, technical evaluation, and a training demo before they are certified to train for us. We also ensure that only those trainers with a high alumni rating continue to train for us.
No worries. DASVM technologies assure that no one misses single lectures topics. We will reschedule the classes as per your convenience within the stipulated course duration with all such possibilities. If required you can even attend that topic with any other batches.
DASVM Technologies provides many suitable modes of training to the students like:
- Classroom training
- One to One training
- Fast track training
- Live Instructor LED Online training
- Customized training
Yes, the access to the course material will be available for lifetime once you have enrolled into the course.
You will receive DASVM Technologies recognized course completion certification & we will help you to crack global certification with our training.
Yes, DASVM Technologies provides corporate trainings with Course Customization, Learning Analytics, Cloud Labs, Certifications, Real time Projects with 24x7 Support.
Yes, DASVM Technologies provides group discounts for its training programs. Depending on the group size, we offer discounts as per the terms and conditions.
We accept all major kinds of payment options. Cash, Card (Master, Visa, and Maestro, etc), Wallets, Net Banking, Cheques and etc.
DASVM Technologies has a no refund policy. Fees once paid will not be refunded. If the candidate is not able to attend a training batch, he/she is to reschedule for a future batch. Due Date for Balance should be cleared as per date given. If in case trainer got cancelled or unavailable to provide training DASVM will arrange training sessions with other backup trainer.
Your access to the Support Team is for lifetime and will be available 24/7. The team will help you in resolving queries, during and after the course.
Please Contact our course advisor +91-99003 49889. Or you can share your queries through info@dasvmtechnologies.com