Articoli correlati a Microsoft Azure Sentinel: Planning and implementing...
Microsoft Azure Sentinel: Planning and implementing Microsoft’s cloud-native SIEM solution - Brossura
Sinossi
Microsoft Azure Sentinel
Plan, deploy, and operate Azure Sentinel, Microsoft’s advanced cloud-based SIEM
Microsoft’s cloud-based Azure Sentinel helps you fully leverage advanced AI to automate threat identification and response – without the complexity and scalability challenges of traditional Security Information and Event Management (SIEM) solutions. Now, three of Microsoft’s leading experts review all it can do, and guide you step by step through planning, deployment, and daily operations. Leveraging in-the-trenches experience supporting early customers, they cover everything from configuration to data ingestion, rule development to incident management… even proactive threat hunting to disrupt attacks before you’re exploited.
Three of Microsoft’s leading security operations experts show how to:
• Use Azure Sentinel to respond to today’s fast-evolving cybersecurity environment, and leverage the benefits of its cloud-native architecture
• Review threat intelligence essentials: attacker motivations, potential targets, and tactics, techniques, and procedures
• Explore Azure Sentinel components, architecture, design considerations, and initial configuration
• Ingest alert log data from services and endpoints you need to monitor
• Build and validate rules to analyze ingested data and create cases for investigation
• Prevent alert fatigue by projecting how many incidents each rule will generate
• Help Security Operation Centers (SOCs) seamlessly manage each incident’s lifecycle
• Move towards proactive threat hunting: identify sophisticated threat behaviors and disrupt cyber kill chains before you’re exploited
• Do more with data: use programmable Jupyter notebooks and their libraries for machine learning, visualization, and data analysis
• Use Playbooks to perform Security Orchestration, Automation and Response (SOAR)
• Save resources by automating responses to low-level events
• Create visualizations to spot trends, identify or clarify relationships, and speed decisions
• Integrate with partners and other third-parties, including Fortinet, AWS, and Palo Alto
Le informazioni nella sezione "Riassunto" possono far riferimento a edizioni diverse di questo titolo.
Informazioni sull?autore
Yuri Diogenes, Senior Program Manager at Microsoft Cybersecurity Engineering’s Cloud and Artificial Intelligence Division, works closely with Azure Sentinel and Azure Security Center. Also a Professor at EC-Council University’s MS and BS-level Cybersecurity programs, he holds an MS in Cybersecurity Intelligence & Forensics from Utica College, an MBA from FGF in Brazil, and several industry certifications. He is co-author of Microsoft Azure Security Center, Second Edition; Enterprise Mobility Suite: Managing BYOD and Company-Owned Devices, and other Microsoft Press books.
Nicholas DiCola is Principal Program Manager at Microsoft Cybersecurity Engineering’s Cloud and Artificial Intelligence Division, where he assists customers in deploying advanced Microsoft Azure security systems. Before joining Microsoft in 2006, he was IT/Cyber Specialist on Active Duty in the U.S. Marine Corps. He was contributing author of Automating Active Directory Administration with PowerShell.
Jonathan Trull (CSSP, CISSP, CISA, OSCP) is Global Director for the Microsoft Cybersecurity Solutions Group. He leads Microsoft’s team of security advisors and cloud security architects in providing strategic direction for Microsoft security offerings and engaging with customers and partners worldwide. His 20 years of information security experience includes stints as VP and CISO for Optiv; as CISO for Qualys; and as CISO for the State of Colorado. As faculty member in Regis University’s information assurance graduate program, he develops and teaches courses on network forensics, security architecture and design, malware analysis, and legal concepts in information security.
Le informazioni nella sezione "Su questo libro" possono far riferimento a edizioni diverse di questo titolo.
Compra usato
Condizioni: molto buonoMost items will be dispatched the...
Visualizza questo articolo
EUR 4,64
EUR 7,85 per la spedizione da Regno Unito a Italia
Destinazione, tempi e costiCompra nuovo
Visualizza questo articolo
EUR 36,03
EUR 26,62 per la spedizione da U.S.A. a Italia
Destinazione, tempi e costiRisultati della ricerca per Microsoft Azure Sentinel: Planning and implementing...
Immagini fornite dal venditore
Microsoft Azure Sentinel: Planning and implementing Microsoftâs cloud-native SIEM solution (IT Best Practices - Microsoft Press)
Da: WeBuyBooks, Rossendale, LANCS, Regno Unito
Valutazione del venditore 5 su 5 stelle
Condizione: Very Good. Most items will be dispatched the same or the next working day. A copy that has been read, but is in excellent condition. Pages are intact and not marred by notes or highlighting. The spine remains undamaged. Codice articolo wbs6788048497
Quantità: 1 disponibili
Immagini fornite dal venditore
Microsoft Azure Sentinel: Planning and implementing Microsoftâs cloud-native SIEM solution (IT Best Practices - Microsoft Press)
Da: WeBuyBooks, Rossendale, LANCS, Regno Unito
Valutazione del venditore 5 su 5 stelle
Condizione: Like New. Most items will be dispatched the same or the next working day. An apparently unread copy in perfect condition. Dust cover is intact with no nicks or tears. Spine has no signs of creasing. Pages are clean and not marred by notes or folds of any kind. Codice articolo wbs6616324489
Quantità: 1 disponibili
Foto dell'editore
Microsoft Azure Sentinel: Planning and implementing Microsoftâs cloud-native SIEM solution (IT Best Practices - Microsoft Press)
Da: WorldofBooks, Goring-By-Sea, WS, Regno Unito
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Very Good. The book has been read, but is in excellent condition. Pages are intact and not marred by notes or highlighting. The spine remains undamaged. Codice articolo GOR012424544
Quantità: 1 disponibili
Immagini fornite dal venditore
Microsoft Azure Sentinel: Planning and implementing Microsoftâs cloud-native SIEM solution (IT Best Practices - Microsoft Press)
Da: Aspen Book Co., Denver, CO, U.S.A.
Valutazione del venditore 5 su 5 stelle
Condizione: very_good. Excellent condition with just a hint of character. Minor signs of love, but the pages are still clean and ready for adventure. Codice articolo PKV.0136485456.VG
Quantità: 1 disponibili
Foto dell'editore
Microsoft Azure Sentinel: Planning and implementing Microsoftâs cloud-native SIEM solution (IT Best Practices - Microsoft Press)
Da: GoldBooks, Denver, CO, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: new. New Copy. Customer Service Guaranteed. Codice articolo 96Y43_79_0136485456
Quantità: 1 disponibili
Foto dell'editore
Microsoft Azure Sentinel: Planning and implementing Microsoftâs cloud-native SIEM solution (IT Best Practices - Microsoft Press)
Editore:
Microsoft Press (edition 1), 2020
ISBN 10: 0136485456
ISBN 13: 9780136485452
Antico o usato
Paperback
Da: BooksRun, Philadelphia, PA, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Very Good. 1. Ship within 24hrs. Satisfaction 100% guaranteed. APO/FPO addresses supported. Codice articolo 0136485456-8-1
Quantità: 1 disponibili
Foto dell'editore
Microsoft Azure Sentinel: Planning and implementing Microsoftâs cloud-native SIEM solution (IT Best Practices - Microsoft Press)
Da: HPB-Red, Dallas, TX, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Good. Connecting readers with great books since 1972! Used textbooks may not include companion materials such as access codes, etc. May have some wear or writing/highlighting. We ship orders daily and Customer Service is our top priority! Codice articolo S_406333591
Quantità: 1 disponibili