Configure SIEM Security Operations using Microsoft Sentinel (SC-5001)
- Tijdsduur
- Locatie
- Op locatie
- Startdatum en plaats
Configure SIEM Security Operations using Microsoft Sentinel (SC-5001)
Opleiderscore:
Startdata en plaatsen
placeVeenendaal 23 feb. 2026Toon rooster event 23 februari 2026, 09:00-16:00, Veenendaal |
placeVeenendaal 16 mrt. 2026Toon rooster event 16 maart 2026, 09:00-16:00, Veenendaal |
placeVeenendaal 20 apr. 2026Toon rooster event 20 april 2026, 09:00-16:00, Veenendaal |
Beschrijving
Meer weten over de onderwerpen die aan bod komen en de vereiste voorkennis? Neem vrijblijvend contact met ons op.
This course teaches how to start with Microsoft Sentinel security operations by configuring the workspace.
Description
You will study at your own pace in our training center, guided by a certified trainer
Get started with Microsoft Sentinel security operations by configuring the Microsoft Sentinel workspace, connecting Microsoft services and Windows security events to Microsoft Sentinel, configuring Microsoft Sentinel analytics rules, and responding to threats with automated responses.
! Note
You need to have your own Azure subscription.
You need an Azure subscription to complete the exercises. If you don't have an Azure subscription, create a free account and add a subscription before you b…
Veelgestelde vragen
Er zijn nog geen veelgestelde vragen over dit product. Als je een vraag hebt, neem dan contact op met onze klantenservice.
Meer weten over de onderwerpen die aan bod komen en de vereiste voorkennis? Neem vrijblijvend contact met ons op.
This course teaches how to start with Microsoft Sentinel security operations by configuring the workspace.
Description
You will study at your own pace in our training center, guided by a certified trainer
Get started with Microsoft Sentinel security operations by configuring the Microsoft Sentinel workspace, connecting Microsoft services and Windows security events to Microsoft Sentinel, configuring Microsoft Sentinel analytics rules, and responding to threats with automated responses.
! Note
You need to have your own Azure subscription.
You need an Azure subscription to complete the exercises. If you don't have an Azure subscription, create a free account and add a subscription before you begin. If you're a student, you can take advantage of the Azure for students offer.
Prerequisites Fundamental understanding of Microsoft Azure Basic understanding of Microsoft Sentinel Experience using Kusto Query Language (KQL) in Microsoft Sentinel
Subjects
Create and manage Microsoft Sentinel workspaces- Describe Microsoft Sentinel workspace architecture
- Install Microsoft Sentinel workspace
- Manage a Microsoft Sentinel workspace
- Connect Microsoft service connectors
- Explain how connectors auto-create incidents in Microsoft Sentinel
- Connect Azure Windows Virtual Machines to Microsoft Sentinel
- Connect non-Azure Windows hosts to Microsoft Sentinel
- Configure Log Analytics agent to collect Sysmon events
- Explain the importance of Microsoft Sentinel Analytics.
- Explain different types of analytics rules.
- Create rules from templates.
- Create new analytics rules and queries using the analytics rule wizard.
- Manage rules with modifications.
- Explain automation options in Microsoft Sentinel
- Create automation rules in Microsoft Sentinel
- Create and configure a Microsoft Sentinel workspace
- Deploy Microsoft Sentinel Content Hub solutions and data connectors
- Configure Microsoft Sentinel Data Collection rules, NRT Analytic rule and Automation
- Perform a simulated attack to validate Analytic and Automation rules
Blijf op de hoogte van nieuwe ervaringen
Deel je ervaring
Heb je ervaring met deze cursus? Deel je ervaring en help anderen kiezen. Als dank voor de moeite doneert Springest € 1,- aan Stichting Edukans.Er zijn nog geen veelgestelde vragen over dit product. Als je een vraag hebt, neem dan contact op met onze klantenservice.