Azure Sentinel: 4-wk Workshop

Through this workshop, we will work with you to:

• Discover threats to your Microsoft 365 cloud and on-premises environments across email, identity and data.
• Understand how to mitigate threats by showing how Microsoft 365 and Azure security products can help mitigate and protect against threats that are found.
• Plan next steps and provide information to build a business case for a production deployment of Azure Sentinel including a technical deployment roadmap

In addition, depending on the selected scenario, you will also: Experience the benefits of a managed SIEM with a true cloud native SIEM, managed and monitored by our cybersecurity experts. (Remote Monitoring scenario)

Receive hands-on experience, learn how to discover and analyze threats using Azure Sentinel and how to automate your Security Operations to make it more effective. (Joint Threat Exploration scenario)

What We'll Do:

1. Analyse your requirements and priorities for a SIEM deployment
2. Define scope & deploy Azure Sentinel in your production environment
3. Remote monitoring and proactive threat hunting to discover attack indicators
4. Discover threats and demonstrate how to automate responses
5. Recommend next steps on how to proceed with a production implementation of Azure Sentinel

Agenda:

• Pre-engagement call
• Week 1: kick-off, define scope, threat check and Azure Sentinel Configuration
• Weeks 2-3: remote monitoring, threat exploration and report generation
• Week 4: results presentation and next steps.