filmov
tv
Understanding Security operations center (SOC) | Live Demo
Показать описание
[Instructor Manoj Verma CCIE-43923]
For complete Course Visit us at
Mastering Microsoft Sentinel – SIEM & SOAR for Next-Gen SOC
This course structure offers a comprehensive learning journey from the basics of SOC and SIEM to advanced skills in Microsoft Sentinel. It’s suitable for beginners as well as professionals looking to master Microsoft Sentinel in a real-world context.
Chapter 1: Understanding the Security Operations Center (SOC)
• Overview of Traditional vs. Next-Gen SOC
• Roles and Responsibilities in a SOC
• Importance of a SOC in Modern Enterprises
Chapter 2: Introduction to SIEM (Security Information and Event Management)
• What is SIEM?
• How SIEM Works
• Benefits of Using SIEM in a SOC
Chapter 3: Introduction to SOAR (Security Orchestration, Automation, and Response)
• What is SOAR?
• Difference between SIEM and SOAR
• How SOAR Enhances Incident Response
Chapter 4: Introduction to Microsoft Sentinel
• What is Microsoft Sentinel
• Key Features and Benefits
Chapter 5: Setting Up Microsoft Sentinel
• Prerequisites and Licensing
• Connecting to Azure Log Analytics Workspace
• Deployment and Initial Setup
Chapter 6: Data Sources and Connectors
• Types of Data Sources (Cloud, On-Premises, Custom)
• Configuring Data Connectors in Microsoft Sentinel
• Best Practices for Data Ingestion
Chapter 7: Azure Firewall connector for Sentinel
• Deploying & Configuring Azure Firewall
• Connecting Azure Firewall to Sentinel
Chapter 8 – Configuring syslog server
• What is a Syslog Server
• Setting Up a Syslog Server
Chapter 9: Kusto Query Language (KQL)
• Kusto Query Language Basics
• Getting data
Chapter 10 – Analytics rules
• Analytics rules
• Types of analytics rules
Chapter 11: Simulating a Brute Force Attack & Investigating with Sentinel
• Simulating a Brute Force Attack
• Investigating with Sentinel
Chapter 12: Automation Rule
• Automation in Microsoft Sentinel
• Playbooks in Microsoft Sentinel
Chapter 13: Playbook
• Example of a Playbook
#SIEM #sentinel #soc
For complete Course Visit us at
Mastering Microsoft Sentinel – SIEM & SOAR for Next-Gen SOC
This course structure offers a comprehensive learning journey from the basics of SOC and SIEM to advanced skills in Microsoft Sentinel. It’s suitable for beginners as well as professionals looking to master Microsoft Sentinel in a real-world context.
Chapter 1: Understanding the Security Operations Center (SOC)
• Overview of Traditional vs. Next-Gen SOC
• Roles and Responsibilities in a SOC
• Importance of a SOC in Modern Enterprises
Chapter 2: Introduction to SIEM (Security Information and Event Management)
• What is SIEM?
• How SIEM Works
• Benefits of Using SIEM in a SOC
Chapter 3: Introduction to SOAR (Security Orchestration, Automation, and Response)
• What is SOAR?
• Difference between SIEM and SOAR
• How SOAR Enhances Incident Response
Chapter 4: Introduction to Microsoft Sentinel
• What is Microsoft Sentinel
• Key Features and Benefits
Chapter 5: Setting Up Microsoft Sentinel
• Prerequisites and Licensing
• Connecting to Azure Log Analytics Workspace
• Deployment and Initial Setup
Chapter 6: Data Sources and Connectors
• Types of Data Sources (Cloud, On-Premises, Custom)
• Configuring Data Connectors in Microsoft Sentinel
• Best Practices for Data Ingestion
Chapter 7: Azure Firewall connector for Sentinel
• Deploying & Configuring Azure Firewall
• Connecting Azure Firewall to Sentinel
Chapter 8 – Configuring syslog server
• What is a Syslog Server
• Setting Up a Syslog Server
Chapter 9: Kusto Query Language (KQL)
• Kusto Query Language Basics
• Getting data
Chapter 10 – Analytics rules
• Analytics rules
• Types of analytics rules
Chapter 11: Simulating a Brute Force Attack & Investigating with Sentinel
• Simulating a Brute Force Attack
• Investigating with Sentinel
Chapter 12: Automation Rule
• Automation in Microsoft Sentinel
• Playbooks in Microsoft Sentinel
Chapter 13: Playbook
• Example of a Playbook
#SIEM #sentinel #soc
0:05:47
0:29:36
0:24:04
0:13:20
0:04:12
0:05:22
0:02:43
0:01:34
0:13:08
0:19:21
0:24:24
0:00:16
0:01:57
0:26:15
0:44:39
0:00:16
0:00:52
0:56:45
0:44:24
0:00:10
0:49:39
0:48:36
0:02:40
0:03:03