Roadmap for Azure-hosted security and incident management (SIEM) service.
Several Microsoft Defender and other Microsoft security services can be used with AWS and GCP, and some can be used with on-premises infrastructure.
Azure Active Directory includes numerous features to enable interoperability with Active Directory on-premises, Microsoft 365 and third-party applications, and enable administration of AAD users and groups. Some additional services can help improve AAD security, at additional cost. Each of the reports in this kit discusses different features, technologies, or additional services that help with AAD management and security.
Using Azure Sentinel cost-effectively requires constant oversight of the volume of data to be ingested.
Sidebar explains how Azure Sentinel compares to Microsoft 365 Defender and Azure Monitor’s Log Analytics capabilities.
Azure Sentinel, Microsoft’s security information and event management (SIEM) service, offers tools to help customers uncover information within their processed log data.
Azure Sentinel combines events and alerts from multiple sources to assist in discovery and analysis of security incidents.