All Microsoft Cisco Security VMware Oracle Microsoft Dynamics RedHat Project Management EC-Council AWS

Azure Sentinel Certification Training Course

Overview Schedule & Fees Course Benefits Student Feedback FAQ Course Modules

Azure Sentinel Certification Training Course Overview

Azure Sentinel is a cloud-native security information and event manager (SIEM) platform that uses built-in AI to help analyse large volumes of data across an enterprise—fast. Azure Sentinel aggregates data from all sources, including users, applications, servers and devices running on-premises or in any cloud, letting you reason over millions of records in a few seconds. It includes built-in connectors for easy onboarding of popular security solutions. Collect data from any source with support for open standard formats like CEF and Syslog.

Azure Sentinel Certification Training Course (Duration : 24 Hours) Download Course Contents

Live Virtual Classroom

Group Training 1150 04 - 06 Oct 09:00 AM - 05:00 PM CST (8 Hours/Day) 01 - 03 Nov 09:00 AM - 05:00 PM CST (8 Hours/Day)	1-on-1 Training (GTR) 1300 4 Hours 8 Hours Week Days Weekend Start Time : At any time 12 AM 12 PM Training Schedule: GTR=Guaranteed to Run

Special Solutions for Corporate Clients! Click here

Hire Our Trainers! Click here

Recording Available only $99

Customers who bought this course also bought

AZ-303: Microsoft Azure Architect Technologies

AZ-400T00-A: Designing and Implementing Microsoft DevOps solutions

DA-100 Analyze Data with Power BI

AZ-204: Developing Solutions for Microsoft Azure

AZ-104T00-A: Microsoft Azure Administrator

AZ-900T01: Microsoft Azure Fundamentals (1 day)

DP-203T00: Data Engineering on Microsoft Azure

MS-500: Microsoft 365 Security Administration

Microsoft Power Platform Fundamentals

Microsoft Security Operations Analyst SC 200

10% discount on 2nd course if bought with first:

Course Modules

Phase 1 : Collect

Introduction to Azure Analytics
Introduction to Azure Sentinel
Traditional SIEM vs Cloud native SIEM
Traditional SIEM vs Cloud native SIEM
Phases of Azure Sentinel
Data Collection
Visualization
Querying the logs
Introduction to Kusto Query Language (KQL)
useful Queries in KQL
Advanced Queries in KQL

Phase 2: Detect

Detecting Threats using correlation Rules.
Out of the box Detection
Custom threat detection rules
Advanced multistage attack detection
Intro to Use cases
Real time use cases for Cloud
User Behavior related use cases
Introduction to Threat hunting
Life cycle of Threat hunting
Use Note books to hunt

Phase 3: Investigate

Introduction to Threat investigation
Investigating Incidents
Use the investigation graph to deep dive

Phase 4: Respond

Introduction to SOAR
Introduction to Play Books
Creating Security Play Books
Creating Logic through Logic App Designer
Threat Response Automation

Download Course Contents

Request More Information

Request a call back?

Course Prerequisites

Participants must have basic understanding of azure cloud and Security Operations in general.

FAQ's

Yes, fee excludes local taxes.

We offer below courses: AZ-104T00-A: Microsoft Azure Administrator - AZ-303: Microsoft Azure Architect Technologies - AZ-900T01: Microsoft Azure Fundamentals (1 day) - AZ-400T00-A: Designing and Implementing Microsoft DevOps solutions - AZ-204: Developing Solutions for Microsoft Azure - AZ-500: Microsoft Azure Security Technologies - AZ-304: Microsoft Azure Architect Design - DP-900: Microsoft Azure Data Fundamentals - AZ-900T01: Microsoft Azure Fundamentals (2 days) - DP-100T01: Designing and Implementing a Data Science Solution on Azure -